Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/19a6fabf-ebf9-3a14-bf96-afc0d150eb38.roa
File: 19a6fabf-ebf9-3a14-bf96-afc0d150eb38.roa (raw, json)
Hash identifier: KbfvFArHdOoci15ilD1XLtNr+5FYaSCbUyKi6i0fb4c=
Subject key identifier: F0:EA:6F:4B:A9:63:8E:9C:76:61:3D:C5:A8:F4:94:E3:1A:BA:D3:C1
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583C5A123E10773EDB1C23B8AC40
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/19a6fabf-ebf9-3a14-bf96-afc0d150eb38.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Wed 27 Mar 2024 04:00:00 +0000
asID: 7922
IP address blocks: 23.230.163.0/24 maxlen: 24
23.27.254.0/24 maxlen: 24
23.230.73.0/24 maxlen: 24
23.27.118.0/24 maxlen: 24
23.27.9.0/24 maxlen: 24
23.27.31.0/24 maxlen: 24
23.27.45.0/24 maxlen: 24
23.27.232.0/24 maxlen: 24
23.230.43.0/24 maxlen: 24
23.230.76.0/24 maxlen: 24
23.230.166.0/24 maxlen: 24
23.230.228.0/24 maxlen: 24
45.38.43.0/24 maxlen: 24
45.38.208.0/24 maxlen: 24
45.38.238.0/24 maxlen: 24
45.39.208.0/24 maxlen: 24
45.39.232.0/24 maxlen: 24
50.117.49.0/24 maxlen: 24
50.118.175.0/24 maxlen: 24
50.118.217.0/24 maxlen: 24
104.164.161.0/24 maxlen: 24
104.164.178.0/24 maxlen: 24
104.164.182.0/24 maxlen: 24
104.164.216.0/24 maxlen: 24
104.164.220.0/24 maxlen: 24
104.164.221.0/24 maxlen: 24
104.165.17.0/24 maxlen: 24
104.165.82.0/24 maxlen: 24
104.165.94.0/24 maxlen: 24
104.165.116.0/24 maxlen: 24
104.165.207.0/24 maxlen: 24
104.165.234.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3c:5a:12:3e:10:77:3e:db:1c:23:b8:ac:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Mar 27 04:00:00 2024 GMT
Subject: CN=3d6da119-d002-45b2-9c9f-da3e80604695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f5:c8:1d:ac:88:44:f0:ac:d1:b8:85:b2:5d:
0e:52:c7:6c:42:ef:00:39:b8:da:25:50:c9:a1:ea:
09:bc:47:00:41:6d:de:30:19:68:89:67:2f:d6:9d:
4f:c1:58:25:76:ae:be:5a:3e:8f:5c:fc:f3:c8:d3:
ab:c2:3e:70:42:4d:60:9b:58:d4:d5:a9:2d:d9:2d:
81:c1:80:e3:c7:bf:91:b2:87:71:a1:d5:46:28:42:
21:45:ae:0d:d4:f9:62:a5:88:29:3f:86:3a:a8:ff:
84:22:ec:d1:ce:6b:4d:5d:f7:9e:6b:f5:04:5d:56:
44:33:8d:99:17:54:da:cc:6c:d9:db:64:aa:e6:21:
8d:c4:8f:2e:31:91:7e:43:16:8c:be:d8:32:9c:49:
42:60:c6:2c:1f:6e:68:03:5e:c6:50:fb:48:f9:50:
6d:3f:7a:a6:ae:44:1a:bf:43:3e:c5:53:d9:b5:a6:
df:2a:d8:7a:c9:62:db:e6:5d:71:5d:b3:14:44:9d:
6b:1e:c1:fb:81:a5:ae:32:12:21:f2:cf:17:98:bf:
6d:82:6e:2c:3d:91:94:76:93:c7:01:c9:04:e3:64:
ee:fc:00:4d:99:4a:d3:48:0a:2f:70:de:75:39:49:
49:85:ed:b0:46:0a:3f:d6:46:49:1e:69:bc:b3:d3:
a6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EA:6F:4B:A9:63:8E:9C:76:61:3D:C5:A8:F4:94:E3:1A:BA:D3:C1
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/19a6fabf-ebf9-3a14-bf96-afc0d150eb38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.9.0/24
23.27.31.0/24
23.27.45.0/24
23.27.118.0/24
23.27.232.0/24
23.27.254.0/24
23.230.43.0/24
23.230.73.0/24
23.230.76.0/24
23.230.163.0/24
23.230.166.0/24
23.230.228.0/24
45.38.43.0/24
45.38.208.0/24
45.38.238.0/24
45.39.208.0/24
45.39.232.0/24
50.117.49.0/24
50.118.175.0/24
50.118.217.0/24
104.164.161.0/24
104.164.178.0/24
104.164.182.0/24
104.164.216.0/24
104.164.220.0/23
104.165.17.0/24
104.165.82.0/24
104.165.94.0/24
104.165.116.0/24
104.165.207.0/24
104.165.234.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
13:2d:0f:6c:d7:57:64:7a:79:14:86:4b:d9:53:9d:e2:ca:41:
36:78:0b:bb:7b:e7:7b:92:a5:22:03:35:59:13:c4:2d:b8:4a:
c2:e9:e1:39:aa:cf:80:b6:7d:43:b5:43:1e:7c:c8:a5:21:44:
d7:34:25:40:74:ac:b6:f0:72:09:25:ad:56:d6:ba:15:73:95:
44:17:90:e7:64:9b:6c:26:0c:18:68:7f:f0:ad:4d:70:d0:eb:
e1:b5:e0:ca:fa:21:4e:43:e4:f0:ec:e2:d1:36:dd:21:35:0d:
fe:e2:db:2f:50:10:18:36:cb:8e:7e:0f:c2:ca:7d:ec:5e:3c:
41:db:84:66:9d:3e:6a:42:f6:56:4b:ac:f4:e3:79:8b:79:60:
32:fd:1e:13:f4:52:2f:02:a9:8f:ba:b3:32:ba:c0:89:4d:38:
ba:4f:b5:a6:03:26:18:5d:38:89:96:cc:77:fb:a7:e9:61:77:
78:15:59:ff:07:6e:ad:9a:3e:30:fe:e0:87:db:f6:79:71:de:
aa:16:3a:45:5f:62:a3:5e:3d:f2:88:90:1e:c0:b4:c2:df:f7:
09:7b:99:f0:8c:28:02:06:2f:81:52:86:d2:de:ec:ef:a7:d3:
8e:61:f4:0f:15:c2:b0:45:4b:81:6d:55:69:1e:02:07:c4:6b:
0c:c2:1f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:19 2024 by rpki-client on console-fra.rpki-client.org