Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/6eaf1c52-406d-38b0-a086-b95ce77129d8.roa
File: 6eaf1c52-406d-38b0-a086-b95ce77129d8.roa (raw, json)
Hash identifier: z3XCeKaSLgGUXMzYSuQmvicMzj7XE9r7aXEg2ZZHFAA=
Subject key identifier: FE:F9:5E:98:82:B9:12:8E:D8:84:6A:1C:46:C2:5E:64:CD:BB:E2:C3
Certificate issuer: /CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Certificate serial: 010D0C9F4328583A0D0E95F21F9BB6929C368980
Authority key identifier: 38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/6eaf1c52-406d-38b0-a086-b95ce77129d8.roa
Signing time: Tue 30 Jul 2019 04:00:00 +0000
ROA not before: Tue 30 Jul 2019 04:00:00 +0000
ROA not after: Mon 30 Jul 2029 04:00:00 +0000
asID: 398786
IP address blocks: 132.148.0.0/16 maxlen: 24
68.178.128.0/17 maxlen: 24
23.229.128.0/17 maxlen: 24
45.40.128.0/18 maxlen: 24
50.62.0.0/15 maxlen: 24
72.167.0.0/16 maxlen: 24
97.74.0.0/16 maxlen: 24
104.238.64.0/18 maxlen: 24
148.72.0.0/16 maxlen: 24
160.153.0.0/16 maxlen: 24
166.62.0.0/17 maxlen: 24
173.201.0.0/16 maxlen: 24
184.168.0.0/16 maxlen: 24
192.169.128.0/17 maxlen: 24
192.186.192.0/18 maxlen: 24
198.12.128.0/17 maxlen: 24
198.71.128.0/17 maxlen: 24
208.109.0.0/16 maxlen: 24
216.69.128.0/18 maxlen: 24
2607:f208:d000::/43 maxlen: 43
2607:f208:df00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3a:0d:0e:95:f2:1f:9b:b6:92:9c:36:89:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Validity
Not Before: Jul 30 04:00:00 2019 GMT
Not After : Jul 30 04:00:00 2029 GMT
Subject: CN=b0936e55-8514-48ed-bb39-2f5e5f4a5cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:eb:e7:b7:2e:f3:1a:88:3c:df:8e:6c:42:34:
81:52:a5:39:b3:91:f6:3f:c2:b7:cd:09:84:e9:44:
10:08:41:96:c8:28:6e:e2:b3:1e:f5:a1:32:fe:19:
6e:7f:35:31:d3:a7:a9:13:81:97:0a:e3:54:83:b9:
8e:06:98:e0:70:24:b4:54:f9:bb:b4:c2:7c:ee:e1:
01:02:c1:b7:b8:1a:7b:79:88:c2:8a:76:b8:53:61:
e7:e3:c3:39:e3:bc:f3:c8:5f:db:98:bb:83:ef:4d:
aa:90:55:67:fb:3c:0e:b5:86:91:f4:96:0b:3a:a1:
aa:e2:8f:81:a1:bb:f5:79:62:27:a8:09:78:f5:86:
eb:94:1d:31:7e:26:1b:75:76:be:4e:68:f3:88:67:
f8:f8:0c:30:69:cb:a7:44:92:b2:b6:8a:bb:dc:db:
45:aa:27:70:7a:9d:74:d4:8b:02:af:65:41:2d:62:
6b:48:ff:54:cb:a0:71:74:22:c4:fb:d0:03:f8:72:
87:56:17:02:42:e5:49:6a:39:ae:8f:84:47:b0:88:
73:4d:95:7d:6f:41:02:ef:fb:30:4b:6b:c2:81:dc:
8c:a4:bd:a5:64:33:6a:ea:1a:53:2f:85:b9:52:a1:
5f:25:ac:57:41:68:88:7a:f6:25:90:ac:78:80:e7:
06:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F9:5E:98:82:B9:12:8E:D8:84:6A:1C:46:C2:5E:64:CD:BB:E2:C3
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/6eaf1c52-406d-38b0-a086-b95ce77129d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.crl
X509v3 Authority Key Identifier:
keyid:38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
sbgp-ipAddrBlock: critical
IPv4:
23.229.128.0/17
45.40.128.0/18
50.62.0.0/15
68.178.128.0/17
72.167.0.0/16
97.74.0.0/16
104.238.64.0/18
132.148.0.0/16
148.72.0.0/16
160.153.0.0/16
166.62.0.0/17
173.201.0.0/16
184.168.0.0/16
192.169.128.0/17
192.186.192.0/18
198.12.128.0/17
198.71.128.0/17
208.109.0.0/16
216.69.128.0/18
IPv6:
2607:f208:d000::/43
2607:f208:df00::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
9b:12:9c:50:5b:59:ae:c6:ab:d8:8e:ee:91:4d:b5:6c:f2:52:
e4:3d:2f:ff:b2:d5:cf:d2:f4:41:e7:b8:54:bc:06:05:72:b1:
39:5d:43:91:bb:af:55:39:6e:b4:a9:ce:d3:ed:cc:91:f6:59:
71:e4:6d:ee:66:b1:ab:4a:2d:e1:e2:77:df:0a:fa:55:3c:35:
77:49:6b:d6:8d:42:2f:23:67:96:d9:34:3b:c4:80:64:62:f0:
b0:c0:70:bc:71:95:18:57:31:3d:34:d8:ff:a4:79:8e:bc:d8:
60:ef:dc:ae:53:c7:4d:12:f6:1d:55:17:09:e4:bb:15:28:6c:
b0:42:57:04:92:42:af:f3:29:ad:09:1f:c7:8d:d8:a8:af:9a:
4b:08:36:30:d4:77:01:57:20:e7:09:a5:16:7d:1a:e0:fb:b3:
10:e9:32:39:75:12:24:df:bd:91:70:13:1a:36:b9:40:7d:2a:
1e:d8:f6:7b:36:3b:d7:f0:39:33:20:d8:c3:37:ba:07:08:5f:
f3:d9:47:3e:83:8d:a2:99:fe:0c:e6:51:2e:bd:fb:1e:fe:55:
57:66:cd:5b:3a:c7:4d:de:61:03:eb:62:be:f5:39:81:92:4e:
4b:a6:8e:4d:b3:c1:99:da:44:75:95:97:48:b3:78:d7:b0:af:
ca:b8:c9:c0
-----BEGIN CERTIFICATE-----
MIIGwzCCBaugAwIBAgIUAQ0Mn0MoWDoNDpXyH5u2kpw2iYAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkOWVkNWNlODAtMjI0ZS00NmFiLTk0ZjEtMWFmY2U4Y2Nm
MTNmMB4XDTE5MDczMDA0MDAwMFoXDTI5MDczMDA0MDAwMFowLzEtMCsGA1UEAxMk
YjA5MzZlNTUtODUxNC00OGVkLWJiMzktMmY1ZTVmNGE1Y2QxMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+vnty7zGog8345sQjSBUqU5s5H2P8K3zQmE
6UQQCEGWyChu4rMe9aEy/hlufzUx06epE4GXCuNUg7mOBpjgcCS0VPm7tMJ87uEB
AsG3uBp7eYjCina4U2Hn48M547zzyF/bmLuD702qkFVn+zwOtYaR9JYLOqGq4o+B
obv1eWInqAl49YbrlB0xfiYbdXa+TmjziGf4+AwwacunRJKytoq73NtFqidwep10
1IsCr2VBLWJrSP9Uy6BxdCLE+9AD+HKHVhcCQuVJajmuj4RHsIhzTZV9b0EC7/sw
S2vCgdyMpL2lZDNq6hpTL4W5UqFfJaxXQWiIevYlkKx4gOcGCwIDAQABo4ID1TCC
A9EwHQYDVR0OBBYEFP75XpiCuRKO2IRqHEbCXmTNu+LDMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi85ZWQ1
Y2U4MC0yMjRlLTQ2YWItOTRmMS0xYWZjZThjY2YxM2YvNmVhZjFjNTItNDA2ZC0z
OGIwLWEwODYtYjk1Y2U3NzEyOWQ4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvOWVkNWNlODAtMjI0ZS00NmFiLTk0
ZjEtMWFmY2U4Y2NmMTNmLzllZDVjZTgwLTIyNGUtNDZhYi05NGYxLTFhZmNlOGNj
ZjEzZi5jcmwwHwYDVR0jBBgwFoAUOB2fprp8wahErgn+WgCWnTv84Q8wDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi85ZWQ1Y2U4MC0yMjRlLTQ2YWItOTRmMS0xYWZj
ZThjY2YxM2YuY2VyMIGeBggrBgEFBQcBBwEB/wSBjjCBizBvBAIAATBpAwQHF+WA
AwQGLSiAAwMBMj4DBAdEsoADAwBIpwMDAGFKAwQGaO5AAwMAhJQDAwCUSAMDAKCZ
AwQHpj4AAwMArckDAwC4qAMEB8CpgAMEBsC6wAMEB8YMgAMEB8ZHgAMDANBtAwQG
2EWAMBgEAgACMBIDBwUmB/II0AADBwAmB/II3wAwVAYDVR0gAQH/BEowSDBGBggr
BgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNv
dXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAmxKcUFtZrsar
2I7ukU21bPJS5D0v/7LVz9L0Qee4VLwGBXKxOV1DkbuvVTlutKnO0+3MkfZZceRt
7maxq0ot4eJ33wr6VTw1d0lr1o1CLyNnltk0O8SAZGLwsMBwvHGVGFcxPTTY/6R5
jrzYYO/crlPHTRL2HVUXCeS7FShssEJXBJJCr/MprQkfx43YqK+aSwg2MNR3AVcg
5wmlFn0a4PuzEOkyOXUSJN+9kXATGja5QH0qHtj2ezY71/A5MyDYwze6Bwhf89lH
PoONopn+DOZRLr37Hv5VV2bNWzrHTd5hA+tivvU5gZJOS6aOTbPBmdpEdZWXSLN4
17CvyrjJwA==
-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:33 2024 by rpki-client on console-fra.rpki-client.org