Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3/23296fb7-5057-305b-a74a-94207b40f946.roa
File: 23296fb7-5057-305b-a74a-94207b40f946.roa (raw, json)
Hash identifier: UpU0/UyVGu+IAp0CN5P3hUh6aNYv/h/UPe5jmU+37YI=
Subject key identifier: 4F:93:6E:37:8E:EA:FC:FE:83:E2:B3:DA:94:A0:09:C9:59:30:CB:11
Certificate issuer: /CN=ebb739b8-a0ed-4449-8c62-99ff6b94b1c3
Certificate serial: 010D0C9F43285843F4F3A79CD66307542A2DD598
Authority key identifier: EE:FE:6D:FB:B0:55:03:BC:DA:B3:01:9A:91:11:03:C2:E7:54:DB:63
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3/23296fb7-5057-305b-a74a-94207b40f946.roa
Signing time: Tue 21 Nov 2023 02:00:16 +0000
ROA not before: Tue 21 Nov 2023 02:00:16 +0000
ROA not after: Mon 19 Feb 2024 02:00:16 +0000
asID: 19528
IP address blocks: 68.64.56.0/21 maxlen: 24
74.209.164.0/24 maxlen: 24
74.209.170.0/23 maxlen: 24
74.209.174.0/23 maxlen: 24
74.209.189.0/24 maxlen: 24
74.209.190.0/23 maxlen: 24
68.69.0.0/21 maxlen: 24
68.69.8.0/22 maxlen: 24
68.69.14.0/23 maxlen: 24
2605:15c0::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:f4:f3:a7:9c:d6:63:07:54:2a:2d:d5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb739b8-a0ed-4449-8c62-99ff6b94b1c3
Validity
Not Before: Nov 21 02:00:16 2023 GMT
Not After : Feb 19 02:00:16 2024 GMT
Subject: CN=a01d2e14-5868-45b9-a3bc-432b55e7d594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e4:0b:e3:9e:43:4b:15:1e:82:d4:99:48:51:
4c:1b:1a:b9:85:3e:07:84:ff:bd:92:32:0b:9c:10:
a6:a7:50:c3:dc:7e:92:41:89:55:bd:5a:70:f3:b5:
3a:77:6a:1c:67:10:a4:98:57:b9:1e:85:ec:43:b5:
54:80:9d:1c:6a:eb:47:61:01:fe:97:01:02:74:3e:
c9:5d:d1:54:20:da:de:b6:68:b9:f4:61:45:e4:b2:
42:4d:a3:57:e1:9d:69:c4:45:33:a0:7f:86:41:9b:
29:07:ce:87:bc:57:09:95:28:d7:dc:c3:40:72:76:
82:43:0c:de:9e:7d:fd:98:97:d3:6d:36:8a:87:9d:
ff:58:e6:e6:d9:3d:49:d1:5f:b4:de:9e:f3:ef:f2:
43:51:12:1a:dd:79:7d:e6:4b:3f:7c:b6:d7:3c:72:
35:00:60:2a:fc:c9:2e:9b:ae:76:9c:76:78:4f:d6:
c6:51:12:13:90:b4:e2:97:9a:d6:67:f6:59:2c:20:
12:68:ec:ec:ce:a1:a9:2d:6d:1d:ed:57:e3:98:b0:
1c:9c:b7:68:7c:aa:d3:6a:8b:a3:fb:95:8a:3a:0c:
31:17:52:cd:91:93:1c:0b:97:f5:a9:7b:21:3f:56:
9c:f3:e0:35:6d:8d:81:ca:65:37:ed:29:c4:f4:cb:
45:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:93:6E:37:8E:EA:FC:FE:83:E2:B3:DA:94:A0:09:C9:59:30:CB:11
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3/23296fb7-5057-305b-a74a-94207b40f946.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3.crl
X509v3 Authority Key Identifier:
keyid:EE:FE:6D:FB:B0:55:03:BC:DA:B3:01:9A:91:11:03:C2:E7:54:DB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ebb739b8-a0ed-4449-8c62-99ff6b94b1c3.cer
sbgp-ipAddrBlock: critical
IPv4:
68.64.56.0/21
68.69.0.0-68.69.11.255
68.69.14.0/23
74.209.164.0/24
74.209.170.0/23
74.209.174.0/23
74.209.189.0-74.209.191.255
IPv6:
2605:15c0::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
88:fe:de:dc:c1:1a:0e:ce:dc:9c:ee:ec:27:76:44:71:5b:03:
85:08:9d:fa:04:ef:b4:0c:79:ff:8f:6f:e6:34:ea:b4:f9:f2:
07:00:d1:3c:70:4a:19:cc:a3:61:b4:5b:3a:ad:f2:a1:74:74:
e7:40:8e:9d:5f:74:98:fa:df:ed:03:37:53:c1:76:51:1c:2e:
a6:ef:01:a9:be:3c:9c:d8:af:f8:82:38:d2:93:5c:cb:2b:9f:
0e:57:8d:f2:1f:43:24:de:2f:fd:1a:53:24:e7:19:08:e8:46:
ff:06:00:47:8f:7e:a7:3f:9b:d8:4a:56:18:1d:e1:8f:e3:c1:
4a:92:87:a4:fe:cc:37:ab:3c:8a:e0:2b:fd:71:50:2a:90:6d:
0d:ec:02:4d:4c:82:26:ef:46:38:28:8e:37:e7:fb:10:7d:ca:
88:f7:66:5e:7d:a0:ae:5d:0d:3f:5e:49:73:73:cc:28:71:ba:
b3:83:fb:b5:8d:b9:c2:ff:03:40:64:57:9a:7e:5e:52:60:36:
cc:37:13:62:a6:ea:a1:d5:72:55:76:a3:d2:77:93:0d:9f:a3:
c5:cd:25:c7:05:4b:f5:b9:da:49:95:ef:99:d9:22:69:36:0a:
79:47:5b:fa:c0:7c:f1:24:d9:7a:2d:4e:b6:e2:1b:02:01:d2:
f4:d1:5b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:06 2024 by rpki-client on console-fra.rpki-client.org