Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/3b67af2e-2d65-332b-acc9-42227a68d79b.roa
File: 3b67af2e-2d65-332b-acc9-42227a68d79b.roa (raw, json)
Hash identifier: q1eZ+WnGtsjsiMweP5xe5PwVZ0T9h2g+P8asUshotQ0=
Subject key identifier: 4A:04:03:20:A9:4F:BE:BF:34:1C:CA:13:2B:10:FF:B6:1A:A3:3E:37
Certificate issuer: /CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Certificate serial: 010D0C9F4328583A0D0D97852FC753E600064620
Authority key identifier: 38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/3b67af2e-2d65-332b-acc9-42227a68d79b.roa
Signing time: Tue 30 Jul 2019 04:00:00 +0000
ROA not before: Tue 30 Jul 2019 04:00:00 +0000
ROA not after: Mon 30 Jul 2029 04:00:00 +0000
asID: 20738
IP address blocks: 132.148.0.0/16 maxlen: 24
68.178.128.0/17 maxlen: 24
23.229.128.0/17 maxlen: 24
45.40.128.0/18 maxlen: 24
50.62.0.0/15 maxlen: 24
72.167.0.0/16 maxlen: 24
97.74.0.0/16 maxlen: 24
104.238.64.0/18 maxlen: 24
148.72.0.0/16 maxlen: 24
160.153.0.0/16 maxlen: 24
166.62.0.0/17 maxlen: 24
173.201.0.0/16 maxlen: 24
184.168.0.0/16 maxlen: 24
192.169.128.0/17 maxlen: 24
192.186.192.0/18 maxlen: 24
198.12.128.0/17 maxlen: 24
198.71.128.0/17 maxlen: 24
208.109.0.0/16 maxlen: 24
216.69.128.0/18 maxlen: 24
2607:f208:d000::/43 maxlen: 43
2607:f208:df00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3a:0d:0d:97:85:2f:c7:53:e6:00:06:46:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Validity
Not Before: Jul 30 04:00:00 2019 GMT
Not After : Jul 30 04:00:00 2029 GMT
Subject: CN=81ce4446-6f4e-46b4-b45b-d92aa0312a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a4:80:cb:d2:19:09:e7:1e:00:20:e7:35:27:
f9:38:23:54:ae:c8:97:5d:db:0f:0e:91:19:56:3d:
66:1d:65:d0:53:fd:57:74:66:22:52:65:af:eb:74:
f6:2e:7a:81:97:f0:84:d6:84:53:1a:e9:19:f4:e0:
ba:11:37:a1:1e:0e:62:82:25:39:77:1d:8e:6c:d8:
a0:9c:fc:62:73:a5:b9:ac:e7:f7:fb:82:5d:cf:7c:
07:e4:58:7b:61:3c:71:af:e7:f7:1b:3b:9d:46:ea:
42:c0:51:ec:d9:50:29:59:fa:5f:be:40:24:a8:35:
aa:b1:22:96:4a:d0:e4:67:2e:57:65:14:c7:b6:21:
88:da:0b:21:35:35:ab:78:a4:5b:71:e6:89:d8:59:
d9:15:6b:02:bf:cf:aa:2f:27:c4:37:69:09:0c:ac:
13:90:93:98:66:92:f0:c9:44:9f:60:01:9a:d3:93:
8d:36:e5:80:23:b8:c7:18:8d:c8:8b:3b:d9:a0:9d:
d6:5a:07:ff:53:23:01:6c:dd:5c:be:7f:73:f7:03:
50:1f:6c:bb:f7:fd:23:99:43:33:73:29:d6:8d:12:
b0:a8:4a:0a:51:63:3d:f6:de:b3:2a:04:b5:49:86:
10:45:4b:23:30:43:86:4b:df:f9:5e:7e:51:0a:88:
eb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:04:03:20:A9:4F:BE:BF:34:1C:CA:13:2B:10:FF:B6:1A:A3:3E:37
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/3b67af2e-2d65-332b-acc9-42227a68d79b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.crl
X509v3 Authority Key Identifier:
keyid:38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
sbgp-ipAddrBlock: critical
IPv4:
23.229.128.0/17
45.40.128.0/18
50.62.0.0/15
68.178.128.0/17
72.167.0.0/16
97.74.0.0/16
104.238.64.0/18
132.148.0.0/16
148.72.0.0/16
160.153.0.0/16
166.62.0.0/17
173.201.0.0/16
184.168.0.0/16
192.169.128.0/17
192.186.192.0/18
198.12.128.0/17
198.71.128.0/17
208.109.0.0/16
216.69.128.0/18
IPv6:
2607:f208:d000::/43
2607:f208:df00::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1a:f8:fb:f0:ac:2e:56:d0:64:81:66:e6:5e:ca:2b:d9:95:b6:
69:00:fa:ee:18:81:86:2b:f2:cf:e7:9e:60:bc:4a:c5:cb:fd:
42:2f:38:55:5a:b4:1f:84:92:6d:79:34:35:30:cd:37:56:c0:
76:50:99:ee:05:26:e7:05:f4:84:aa:ce:4d:12:9d:5b:29:f9:
dd:0b:70:80:cb:43:b1:f4:b1:06:9f:42:4a:dc:c6:a4:6c:28:
5c:4a:6d:81:5a:78:2b:fe:f1:00:05:0e:26:24:3f:e1:fb:a0:
09:06:af:bc:a7:cb:3d:6c:f2:24:b9:b9:5b:72:60:d8:c4:11:
bb:a4:5d:8f:72:e6:c2:6f:8b:a6:17:10:c6:c7:8a:7e:40:c6:
64:f2:d5:fd:3b:1d:2f:58:7f:28:a5:14:9d:a5:63:c4:6f:d7:
c0:4c:7a:44:3c:24:52:50:86:00:b6:7b:dc:e6:f1:02:46:a8:
23:02:01:6b:71:c7:43:a3:88:39:67:e6:c3:b9:a9:27:96:c7:
18:1f:d0:13:b6:9e:c2:e1:e4:43:86:87:00:a4:22:3c:fc:66:
fc:fc:72:84:7a:28:37:ef:49:7f:37:fc:b0:00:de:59:05:60:
6f:31:41:40:38:b9:b9:4d:9b:00:c1:72:b0:da:61:38:65:01:
a5:13:6e:c6
-----BEGIN CERTIFICATE-----
MIIGwzCCBaugAwIBAgIUAQ0Mn0MoWDoNDZeFL8dT5gAGRiAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkOWVkNWNlODAtMjI0ZS00NmFiLTk0ZjEtMWFmY2U4Y2Nm
MTNmMB4XDTE5MDczMDA0MDAwMFoXDTI5MDczMDA0MDAwMFowLzEtMCsGA1UEAxMk
ODFjZTQ0NDYtNmY0ZS00NmI0LWI0NWItZDkyYWEwMzEyYTZlMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKSAy9IZCeceACDnNSf5OCNUrsiXXdsPDpEZ
Vj1mHWXQU/1XdGYiUmWv63T2LnqBl/CE1oRTGukZ9OC6ETehHg5igiU5dx2ObNig
nPxic6W5rOf3+4Jdz3wH5Fh7YTxxr+f3GzudRupCwFHs2VApWfpfvkAkqDWqsSKW
StDkZy5XZRTHtiGI2gshNTWreKRbceaJ2FnZFWsCv8+qLyfEN2kJDKwTkJOYZpLw
yUSfYAGa05ONNuWAI7jHGI3IizvZoJ3WWgf/UyMBbN1cvn9z9wNQH2y79/0jmUMz
cynWjRKwqEoKUWM99t6zKgS1SYYQRUsjMEOGS9/5Xn5RCojrJwIDAQABo4ID1TCC
A9EwHQYDVR0OBBYEFEoEAyCpT76/NBzKEysQ/7Yaoz43MIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi85ZWQ1
Y2U4MC0yMjRlLTQ2YWItOTRmMS0xYWZjZThjY2YxM2YvM2I2N2FmMmUtMmQ2NS0z
MzJiLWFjYzktNDIyMjdhNjhkNzliLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvOWVkNWNlODAtMjI0ZS00NmFiLTk0
ZjEtMWFmY2U4Y2NmMTNmLzllZDVjZTgwLTIyNGUtNDZhYi05NGYxLTFhZmNlOGNj
ZjEzZi5jcmwwHwYDVR0jBBgwFoAUOB2fprp8wahErgn+WgCWnTv84Q8wDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi85ZWQ1Y2U4MC0yMjRlLTQ2YWItOTRmMS0xYWZj
ZThjY2YxM2YuY2VyMIGeBggrBgEFBQcBBwEB/wSBjjCBizBvBAIAATBpAwQHF+WA
AwQGLSiAAwMBMj4DBAdEsoADAwBIpwMDAGFKAwQGaO5AAwMAhJQDAwCUSAMDAKCZ
AwQHpj4AAwMArckDAwC4qAMEB8CpgAMEBsC6wAMEB8YMgAMEB8ZHgAMDANBtAwQG
2EWAMBgEAgACMBIDBwUmB/II0AADBwAmB/II3wAwVAYDVR0gAQH/BEowSDBGBggr
BgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNv
dXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAGvj78KwuVtBk
gWbmXsor2ZW2aQD67hiBhivyz+eeYLxKxcv9Qi84VVq0H4SSbXk0NTDNN1bAdlCZ
7gUm5wX0hKrOTRKdWyn53QtwgMtDsfSxBp9CStzGpGwoXEptgVp4K/7xAAUOJiQ/
4fugCQavvKfLPWzyJLm5W3Jg2MQRu6Rdj3Lmwm+LphcQxseKfkDGZPLV/TsdL1h/
KKUUnaVjxG/XwEx6RDwkUlCGALZ73ObxAkaoIwIBa3HHQ6OIOWfmw7mpJ5bHGB/Q
E7aewuHkQ4aHAKQiPPxm/PxyhHooN+9Jfzf8sADeWQVgbzFBQDi5uU2bAMFysNph
OGUBpRNuxg==
-----END CERTIFICATE-----
Generated at Mon Oct 21 16:36:33 2024 by rpki-client on console-ams.rpki-client.org