Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb/30288cad-3821-30b4-94e6-03f72850fc12.roa
File: 30288cad-3821-30b4-94e6-03f72850fc12.roa (raw, json)
Hash identifier: FrzJjBcpiTbZujxH1nKhepFeothEj3tpA/z1KTj4Iy8=
Subject key identifier: BE:1E:E3:5E:D1:15:F1:0F:3F:C6:04:E6:84:24:6C:A3:92:98:A6:07
Certificate issuer: /CN=3af35cfc-2385-44c7-b33c-0a6ce0409bfb
Certificate serial: 010D0C9F4328583F6B31DAE6A501F95F86CAE680
Authority key identifier: B1:EA:79:8F:FD:1C:16:05:9B:A3:5B:AF:B2:83:6C:18:20:D7:51:8F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb/30288cad-3821-30b4-94e6-03f72850fc12.roa
Signing time: Sun 09 Oct 2022 12:00:00 +0000
ROA not before: Sun 09 Oct 2022 12:00:00 +0000
ROA not after: Wed 18 Dec 2024 05:00:00 +0000
asID: 7393
IP address blocks: 64.37.64.0/18 maxlen: 24
64.73.192.0/19 maxlen: 24
65.175.64.0/18 maxlen: 24
66.165.64.0/18 maxlen: 24
66.201.64.0/18 maxlen: 24
72.29.0.0/19 maxlen: 24
74.127.0.0/18 maxlen: 24
184.175.64.0/18 maxlen: 24
216.15.128.0/17 maxlen: 24
216.198.192.0/18 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3f:6b:31:da:e6:a5:01:f9:5f:86:ca:e6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af35cfc-2385-44c7-b33c-0a6ce0409bfb
Validity
Not Before: Oct 9 12:00:00 2022 GMT
Not After : Dec 18 05:00:00 2024 GMT
Subject: CN=ab649a31-a47b-4ee8-bcb8-2b626439a962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:79:9f:df:8b:5f:21:71:cf:d7:eb:61:8d:50:
5b:a2:e0:9c:fa:a5:70:76:04:86:52:e9:b1:12:8d:
bb:fb:1a:df:a5:b8:e8:10:0d:59:e5:30:6f:24:4e:
d1:7f:3b:72:45:c8:d7:b6:5a:d7:21:c3:be:07:e7:
07:c5:21:7d:ae:88:12:28:d6:d7:6e:8b:33:89:51:
8f:bb:c2:03:c1:b2:09:4f:0e:32:81:71:da:c8:7d:
1a:06:70:f1:9e:d1:a5:a9:f2:f9:64:a9:36:b0:60:
c0:42:fa:b5:df:5f:a6:ca:36:a6:88:29:7c:86:96:
80:22:13:ad:fc:85:07:66:e9:29:85:20:00:76:34:
cc:32:bc:d7:f6:71:af:b9:81:55:c2:97:6d:1b:06:
74:e0:ab:12:4b:08:bd:51:f6:66:52:6c:d8:02:70:
13:b3:cc:8b:78:a9:65:0d:c3:91:61:16:43:82:8a:
0e:e8:5d:7f:e3:67:40:63:bc:6f:32:fb:8f:ba:19:
8e:42:67:4e:5c:8c:86:96:2a:c4:e1:00:e2:16:a3:
8a:4c:bc:1d:d0:43:aa:88:e3:3f:c9:6d:a7:5b:ac:
29:07:f5:96:f4:f8:8a:3e:94:aa:4a:21:42:cd:08:
49:6c:1a:97:0b:18:7e:1e:63:fa:45:55:87:7f:55:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1E:E3:5E:D1:15:F1:0F:3F:C6:04:E6:84:24:6C:A3:92:98:A6:07
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb/30288cad-3821-30b4-94e6-03f72850fc12.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb/3af35cfc-2385-44c7-b33c-0a6ce0409bfb.crl
X509v3 Authority Key Identifier:
keyid:B1:EA:79:8F:FD:1C:16:05:9B:A3:5B:AF:B2:83:6C:18:20:D7:51:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/3af35cfc-2385-44c7-b33c-0a6ce0409bfb.cer
sbgp-ipAddrBlock: critical
IPv4:
64.37.64.0/18
64.73.192.0/19
65.175.64.0/18
66.165.64.0/18
66.201.64.0/18
72.29.0.0/19
74.127.0.0/18
184.175.64.0/18
216.15.128.0/17
216.198.192.0/18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
a6:b1:d9:86:4a:75:61:34:b4:59:1e:da:53:cc:00:ca:6b:e1:
57:0c:44:dd:be:76:55:78:54:25:2b:57:5b:70:a1:09:35:83:
48:e7:13:cc:2d:c2:8f:56:29:e4:84:df:a4:c0:3d:df:7c:78:
19:04:88:57:5f:72:e2:b5:15:66:3c:5e:0b:1a:63:2e:dc:60:
b4:5a:4a:00:46:cb:f5:43:9f:05:dd:0e:3e:cb:b4:25:b8:59:
1a:e6:f8:18:ea:d9:b0:21:e2:69:85:33:07:b6:35:5c:5e:95:
88:d0:83:17:c7:c0:39:e9:80:f5:95:7d:4c:46:9d:08:41:59:
fa:29:2e:cf:6e:d0:b6:e7:5f:f7:f3:13:f0:55:1c:c6:b5:9f:
c9:34:71:df:43:65:d9:43:d0:13:bf:4d:28:3f:4e:0d:cb:0f:
f0:67:2e:49:01:2a:eb:a8:82:11:4a:a7:83:4d:a3:07:9d:eb:
a0:ab:77:2f:8e:92:44:7d:f1:6f:66:63:d7:bb:f5:f9:43:a1:
6f:cb:a0:f5:5c:6c:4b:c9:4f:72:9c:88:c1:d8:c3:81:b1:ae:
ed:e1:fa:16:8a:65:73:b2:2e:93:c1:12:e2:23:60:25:ce:ba:
c2:11:8c:c8:d9:03:10:f8:f1:4f:ac:46:a3:cd:fd:bf:78:62:
2c:02:9a:d9
-----BEGIN CERTIFICATE-----
MIIGeTCCBWGgAwIBAgIUAQ0Mn0MoWD9rMdrmpQH5X4bK5oAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkM2FmMzVjZmMtMjM4NS00NGM3LWIzM2MtMGE2Y2UwNDA5
YmZiMB4XDTIyMTAwOTEyMDAwMFoXDTI0MTIxODA1MDAwMFowLzEtMCsGA1UEAxMk
YWI2NDlhMzEtYTQ3Yi00ZWU4LWJjYjgtMmI2MjY0MzlhOTYyMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXmf34tfIXHP1+thjVBbouCc+qVwdgSGUumx
Eo27+xrfpbjoEA1Z5TBvJE7RfztyRcjXtlrXIcO+B+cHxSF9rogSKNbXbosziVGP
u8IDwbIJTw4ygXHayH0aBnDxntGlqfL5ZKk2sGDAQvq131+myjamiCl8hpaAIhOt
/IUHZukphSAAdjTMMrzX9nGvuYFVwpdtGwZ04KsSSwi9UfZmUmzYAnATs8yLeKll
DcORYRZDgooO6F1/42dAY7xvMvuPuhmOQmdOXIyGlirE4QDiFqOKTLwd0EOqiOM/
yW2nW6wpB/WW9PiKPpSqSiFCzQhJbBqXCxh+HmP6RVWHf1XkkwIDAQABo4IDizCC
A4cwHQYDVR0OBBYEFL4e417RFfEPP8YE5oQkbKOSmKYHMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYWYz
NWNmYy0yMzg1LTQ0YzctYjMzYy0wYTZjZTA0MDliZmIvMzAyODhjYWQtMzgyMS0z
MGI0LTk0ZTYtMDNmNzI4NTBmYzEyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvM2FmMzVjZmMtMjM4NS00NGM3LWIz
M2MtMGE2Y2UwNDA5YmZiLzNhZjM1Y2ZjLTIzODUtNDRjNy1iMzNjLTBhNmNlMDQw
OWJmYi5jcmwwHwYDVR0jBBgwFoAUsep5j/0cFgWbo1uvsoNsGCDXUY8wDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi8zYWYzNWNmYy0yMzg1LTQ0YzctYjMzYy0wYTZj
ZTA0MDliZmIuY2VyMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQGQCVAAwQF
QEnAAwQGQa9AAwQGQqVAAwQGQslAAwQFSB0AAwQGSn8AAwQGuK9AAwQH2A+AAwQG
2MbAMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0
cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI
hvcNAQELBQADggEBAKax2YZKdWE0tFke2lPMAMpr4VcMRN2+dlV4VCUrV1twoQk1
g0jnE8wtwo9WKeSE36TAPd98eBkEiFdfcuK1FWY8XgsaYy7cYLRaSgBGy/VDnwXd
Dj7LtCW4WRrm+Bjq2bAh4mmFMwe2NVxelYjQgxfHwDnpgPWVfUxGnQhBWfopLs9u
0LbnX/fzE/BVHMa1n8k0cd9DZdlD0BO/TSg/Tg3LD/BnLkkBKuuoghFKp4NNowed
66Crdy+OkkR98W9mY9e79flDoW/LoPVcbEvJT3KciMHYw4Gxru3h+haKZXOyLpPB
EuIjYCXOusIRjMjZAxD48U+sRqPN/b94YiwCmtk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:12 2023 by rpki-client on console-ams.rpki-client.org