Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab/6fa75dd9-f64c-308f-96a4-45fd5e3d76f6.roa
File: 6fa75dd9-f64c-308f-96a4-45fd5e3d76f6.roa (raw, json)
Hash identifier: xtvLuuOFAjqiVwqn6kFpBPUdzBGm+t7VXIeTilXzpYw=
Subject key identifier: A4:B2:8E:36:8C:44:D1:E6:CC:68:29:65:BB:E0:57:E8:49:B1:80:BC
Certificate issuer: /CN=4190a890-d7ce-4ea4-a558-53090be01bab
Certificate serial: 010D0C9F432858483885575248BEAB081AA19BA0
Authority key identifier: AA:A8:98:B8:A7:9B:46:D4:9B:4E:1D:A2:5B:03:C8:B4:B1:21:E0:AB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab/6fa75dd9-f64c-308f-96a4-45fd5e3d76f6.roa
Signing time: Mon 16 Dec 2024 02:00:39 +0000
ROA not before: Mon 16 Dec 2024 02:00:39 +0000
ROA not after: Sun 16 Mar 2025 01:00:39 +0000
asID: 15967
IP address blocks: 185.248.212.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:38:85:57:52:48:be:ab:08:1a:a1:9b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4190a890-d7ce-4ea4-a558-53090be01bab
Validity
Not Before: Dec 16 02:00:39 2024 GMT
Not After : Mar 16 01:00:39 2025 GMT
Subject: CN=93a51c22-93f2-4ab0-8fa3-f8fa1d9a8127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:60:87:fd:21:be:5a:f0:47:28:85:55:a3:
2b:1d:50:b7:70:85:26:14:ef:7a:18:db:5a:3e:f6:
ba:d0:05:8c:1a:9a:9e:51:de:ff:88:fc:09:ee:03:
09:1e:3b:67:e6:8c:0f:c1:38:11:49:d8:8b:03:04:
9c:33:28:f0:26:79:69:68:b5:56:b5:1d:10:08:df:
36:55:75:11:a6:5d:a4:b3:c5:73:5f:40:61:0f:4d:
28:66:00:de:5b:ba:dd:87:6d:56:3a:e2:24:57:8a:
86:71:55:1b:00:57:d0:a9:59:75:96:01:02:74:c6:
1a:53:d9:b6:46:45:3d:e2:dc:f6:41:e6:5a:32:a8:
7a:31:82:b9:e2:63:51:d5:20:37:3c:f6:0b:64:d2:
5f:fe:8a:b9:32:d6:f4:bf:d5:f5:56:62:b8:11:35:
8d:f7:f4:1b:e9:3c:ce:7c:1c:31:00:66:88:2f:0c:
49:6c:f1:0d:3a:f7:d5:a2:cb:58:a6:72:b7:a7:ce:
2e:a5:87:87:27:72:c9:06:42:83:85:0a:7c:5d:ca:
35:5a:31:8c:5e:f2:d1:09:b1:90:55:52:ed:52:a9:
22:57:b2:16:27:9d:c2:64:e9:04:51:d6:b9:83:b8:
ba:e5:c8:0f:d8:5d:c2:1f:3a:a9:fd:4a:bc:e5:d5:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B2:8E:36:8C:44:D1:E6:CC:68:29:65:BB:E0:57:E8:49:B1:80:BC
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab/6fa75dd9-f64c-308f-96a4-45fd5e3d76f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab/4190a890-d7ce-4ea4-a558-53090be01bab.crl
X509v3 Authority Key Identifier:
keyid:AA:A8:98:B8:A7:9B:46:D4:9B:4E:1D:A2:5B:03:C8:B4:B1:21:E0:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4190a890-d7ce-4ea4-a558-53090be01bab.cer
sbgp-ipAddrBlock: critical
IPv4:
185.248.212.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2b:0e:de:ca:87:af:df:29:e2:83:92:ed:22:30:b3:c2:e2:05:
e1:7f:2e:91:b6:95:6e:15:50:be:90:eb:5f:3f:2f:d4:d7:bc:
78:2f:ec:dd:42:5c:21:17:71:b4:1b:0e:b3:1e:20:fe:67:66:
bf:96:28:92:f3:ac:60:9f:7b:e1:f6:6d:c1:c3:03:4f:de:77:
4a:14:9b:bb:0f:33:76:c4:8e:e2:5d:93:a2:b9:86:04:a3:c0:
30:f6:63:81:e2:8f:33:a1:79:dc:36:da:2d:b2:1d:5f:8f:99:
8f:45:bd:5a:85:fc:26:88:12:89:dd:83:30:bc:51:eb:c4:63:
fb:74:35:17:56:68:ef:c9:04:a8:fa:b0:7d:44:3d:1f:7c:cb:
3d:13:e8:b6:2c:a0:da:24:d8:d0:90:57:12:59:11:90:8d:bd:
13:3f:46:a0:03:89:03:51:eb:3e:5d:67:96:c4:1c:9d:9b:dd:
01:9e:9b:70:97:29:61:9b:0f:f7:09:a8:3c:7e:4c:31:24:f6:
b0:c7:1e:40:40:07:80:60:76:e1:12:f2:d7:66:9d:36:55:5c:
34:29:c2:90:a8:5a:7a:43:36:71:e0:e8:a1:ea:f5:ef:e9:22:
7a:88:b9:35:25:31:92:01:0b:06:39:33:6a:b9:05:83:c6:e3:
93:dc:f4:b5
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEg4hVdSSL6rCBqhm6AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNDE5MGE4OTAtZDdjZS00ZWE0LWE1NTgtNTMwOTBiZTAx
YmFiMB4XDTI0MTIxNjAyMDAzOVoXDTI1MDMxNjAxMDAzOVowLzEtMCsGA1UEAxMk
OTNhNTFjMjItOTNmMi00YWIwLThmYTMtZjhmYTFkOWE4MTI3MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/5gh/0hvlrwRyiFVaMrHVC3cIUmFO96GNta
Pva60AWMGpqeUd7/iPwJ7gMJHjtn5owPwTgRSdiLAwScMyjwJnlpaLVWtR0QCN82
VXURpl2ks8VzX0BhD00oZgDeW7rdh21WOuIkV4qGcVUbAFfQqVl1lgECdMYaU9m2
RkU94tz2QeZaMqh6MYK54mNR1SA3PPYLZNJf/oq5Mtb0v9X1VmK4ETWN9/Qb6TzO
fBwxAGaILwxJbPENOvfVostYpnK3p84upYeHJ3LJBkKDhQp8Xco1WjGMXvLRCbGQ
VVLtUqkiV7IWJ53CZOkEUda5g7i65cgP2F3CHzqp/Uq85dVdBQIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFKSyjjaMRNHmzGgpZbvgV+hJsYC8MIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIzMy05YTg4LTViMjJkMmE4MzM3ZC80MTkw
YTg5MC1kN2NlLTRlYTQtYTU1OC01MzA5MGJlMDFiYWIvNmZhNzVkZDktZjY0Yy0z
MDhmLTk2YTQtNDVmZDVlM2Q3NmY2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy80YWI3YWU0ZC1i
ZDdiLTRiMzMtOWE4OC01YjIyZDJhODMzN2QvNDE5MGE4OTAtZDdjZS00ZWE0LWE1
NTgtNTMwOTBiZTAxYmFiLzQxOTBhODkwLWQ3Y2UtNGVhNC1hNTU4LTUzMDkwYmUw
MWJhYi5jcmwwHwYDVR0jBBgwFoAUqqiYuKebRtSbTh2iWwPItLEh4KswDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2ItNGIz
My05YTg4LTViMjJkMmE4MzM3ZC80MTkwYTg5MC1kN2NlLTRlYTQtYTU1OC01MzA5
MGJlMDFiYWIuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufjUMFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBACsO3sqHr98p4oOS7SIws8LiBeF/LpG2lW4VUL6Q618/L9TXvHgv7N1C
XCEXcbQbDrMeIP5nZr+WKJLzrGCfe+H2bcHDA0/ed0oUm7sPM3bEjuJdk6K5hgSj
wDD2Y4HijzOhedw22i2yHV+PmY9FvVqF/CaIEondgzC8UevEY/t0NRdWaO/JBKj6
sH1EPR98yz0T6LYsoNok2NCQVxJZEZCNvRM/RqADiQNR6z5dZ5bEHJ2b3QGem3CX
KWGbD/cJqDx+TDEk9rDHHkBAB4BgduES8tdmnTZVXDQpwpCoWnpDNnHg6KHq9e/p
InqIuTUlMZIBCwY5M2q5BYPG45Pc9LU=
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:01:40 2025 by rpki-client