Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/bd375cad-2142-3677-b2ed-89e6e6043997.roa
File: bd375cad-2142-3677-b2ed-89e6e6043997.roa (raw, json)
Hash identifier: Lla7w0AvbP/6sNAE+i7lHW3iBelXK1u+mG5Z0QauJ1w=
Subject key identifier: 32:1F:7F:C9:44:C2:84:B2:BF:12:B0:43:BE:93:27:2D:41:7A:26:00
Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Certificate serial: 010D0C9F4328583D3F5FEB4E6E718FE26E9A76F0
Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/bd375cad-2142-3677-b2ed-89e6e6043997.roa
Signing time: Tue 15 Mar 2022 04:00:00 +0000
ROA not before: Tue 15 Mar 2022 04:00:00 +0000
ROA not after: Tue 07 Mar 2028 05:00:00 +0000
asID: 7029
IP address blocks: 205.147.210.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3d:3f:5f:eb:4e:6e:71:8f:e2:6e:9a:76:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Validity
Not Before: Mar 15 04:00:00 2022 GMT
Not After : Mar 7 05:00:00 2028 GMT
Subject: CN=e3b90aa3-a44b-4537-beac-53b722184240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:45:f6:7a:67:62:ad:ac:da:10:24:23:4e:ee:
1b:43:74:d0:93:e2:12:b1:ec:a2:cc:0e:ee:ab:be:
e0:16:0f:3d:a6:91:96:72:1c:c8:d5:46:2f:f8:5d:
aa:25:7a:91:14:40:71:ac:b0:3b:01:07:b9:34:71:
b5:ce:9c:a5:18:de:b6:e8:3c:d6:89:73:d5:05:f4:
3f:05:71:48:0b:ca:11:34:41:4e:e7:8d:39:f6:0d:
a4:1e:04:40:f1:8a:5b:94:21:b5:3e:88:82:ca:76:
d9:9b:3a:00:6d:67:1d:5b:a7:a2:89:fa:b4:bc:3f:
9b:d6:ed:cd:a4:0e:59:5c:d2:b3:44:12:78:57:65:
ac:bf:9a:2b:80:65:6a:8c:b8:29:a5:a2:c3:96:37:
7f:e6:86:0a:2e:61:4e:25:1e:bb:4a:cd:9c:2a:8a:
a5:6d:c9:7e:28:37:24:4d:ba:59:23:fc:38:93:79:
e0:d2:6c:72:3a:b7:3c:6c:2e:84:c2:54:d1:b9:d7:
fa:3a:41:88:17:44:b9:7c:e5:a2:48:f2:d4:9e:87:
9b:ca:91:f3:2d:be:95:75:ee:27:37:48:b9:4f:16:
ba:82:14:30:3b:10:f6:1b:18:b4:55:a6:dc:54:33:
c9:5b:cf:8f:a5:23:bf:3e:c8:d6:f3:43:b7:11:22:
1e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1F:7F:C9:44:C2:84:B2:BF:12:B0:43:BE:93:27:2D:41:7A:26:00
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/bd375cad-2142-3677-b2ed-89e6e6043997.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl
X509v3 Authority Key Identifier:
keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
sbgp-ipAddrBlock: critical
IPv4:
205.147.210.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
84:32:99:c2:bb:50:53:06:ae:4c:8c:ee:1e:a0:9b:27:f3:63:
bb:9a:14:d6:5c:b9:85:d7:50:90:39:7d:c8:e2:4e:35:1d:2e:
b2:7d:17:54:3a:1e:64:1f:7c:1c:bf:45:e5:ec:b4:02:da:8e:
21:54:f0:d5:93:b1:10:f0:f1:6a:c3:d5:cb:60:7b:9e:ea:6b:
e3:cc:7a:cc:ce:79:05:f0:f6:15:b0:47:8e:bc:7f:66:0e:f8:
43:ec:56:32:dd:10:de:f6:43:80:d8:d7:5d:8e:87:12:50:41:
59:cb:d9:4a:13:b0:10:3f:66:e4:cd:d0:41:3b:e2:36:60:bb:
d9:d2:9a:dd:89:ef:c9:3e:f4:dc:b0:7b:33:f2:c9:5b:33:7d:
b7:77:05:a4:44:7a:63:b1:ce:b1:08:f6:d3:77:62:00:be:08:
d5:80:61:82:26:4a:52:6c:40:7f:57:53:00:57:b3:fa:5b:6e:
ea:a5:e3:7c:bd:c3:6b:14:6e:32:e7:6e:7c:b5:e3:a1:9f:e8:
1e:18:85:f6:65:23:3c:79:97:b3:8c:13:4c:86:8c:3d:10:b1:
74:92:b7:87:1a:be:8a:33:a1:67:c6:0c:88:20:b3:da:df:5e:
84:a9:75:9c:aa:8f:87:65:73:a8:e7:7c:7a:2e:e1:b0:61:57:
a9:42:ff:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:10:48 2025 by rpki-client