Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/ea94d082-5e07-38fe-852d-3530e4c452a7.roa
File: ea94d082-5e07-38fe-852d-3530e4c452a7.roa (raw, json)
Hash identifier: Lh30j17iDQQ6jmrWH7V4mJq9Rv0tA8W33N96Sc/H5wY=
Subject key identifier: 1E:4B:91:F5:F4:5F:EE:5E:FD:5C:98:63:60:93:AA:B4:39:39:8D:E5
Certificate issuer: /CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Certificate serial: 010D0C9F4328583A0D0D8464623EE0D1C77690C0
Authority key identifier: 38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/ea94d082-5e07-38fe-852d-3530e4c452a7.roa
Signing time: Tue 30 Jul 2019 04:00:00 +0000
ROA not before: Tue 30 Jul 2019 04:00:00 +0000
ROA not after: Mon 30 Jul 2029 04:00:00 +0000
asID: 16892
IP address blocks: 132.148.0.0/16 maxlen: 24
68.178.128.0/17 maxlen: 24
23.229.128.0/17 maxlen: 24
45.40.128.0/18 maxlen: 24
50.62.0.0/15 maxlen: 24
72.167.0.0/16 maxlen: 24
97.74.0.0/16 maxlen: 24
104.238.64.0/18 maxlen: 24
148.72.0.0/16 maxlen: 24
160.153.0.0/16 maxlen: 24
166.62.0.0/17 maxlen: 24
173.201.0.0/16 maxlen: 24
184.168.0.0/16 maxlen: 24
192.169.128.0/17 maxlen: 24
192.186.192.0/18 maxlen: 24
198.12.128.0/17 maxlen: 24
198.71.128.0/17 maxlen: 24
208.109.0.0/16 maxlen: 24
216.69.128.0/18 maxlen: 24
2607:f208:d000::/43 maxlen: 43
2607:f208:df00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3a:0d:0d:84:64:62:3e:e0:d1:c7:76:90:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed5ce80-224e-46ab-94f1-1afce8ccf13f
Validity
Not Before: Jul 30 04:00:00 2019 GMT
Not After : Jul 30 04:00:00 2029 GMT
Subject: CN=879caecc-1977-4144-9a38-01237f1c7692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:12:e0:a9:e3:84:ac:14:bb:4b:19:b3:6d:46:
74:ce:b7:32:d1:29:c3:35:fd:d2:40:66:90:d4:75:
a9:d6:dd:4d:c4:db:b3:b4:40:3b:40:64:01:8c:f3:
06:3f:03:86:f1:fb:67:c8:45:3f:90:de:bb:77:c2:
1d:bc:bd:f5:e9:39:e1:17:b7:75:26:96:9b:2b:59:
c3:b7:4e:a0:58:3c:04:1a:f5:fe:cb:97:3e:b5:b5:
e1:1d:d0:31:b9:fa:90:f0:c8:0f:2c:db:20:77:38:
e0:35:b7:b2:4e:26:32:bc:1f:c6:d3:2d:b8:a8:48:
d0:dc:2b:99:eb:3d:b4:fe:ee:21:5a:a8:47:f3:e2:
d9:05:41:2b:98:dc:c5:3a:73:d1:2d:df:5f:40:16:
36:01:87:ee:ec:c6:4c:37:de:55:00:86:b2:7d:f3:
dd:4f:48:0a:8a:bc:cc:bd:fb:47:c5:aa:ca:aa:26:
94:13:a5:c3:65:23:65:6a:55:9c:4a:52:ca:ff:ca:
71:80:19:f1:26:42:83:f8:83:6d:0a:41:fe:f0:99:
4f:a3:92:9d:9a:d3:c3:9e:91:40:1c:ac:f2:db:2e:
45:10:ae:37:c9:e2:ac:84:b5:c3:99:66:1a:cc:87:
35:57:d0:e2:50:57:60:8c:b6:f7:f9:ea:ce:f4:2e:
97:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4B:91:F5:F4:5F:EE:5E:FD:5C:98:63:60:93:AA:B4:39:39:8D:E5
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/ea94d082-5e07-38fe-852d-3530e4c452a7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.crl
X509v3 Authority Key Identifier:
keyid:38:1D:9F:A6:BA:7C:C1:A8:44:AE:09:FE:5A:00:96:9D:3B:FC:E1:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/9ed5ce80-224e-46ab-94f1-1afce8ccf13f.cer
sbgp-ipAddrBlock: critical
IPv4:
23.229.128.0/17
45.40.128.0/18
50.62.0.0/15
68.178.128.0/17
72.167.0.0/16
97.74.0.0/16
104.238.64.0/18
132.148.0.0/16
148.72.0.0/16
160.153.0.0/16
166.62.0.0/17
173.201.0.0/16
184.168.0.0/16
192.169.128.0/17
192.186.192.0/18
198.12.128.0/17
198.71.128.0/17
208.109.0.0/16
216.69.128.0/18
IPv6:
2607:f208:d000::/43
2607:f208:df00::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
19:19:24:d6:f6:a4:1d:38:6e:f3:a7:b0:46:7b:79:a7:4d:d3:
a2:d5:c1:e1:7b:f7:1c:b8:be:cc:6e:d6:f0:f5:53:f5:ad:a6:
79:0e:77:9e:c9:42:94:05:f1:13:e8:c9:cb:ec:b5:7d:8f:5a:
4a:a3:7c:11:d4:29:61:19:85:2f:6f:e2:6b:39:f1:ea:f7:5e:
5b:a2:52:2d:d6:4e:cc:71:b3:05:17:5a:92:a6:5f:cb:79:47:
3f:72:91:f8:04:0d:15:72:49:a0:a9:ee:99:00:82:79:8e:6a:
1f:8b:c8:55:fe:62:b0:ff:5e:9c:69:8a:d9:29:04:a0:eb:4c:
1a:24:3e:4c:23:86:ad:ec:ac:77:20:3e:87:f7:6e:cf:23:47:
c7:cf:91:92:d7:e2:28:50:10:a8:9f:f2:ac:72:f8:bc:53:c0:
5b:ab:1f:41:3a:7c:25:c0:8b:cd:43:11:a8:ed:f0:89:9f:cf:
1f:98:e7:ab:d9:88:d9:d3:28:8b:9c:5a:b3:10:23:ff:e0:4b:
65:87:86:56:39:2e:3f:90:71:36:15:42:da:aa:8d:e1:2c:01:
ec:d6:10:04:0c:56:63:a2:db:20:64:b9:1c:61:c5:33:26:7c:
83:0c:89:7c:cf:19:31:c4:2d:19:a8:6d:3f:8a:ee:9e:96:ef:
14:d1:96:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:34 2024 by rpki-client on console-fra.rpki-client.org