Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc/d7a1ef1d-0b32-3c79-bbe8-f0efa6a4bccb.roa
File: d7a1ef1d-0b32-3c79-bbe8-f0efa6a4bccb.roa (raw, json)
Hash identifier: Y28jVKA2xD2NVL5i5dBEFgnNF4j/h4e7B3gBzszupqA=
Subject key identifier: 4E:55:87:4F:8E:13:2A:3D:F2:92:6C:0C:0B:92:5F:0A:FC:E5:9D:6C
Certificate issuer: /CN=f5a8e327-ebf4-4f4b-9073-90acd61797cc
Certificate serial: 010D0C9F4328583D7526A65D5837A0E85E13FA40
Authority key identifier: 45:86:65:E2:AF:1E:64:89:10:4A:3B:83:E3:D8:7F:48:93:B5:7B:93
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc/d7a1ef1d-0b32-3c79-bbe8-f0efa6a4bccb.roa
Signing time: Mon 04 Apr 2022 04:00:00 +0000
ROA not before: Mon 04 Apr 2022 04:00:00 +0000
ROA not after: Tue 04 Apr 2023 04:00:00 +0000
asID: 3970
IP address blocks: 2620:9e:6001::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3d:75:26:a6:5d:58:37:a0:e8:5e:13:fa:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a8e327-ebf4-4f4b-9073-90acd61797cc
Validity
Not Before: Apr 4 04:00:00 2022 GMT
Not After : Apr 4 04:00:00 2023 GMT
Subject: CN=e78818b3-0489-4509-944b-9adc074229e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6d:8b:30:c7:e3:c6:be:c0:aa:cd:19:31:53:
92:8c:e0:6c:33:17:b5:a6:ce:64:14:56:cd:da:92:
6a:c4:23:1a:fa:c8:2c:f1:6b:56:84:e9:10:ed:96:
86:9c:93:f8:5e:4f:7b:43:fd:40:9f:a5:5a:4e:01:
8d:11:47:1e:ed:60:c6:12:59:4a:ae:0a:88:56:d3:
ec:ae:ba:50:78:2f:e1:39:97:43:bf:17:51:a0:98:
9a:d6:24:bc:e6:ef:16:b1:46:d8:c4:95:f5:60:fa:
8b:62:0a:2c:9c:7c:d4:f3:ce:fd:b9:eb:7a:15:89:
43:06:b6:ae:27:c5:41:ee:26:22:69:a6:f5:a0:76:
7d:c2:43:73:9d:16:01:8f:38:40:7d:8f:ea:71:b4:
91:89:d1:d9:32:78:5f:9c:fe:99:c5:22:82:e3:d1:
a1:67:77:f5:bd:8c:34:3a:fb:a9:8f:ca:05:64:d0:
79:1f:9f:fd:34:ee:69:16:00:1c:9a:e8:de:02:ff:
ee:8b:21:97:88:2b:4e:ca:7e:43:cb:2a:e1:ca:c1:
a3:32:77:ed:3f:9a:3c:35:22:ca:c5:33:2a:93:1a:
27:79:5e:4c:8d:87:24:9f:f6:9e:39:bf:2a:51:ac:
06:ea:62:91:fb:59:9a:67:a8:43:4d:2a:a6:8a:d9:
e3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:55:87:4F:8E:13:2A:3D:F2:92:6C:0C:0B:92:5F:0A:FC:E5:9D:6C
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc/d7a1ef1d-0b32-3c79-bbe8-f0efa6a4bccb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc/f5a8e327-ebf4-4f4b-9073-90acd61797cc.crl
X509v3 Authority Key Identifier:
keyid:45:86:65:E2:AF:1E:64:89:10:4A:3B:83:E3:D8:7F:48:93:B5:7B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/f5a8e327-ebf4-4f4b-9073-90acd61797cc.cer
sbgp-ipAddrBlock: critical
IPv6:
2620:9e:6001::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
5d:6b:5c:0a:9b:1b:f9:cb:44:0c:df:74:f9:e4:38:73:1c:a3:
d0:90:ab:08:c8:9e:31:2d:e1:6a:b4:1f:d4:11:29:3a:44:59:
64:dd:ae:73:2f:be:38:a0:fb:0e:e3:32:be:73:d5:c8:8a:1e:
a4:45:ad:6f:4a:59:fb:6f:83:cf:2f:9b:e1:4a:03:28:df:26:
3d:01:ba:a3:81:8e:7e:81:85:54:e4:65:27:1b:2d:da:de:7e:
31:f5:53:ea:a9:a9:4e:24:68:4c:1a:59:09:3a:21:db:7a:1e:
27:fb:b6:9e:61:39:00:83:09:ae:3d:80:88:a0:91:33:0b:49:
e8:99:6e:6a:94:ec:cb:f9:03:39:02:1e:40:0f:db:f6:36:0f:
82:6a:26:1f:db:8b:a6:f7:6c:e0:30:ba:bf:f6:fa:1d:84:9c:
21:56:23:81:8f:8a:1a:a9:de:53:90:61:42:b3:7e:e5:b2:aa:
82:8d:30:65:9e:aa:46:0f:ca:fe:05:0b:93:f6:66:1f:5a:f9:
cd:16:29:5a:f9:4e:05:95:30:ae:85:20:7b:97:b8:a4:c0:4d:
7e:ad:c2:80:f5:d7:a7:c3:e9:7e:c4:2f:d5:14:ae:cd:d2:8f:
35:89:f0:d4:cf:a8:23:43:a8:31:ca:38:61:47:40:f8:9f:4c:
f4:b9:3c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:13 2024 by rpki-client on console-fra.rpki-client.org