Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa
File: 0846bab1-3892-302b-abc3-d7969a1c9764.roa (raw, json)
Hash identifier: T4ccCm0UohBvbFP2+PQx4qavxRoFKTinRqPTqow1/cI=
Subject key identifier: 46:A3:06:60:CA:16:1B:C5:CA:CF:39:D4:A3:A0:21:67:FC:4D:7F:E0
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583AD5E5655D7D797B3B06420E80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Thu 09 Nov 2023 05:00:00 +0000
asID: 11351
IP address blocks: 104.165.16.0/24 maxlen: 24
45.39.178.0/24 maxlen: 24
45.39.188.0/24 maxlen: 24
45.39.87.0/24 maxlen: 24
23.230.215.0/24 maxlen: 24
45.38.250.0/24 maxlen: 24
45.39.52.0/24 maxlen: 24
45.39.171.0/24 maxlen: 24
45.39.185.0/24 maxlen: 24
45.39.239.0/24 maxlen: 24
104.165.67.0/24 maxlen: 24
104.252.51.0/24 maxlen: 24
104.252.158.0/24 maxlen: 24
104.252.240.0/24 maxlen: 24
104.253.49.0/24 maxlen: 24
107.165.213.0/24 maxlen: 24
107.165.230.0/24 maxlen: 24
107.186.6.0/24 maxlen: 24
107.186.54.0/24 maxlen: 24
107.186.65.0/24 maxlen: 24
107.186.232.0/24 maxlen: 24
107.187.126.0/24 maxlen: 24
136.0.68.0/24 maxlen: 24
136.0.83.0/24 maxlen: 24
136.0.209.0/24 maxlen: 24
142.111.143.0/24 maxlen: 24
142.252.3.0/24 maxlen: 24
142.252.154.0/24 maxlen: 24
166.88.78.0/24 maxlen: 24
172.120.23.0/24 maxlen: 24
172.252.230.0/24 maxlen: 24
205.164.42.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3a:d5:e5:65:5d:7d:79:7b:3b:06:42:0e:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Nov 9 05:00:00 2023 GMT
Subject: CN=153bdcf8-2d1c-448c-9c50-104f74f077ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:72:59:b5:fa:30:a2:63:d3:3b:64:38:d3:6c:
e4:c7:20:60:4b:81:83:80:56:6e:5d:f9:84:fb:83:
96:21:64:58:92:17:b9:2e:0f:c1:23:f0:a1:2e:87:
6b:a5:96:fb:af:80:2a:3f:e6:b3:e8:25:4b:49:fa:
3e:b7:31:6d:ba:3c:a9:a9:f0:41:d9:38:f6:c9:f8:
55:64:c7:49:d9:8c:d7:11:e6:2e:71:47:e8:e2:c2:
50:00:92:19:0a:b0:88:8c:c1:f7:f9:d6:43:ae:0e:
ee:fc:55:a5:eb:8e:c2:2b:71:34:a2:b3:42:73:c6:
5e:5a:64:eb:10:43:1c:3f:39:26:21:c2:7f:5c:5b:
65:3f:b8:2f:33:8f:e8:fe:4c:7b:ff:66:29:b2:1a:
3b:91:44:ce:ed:ec:8d:82:f6:dd:86:42:c7:3f:39:
e9:d6:43:c6:0a:83:74:3d:b1:44:8a:a0:c7:4c:3a:
58:5b:6b:8a:13:76:fe:65:5e:71:d8:a8:6c:75:f6:
b6:54:f8:5b:92:d3:60:82:b3:f9:ee:7c:8a:bc:41:
00:df:49:d0:d6:6f:2a:ef:dd:84:15:cd:ca:d7:07:
b4:62:8c:bc:25:a0:10:52:a7:13:5b:94:1b:8d:d6:
a9:f2:9d:99:d5:a1:d3:37:ab:9a:85:14:b7:12:fa:
eb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A3:06:60:CA:16:1B:C5:CA:CF:39:D4:A3:A0:21:67:FC:4D:7F:E0
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0846bab1-3892-302b-abc3-d7969a1c9764.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.230.215.0/24
45.38.250.0/24
45.39.52.0/24
45.39.87.0/24
45.39.171.0/24
45.39.178.0/24
45.39.185.0/24
45.39.188.0/24
45.39.239.0/24
104.165.16.0/24
104.165.67.0/24
104.252.51.0/24
104.252.158.0/24
104.252.240.0/24
104.253.49.0/24
107.165.213.0/24
107.165.230.0/24
107.186.6.0/24
107.186.54.0/24
107.186.65.0/24
107.186.232.0/24
107.187.126.0/24
136.0.68.0/24
136.0.83.0/24
136.0.209.0/24
142.111.143.0/24
142.252.3.0/24
142.252.154.0/24
166.88.78.0/24
172.120.23.0/24
172.252.230.0/24
205.164.42.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2d:e2:05:eb:77:ac:48:09:e5:ee:fd:ad:ab:04:00:1b:92:ab:
bf:05:dd:7d:63:57:2c:8e:13:b5:fb:d4:b3:57:66:b6:e0:5b:
1c:e5:ef:29:b6:ee:4d:0b:71:40:82:57:26:2a:28:cc:c5:15:
ad:3b:57:17:d6:b8:33:f2:c0:39:b3:ac:74:16:33:27:1e:ba:
a1:0f:27:30:4d:f8:80:df:90:51:02:1f:5d:ce:73:9c:84:14:
fc:5f:5d:9e:6a:9f:0e:5d:da:0d:ff:bb:28:fb:4d:cc:28:be:
cf:86:27:13:1b:6a:08:47:ec:eb:77:9f:80:32:65:85:be:d0:
cf:79:97:a6:e7:aa:3b:b3:55:82:ed:f6:b5:bf:75:4f:2f:dc:
d2:5d:c5:8a:ce:ad:49:49:58:90:6a:06:8c:bc:83:de:08:e1:
cf:9c:a8:06:16:3d:0e:88:80:11:06:44:0a:9e:91:a5:c5:0d:
83:27:39:42:ed:b9:24:4a:70:12:4c:f4:b1:ff:df:a4:bb:54:
6b:ee:e0:e6:b6:2d:60:56:5a:ec:0c:8a:94:09:10:68:f7:d8:
ed:f9:e5:6b:fe:c0:3f:5d:64:cc:11:bf:b4:45:aa:a2:20:9b:
5c:38:7d:90:ac:1f:a8:f9:25:01:6d:72:4f:35:ac:0b:47:95:
4d:66:d3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:17 2024 by rpki-client on console-fra.rpki-client.org