Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa
File: 0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa (raw, json)
Hash identifier: sPDAGt40URXg+zQzv6RqprWtn7SRvcwneykBbSQXr0w=
Subject key identifier: 47:78:05:64:3C:76:30:7E:F4:35:B0:21:B0:14:1A:15:02:50:7A:92
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583CB69E8664968D1B3C321BFA00
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Mon 29 Apr 2024 04:00:00 +0000
asID: 399114
IP address blocks: 107.165.224.0/24 maxlen: 24
107.165.176.0/24 maxlen: 24
107.165.219.0/24 maxlen: 24
107.164.213.0/24 maxlen: 24
107.164.146.0/24 maxlen: 24
107.164.151.0/24 maxlen: 24
142.111.5.0/24 maxlen: 24
142.111.187.0/24 maxlen: 24
107.164.207.0/24 maxlen: 24
107.165.136.0/24 maxlen: 24
107.165.182.0/24 maxlen: 24
107.165.221.0/24 maxlen: 24
107.165.253.0/24 maxlen: 24
107.165.254.0/24 maxlen: 24
107.186.0.0/24 maxlen: 24
107.186.29.0/24 maxlen: 24
107.186.86.0/24 maxlen: 24
107.186.157.0/24 maxlen: 24
107.186.194.0/24 maxlen: 24
107.186.196.0/24 maxlen: 24
107.186.203.0/24 maxlen: 24
107.187.45.0/24 maxlen: 24
107.187.108.0/24 maxlen: 24
136.0.78.0/24 maxlen: 24
136.0.88.0/24 maxlen: 24
136.0.92.0/24 maxlen: 24
136.0.108.0/24 maxlen: 24
136.0.199.0/24 maxlen: 24
136.0.206.0/24 maxlen: 24
136.0.241.0/24 maxlen: 24
136.0.248.0/24 maxlen: 24
136.0.251.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3c:b6:9e:86:64:96:8d:1b:3c:32:1b:fa:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Apr 29 04:00:00 2024 GMT
Subject: CN=a6ec60e5-a607-4076-9f30-f31bbb896eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:80:73:fb:23:cc:7b:20:a0:7d:16:dd:20:b4:
ec:76:52:cc:04:e9:ac:34:c3:e1:8d:ec:ff:db:1c:
86:97:5d:fb:57:fd:38:75:a3:50:d7:0a:d4:eb:62:
73:02:4a:a3:11:94:66:07:47:71:56:81:7b:89:45:
81:2d:a9:33:d4:e1:d1:71:94:86:e5:ae:c5:ec:c2:
c5:f9:42:f2:e5:a9:4d:e5:07:e3:b6:c6:a3:cd:94:
20:e3:99:2f:b2:79:ac:68:51:f1:13:e0:44:24:79:
89:39:24:61:13:db:27:51:4d:25:8b:20:1b:13:62:
09:a2:54:d5:4f:fe:92:5e:4e:6f:ab:89:8e:ee:cd:
9b:91:72:31:d6:f3:70:e5:27:08:03:46:07:a3:75:
5c:98:e3:cd:80:95:09:60:96:a1:9f:d2:4f:5e:cd:
d3:dd:5d:d5:9f:be:c6:4b:37:9d:df:19:23:23:6a:
b8:08:a8:f2:0f:6d:67:8b:59:f3:77:f9:57:e0:16:
49:3f:a5:b2:63:2e:a6:ec:e1:4c:63:73:56:eb:3c:
6b:94:46:84:e8:ca:41:c4:0c:09:b6:d7:30:e4:c0:
29:d0:ed:cd:95:6c:a9:1c:55:f9:04:4c:fb:67:6d:
6b:40:5f:b5:d4:93:5c:ed:c0:0d:a2:d5:f4:99:70:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:78:05:64:3C:76:30:7E:F4:35:B0:21:B0:14:1A:15:02:50:7A:92
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/0d9042d3-9b76-3ff5-a1e3-900db67cac09.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
107.164.146.0/24
107.164.151.0/24
107.164.207.0/24
107.164.213.0/24
107.165.136.0/24
107.165.176.0/24
107.165.182.0/24
107.165.219.0/24
107.165.221.0/24
107.165.224.0/24
107.165.253.0-107.165.254.255
107.186.0.0/24
107.186.29.0/24
107.186.86.0/24
107.186.157.0/24
107.186.194.0/24
107.186.196.0/24
107.186.203.0/24
107.187.45.0/24
107.187.108.0/24
136.0.78.0/24
136.0.88.0/24
136.0.92.0/24
136.0.108.0/24
136.0.199.0/24
136.0.206.0/24
136.0.241.0/24
136.0.248.0/24
136.0.251.0/24
142.111.5.0/24
142.111.187.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
8e:36:1c:4d:ec:f3:f8:54:cd:a2:bc:38:da:47:88:fa:ec:7c:
48:98:a9:40:fa:d7:53:a1:2f:d5:8a:b1:d3:84:c1:83:1e:7d:
da:8e:3b:61:b9:d1:7f:9f:9b:d5:99:71:75:38:3c:7c:b5:c8:
9c:a5:bc:fa:4e:1c:cc:73:d0:ff:e2:45:af:1b:b8:1a:96:cb:
fe:27:c4:2a:b2:05:30:8c:11:f5:83:74:c6:0e:30:ae:88:c2:
c9:df:b2:4f:94:f6:0d:28:df:62:0b:90:93:10:b6:c5:03:35:
a0:28:5a:f8:ac:ee:1f:77:45:55:9e:48:3d:3b:a5:39:98:31:
d3:59:47:55:08:96:ee:7d:fa:14:48:69:d4:43:93:2f:5c:6a:
60:e6:43:3d:1c:2c:76:ff:95:fd:0c:5f:f2:8b:e4:cc:c8:97:
5b:3a:16:de:b3:1b:f1:28:98:c9:ae:1e:12:42:70:43:bd:ee:
a8:e2:63:d6:df:66:2d:9c:e6:c3:ad:97:f8:69:28:3b:de:53:
8e:d2:86:1c:c6:3c:c6:7b:76:38:56:c2:4a:88:3c:48:82:df:
51:19:99:20:81:49:2b:20:f1:c6:c1:59:ee:69:c4:04:99:b9:
3a:05:24:72:ff:12:ce:2a:2e:59:19:05:e5:11:27:d8:d1:27:
0e:96:d9:77
-----BEGIN CERTIFICATE-----
MIIHBDCCBeygAwIBAgIUAQ0Mn0MoWDy2noZklo0bPDIb+gAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIwMDgyNjA0MDAwMFoXDTI0MDQyOTA0MDAwMFowLzEtMCsGA1UEAxMk
YTZlYzYwZTUtYTYwNy00MDc2LTlmMzAtZjMxYmJiODk2ZWI2MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhoBz+yPMeyCgfRbdILTsdlLMBOmsNMPhjez/
2xyGl137V/04daNQ1wrU62JzAkqjEZRmB0dxVoF7iUWBLakz1OHRcZSG5a7F7MLF
+ULy5alN5QfjtsajzZQg45kvsnmsaFHxE+BEJHmJOSRhE9snUU0liyAbE2IJolTV
T/6SXk5vq4mO7s2bkXIx1vNw5ScIA0YHo3VcmOPNgJUJYJahn9JPXs3T3V3Vn77G
Szed3xkjI2q4CKjyD21ni1nzd/lX4BZJP6WyYy6m7OFMY3NW6zxrlEaE6MpBxAwJ
ttcw5MAp0O3NlWypHFX5BEz7Z21rQF+11JNc7cANotX0mXDKrwIDAQABo4IEFjCC
BBIwHQYDVR0OBBYEFEd4BWQ8djB+9DWwIbAUGhUCUHqSMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvMGQ5MDQyZDMtOWI3Ni0z
ZmY1LWExZTMtOTAwZGI2N2NhYzA5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIHfBggrBgEFBQcBBwEB/wSBzzCBzDCByQQCAAEwgcIDBABr
pJIDBABrpJcDBABrpM8DBABrpNUDBABrpYgDBABrpbADBABrpbYDBABrpdsDBABr
pd0DBABrpeAwDAMEAGul/QMEAGul/gMEAGu6AAMEAGu6HQMEAGu6VgMEAGu6nQME
AGu6wgMEAGu6xAMEAGu6ywMEAGu7LQMEAGu7bAMEAIgATgMEAIgAWAMEAIgAXAME
AIgAbAMEAIgAxwMEAIgAzgMEAIgA8QMEAIgA+AMEAIgA+wMEAI5vBQMEAI5vuzBU
BgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8v
d3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEB
CwUAA4IBAQCONhxN7PP4VM2ivDjaR4j67HxImKlA+tdToS/VirHThMGDHn3ajjth
udF/n5vVmXF1ODx8tcicpbz6ThzMc9D/4kWvG7galsv+J8QqsgUwjBH1g3TGDjCu
iMLJ37JPlPYNKN9iC5CTELbFAzWgKFr4rO4fd0VVnkg9O6U5mDHTWUdVCJbuffoU
SGnUQ5MvXGpg5kM9HCx2/5X9DF/yi+TMyJdbOhbesxvxKJjJrh4SQnBDve6o4mPW
32YtnObDrZf4aSg73lOO0oYcxjzGe3Y4VsJKiDxIgt9RGZkggUkrIPHGwVnuacQE
mbk6BSRy/xLOKi5ZGQXlESfY0ScOltl3
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:02 2024 by rpki-client on console-ams.rpki-client.org