Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/20530e26-a1b3-3ad9-862b-6ec13256140b.roa
File: 20530e26-a1b3-3ad9-862b-6ec13256140b.roa (raw, json)
Hash identifier: V2GQkvHZjeFDoaUq5BiD3bWHgj/NzgLtlqlfOBi6NCg=
Subject key identifier: 18:92:9E:D7:69:88:09:50:5C:A1:B2:29:34:2C:5C:C2:ED:EB:BA:59
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F432858454B5284859832BC797577D160
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/20530e26-a1b3-3ad9-862b-6ec13256140b.roa
Signing time: Fri 22 Mar 2024 17:17:58 +0000
ROA not before: Fri 22 Mar 2024 17:17:58 +0000
ROA not after: Thu 20 Jun 2024 17:17:58 +0000
asID: 10557
IP address blocks: 104.252.180.0/24 maxlen: 24
45.39.64.0/24 maxlen: 24
23.27.221.0/24 maxlen: 24
23.27.15.0/24 maxlen: 24
23.27.19.0/24 maxlen: 24
23.27.170.0/24 maxlen: 24
23.27.223.0/24 maxlen: 24
23.230.249.0/24 maxlen: 24
45.38.252.0/24 maxlen: 24
45.39.90.0/24 maxlen: 24
50.117.38.0/24 maxlen: 24
50.118.202.0/24 maxlen: 24
104.252.9.0/24 maxlen: 24
104.252.104.0/24 maxlen: 24
104.252.106.0/24 maxlen: 24
104.252.177.0/24 maxlen: 24
104.253.42.0/24 maxlen: 24
104.253.100.0/24 maxlen: 24
104.253.101.0/24 maxlen: 24
104.253.107.0/24 maxlen: 24
104.253.110.0/24 maxlen: 24
136.0.74.0/24 maxlen: 24
136.0.79.0/24 maxlen: 24
136.0.125.0/24 maxlen: 24
142.252.118.0/24 maxlen: 24
142.252.130.0/24 maxlen: 24
142.252.134.0/24 maxlen: 24
142.252.136.0/24 maxlen: 24
142.252.146.0/24 maxlen: 24
142.252.152.0/24 maxlen: 24
142.252.221.0/24 maxlen: 24
142.252.248.0/24 maxlen: 24
142.252.249.0/24 maxlen: 24
166.88.121.0/24 maxlen: 24
172.120.4.0/24 maxlen: 24
172.120.11.0/24 maxlen: 24
172.121.104.0/24 maxlen: 24
172.121.129.0/24 maxlen: 24
172.252.31.0/24 maxlen: 24
209.73.141.0/24 maxlen: 24
216.172.142.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:4b:52:84:85:98:32:bc:79:75:77:d1:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Mar 22 17:17:58 2024 GMT
Not After : Jun 20 17:17:58 2024 GMT
Subject: CN=2478582d-bebd-4494-89ab-ba846be562fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0a:c1:a0:e1:f5:97:59:56:1b:07:f0:86:02:
9a:94:77:72:3b:5c:80:14:96:0e:70:f4:f6:a9:a8:
1f:50:5a:8b:6b:7e:4b:02:f9:fc:a1:0c:1c:09:b9:
cd:8d:3e:69:ed:39:83:4e:c5:df:81:4b:64:94:e8:
35:e0:5d:88:cf:d8:d6:66:8c:09:c4:37:07:ec:2b:
ae:9e:79:94:cf:62:f4:30:7b:c6:d4:06:15:80:c6:
61:30:62:1b:33:bd:30:34:e3:e0:f4:45:19:35:f8:
da:09:d9:b5:35:99:fd:af:9a:7f:a7:17:d2:db:2d:
e6:fb:df:99:c8:24:76:72:4d:ba:3f:b1:0e:1e:d8:
14:7c:f6:87:b5:b6:b0:f1:66:d6:1e:0c:6e:8a:97:
0e:66:5e:6f:f8:a0:52:0a:9d:d1:73:02:81:a3:8f:
64:11:c4:fb:50:36:f2:7d:82:64:ae:73:ca:ec:19:
ee:2e:3e:0e:91:05:9a:f4:dd:15:2f:15:9c:77:7c:
27:59:5c:b1:14:46:50:69:07:76:f2:c6:77:61:83:
2f:81:50:9a:f6:1e:c5:f7:0c:f1:dd:57:7d:d1:dc:
b9:4f:b3:a3:b0:63:a9:d3:d1:38:5a:a2:a6:18:59:
04:48:de:9b:e6:7c:a5:66:20:7a:67:3d:14:89:74:
bb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:92:9E:D7:69:88:09:50:5C:A1:B2:29:34:2C:5C:C2:ED:EB:BA:59
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/20530e26-a1b3-3ad9-862b-6ec13256140b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.15.0/24
23.27.19.0/24
23.27.170.0/24
23.27.221.0/24
23.27.223.0/24
23.230.249.0/24
45.38.252.0/24
45.39.64.0/24
45.39.90.0/24
50.117.38.0/24
50.118.202.0/24
104.252.9.0/24
104.252.104.0/24
104.252.106.0/24
104.252.177.0/24
104.252.180.0/24
104.253.42.0/24
104.253.100.0/23
104.253.107.0/24
104.253.110.0/24
136.0.74.0/24
136.0.79.0/24
136.0.125.0/24
142.252.118.0/24
142.252.130.0/24
142.252.134.0/24
142.252.136.0/24
142.252.146.0/24
142.252.152.0/24
142.252.221.0/24
142.252.248.0/23
166.88.121.0/24
172.120.4.0/24
172.120.11.0/24
172.121.104.0/24
172.121.129.0/24
172.252.31.0/24
209.73.141.0/24
216.172.142.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
03:3e:12:43:b2:cb:7d:16:0c:99:aa:88:77:8c:0d:98:fc:64:
8b:7c:f5:f0:83:d8:81:44:5e:e5:33:fe:c8:51:1d:ea:6b:be:
de:ea:58:22:d9:d5:5b:bd:c7:24:f1:bc:3e:86:3b:ed:02:01:
59:f2:fc:37:63:bb:c2:1d:22:93:62:52:52:e5:17:13:ea:4f:
5b:7c:af:17:1d:aa:4d:c9:f1:22:83:6b:0c:c0:cd:ff:5a:65:
77:8b:35:7c:6b:69:98:d5:90:01:be:ac:62:74:af:2d:4e:a6:
57:8d:5f:1d:38:38:1f:5c:9d:1e:5f:45:41:f0:39:5b:39:aa:
99:21:22:32:ba:31:4c:b3:4a:3e:b1:1e:19:17:e9:9a:08:e3:
10:52:41:03:de:d7:ab:30:14:a5:55:1c:cd:a7:f6:eb:3b:f2:
c5:1a:4f:75:d0:dc:d2:bd:72:56:e7:71:31:ce:d8:0c:ed:ac:
0f:aa:ca:f5:6a:f7:05:ad:d7:31:55:b8:6d:d5:2e:5a:29:c6:
bd:d0:31:97:d1:0b:a2:5e:1b:0c:30:3b:ad:92:26:43:92:a8:
79:f4:11:29:eb:ab:e3:9b:a9:a6:eb:e2:75:e5:f1:9e:02:4a:
c4:95:27:86:e0:36:d7:b8:28:46:83:65:d9:18:bb:d3:aa:98:
cf:22:74:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:04 2024 by rpki-client on console-ams.rpki-client.org