Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/22b87a59-4196-3e48-8a13-2ab5fde414e0.roa
File: 22b87a59-4196-3e48-8a13-2ab5fde414e0.roa (raw, json)
Hash identifier: sj09G20zaytkfTq5u80cFOXgQq8yruwp7OB4NsJf838=
Subject key identifier: F3:DC:09:5D:8F:E8:ED:38:A7:0B:2E:E9:F0:B8:B6:F4:B4:E7:97:54
Certificate issuer: /CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Certificate serial: 010D0C9F4328583A0D0D6AFE72D3AA138FC4FC00
Authority key identifier: 38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/22b87a59-4196-3e48-8a13-2ab5fde414e0.roa
Signing time: Tue 30 Jul 2019 04:00:00 +0000
ROA not before: Tue 30 Jul 2019 04:00:00 +0000
ROA not after: Mon 30 Jul 2029 04:00:00 +0000
asID: 8972
IP address blocks: 132.148.0.0/16 maxlen: 24
68.178.128.0/17 maxlen: 24
23.229.128.0/17 maxlen: 24
45.40.128.0/18 maxlen: 24
50.62.0.0/15 maxlen: 24
72.167.0.0/16 maxlen: 24
97.74.0.0/16 maxlen: 24
104.238.64.0/18 maxlen: 24
148.72.0.0/16 maxlen: 24
160.153.0.0/16 maxlen: 24
166.62.0.0/17 maxlen: 24
173.201.0.0/16 maxlen: 24
184.168.0.0/16 maxlen: 24
192.169.128.0/17 maxlen: 24
192.186.192.0/18 maxlen: 24
198.12.128.0/17 maxlen: 24
198.71.128.0/17 maxlen: 24
208.109.0.0/16 maxlen: 24
216.69.128.0/18 maxlen: 24
2607:f208:d000::/43 maxlen: 43
2607:f208:df00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3a:0d:0d:6a:fe:72:d3:aa:13:8f:c4:fc:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Validity
Not Before: Jul 30 04:00:00 2019 GMT
Not After : Jul 30 04:00:00 2029 GMT
Subject: CN=2a1fcb74-c1bc-4ad6-b524-884019ce09fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:81:d2:0b:28:81:ad:22:04:1c:64:5b:01:8c:
bb:74:32:4c:bd:89:d1:37:3f:ec:cc:41:3d:50:ba:
66:59:f8:da:0d:e8:5b:0f:e4:ac:c5:f4:94:f8:e7:
c8:f6:8a:14:51:80:92:80:75:e9:19:6f:33:e5:3d:
0e:bf:ab:c0:51:0b:64:1f:a5:32:2d:1f:da:92:41:
fa:cd:2b:e5:91:83:94:90:87:b4:13:e6:f4:9f:e0:
9c:2e:02:56:80:a5:26:7c:20:77:43:e1:e7:2b:f8:
19:36:b1:be:cc:15:07:6d:d0:f3:be:19:be:28:12:
77:f7:ec:45:14:87:e0:e9:31:14:ec:35:b7:36:57:
57:7a:1e:3c:3b:c6:28:ca:3a:57:dc:3b:3f:c8:9e:
aa:3c:18:01:08:9e:20:9a:c8:15:d8:85:66:e8:77:
fb:c4:92:45:b8:c5:ae:ba:b2:69:1a:2e:fb:91:ef:
06:58:70:b2:eb:a8:25:81:68:71:42:26:62:7a:65:
e7:b3:2a:b8:fe:92:42:b2:25:a0:e5:91:8b:c4:35:
9c:e8:c0:4a:d6:1d:fa:92:e8:2a:72:4e:43:5b:4c:
8c:76:3d:26:9e:8a:eb:7e:10:c2:9a:43:e6:90:00:
bb:6e:2f:9f:71:b1:8b:5c:3e:83:ee:9f:d9:6d:2e:
6c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DC:09:5D:8F:E8:ED:38:A7:0B:2E:E9:F0:B8:B6:F4:B4:E7:97:54
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/22b87a59-4196-3e48-8a13-2ab5fde414e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.crl
X509v3 Authority Key Identifier:
keyid:38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
sbgp-ipAddrBlock: critical
IPv4:
23.229.128.0/17
45.40.128.0/18
50.62.0.0/15
68.178.128.0/17
72.167.0.0/16
97.74.0.0/16
104.238.64.0/18
132.148.0.0/16
148.72.0.0/16
160.153.0.0/16
166.62.0.0/17
173.201.0.0/16
184.168.0.0/16
192.169.128.0/17
192.186.192.0/18
198.12.128.0/17
198.71.128.0/17
208.109.0.0/16
216.69.128.0/18
IPv6:
2607:f208:d000::/43
2607:f208:df00::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
4e:59:2e:33:85:b9:aa:f6:88:ce:dc:11:a5:e5:f8:f3:da:6e:
f3:95:54:53:c5:14:5f:9a:9c:84:71:60:94:a5:a8:4c:e9:5e:
29:fe:a5:d9:d6:06:b9:de:81:e6:0c:40:f2:2b:90:8e:a3:76:
42:f7:90:d5:ec:e8:a6:4f:8e:d8:4f:4b:4d:fb:f0:70:40:08:
ba:2f:8f:05:cf:ef:6c:86:7f:a0:81:60:03:1e:b9:65:53:64:
a6:49:1f:7b:14:13:af:da:6e:ea:f4:29:6f:85:73:8c:b2:a2:
2f:8d:80:c8:a6:45:f6:4c:be:18:ab:a4:d7:e1:4a:e7:14:ba:
55:85:84:b6:7f:8d:8e:3b:79:39:0f:a3:59:1f:f6:bd:0a:26:
0f:c5:8b:be:67:64:9b:bb:9b:43:51:7d:86:41:7a:c3:d5:92:
cc:b9:0b:6e:e2:76:a3:c1:da:5e:73:7d:5e:c5:b8:8d:91:19:
0b:e9:fe:d7:4f:80:1c:2a:c1:da:d1:18:78:f0:d6:8e:dd:a9:
00:d3:4d:73:82:da:d9:fe:15:38:25:b5:7f:0f:cd:1e:32:59:
b6:64:20:ae:87:e3:da:40:ed:41:19:4f:8e:b6:cf:23:88:28:
c5:0c:e7:6b:4b:74:9c:7f:62:0c:3d:d6:28:f3:43:2f:c6:fb:
5d:a4:d8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:33 2024 by rpki-client on console-fra.rpki-client.org