Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa
File: 3db8065b-aa43-36c3-b0bb-3b26a797790e.roa (raw, json)
Hash identifier: PAE8ntDWErKeHitsvrkI2FvK+xKPb06Wu0/Gw5Ka3sI=
Subject key identifier: E8:A3:80:6D:17:8C:83:45:C4:88:D6:9C:6E:2A:5F:03:48:17:FE:0B
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583C8FED2782CEB78EAFFF9F1080
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Mon 15 Apr 2024 04:00:00 +0000
asID: 1239
IP address blocks: 104.164.43.0/24 maxlen: 24
23.230.178.0/24 maxlen: 24
23.230.245.0/24 maxlen: 24
23.230.251.0/24 maxlen: 24
104.164.160.0/24 maxlen: 24
166.88.57.0/24 maxlen: 24
166.88.132.0/24 maxlen: 24
166.88.134.0/24 maxlen: 24
166.88.167.0/24 maxlen: 24
172.121.27.0/24 maxlen: 24
172.121.143.0/24 maxlen: 24
172.121.153.0/24 maxlen: 24
172.121.227.0/24 maxlen: 24
172.121.234.0/24 maxlen: 24
172.252.49.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3c:8f:ed:27:82:ce:b7:8e:af:ff:9f:10:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Apr 15 04:00:00 2024 GMT
Subject: CN=d1ced5c6-6500-466d-abae-cfe353268655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:92:55:c6:8a:79:5f:18:fb:26:7f:1b:32:e9:
f9:8d:61:39:5b:78:08:32:8c:c7:67:8f:40:3e:8a:
9f:08:c1:26:2f:8a:0f:5e:76:d1:d4:3e:06:71:6d:
39:ea:2c:c1:aa:0e:2c:bc:7e:31:5f:17:5a:63:d8:
1b:c2:1b:56:8a:fe:e8:67:54:49:f9:5d:65:be:fa:
77:52:a8:e8:a3:2d:d8:82:a4:36:49:44:41:4d:48:
82:53:35:8d:d0:31:8c:67:f6:58:76:96:51:1b:90:
90:9a:74:86:fd:8c:57:b0:d4:cd:d7:2f:01:f0:8d:
3c:4c:78:3d:c5:da:a9:16:e1:1a:4d:6f:d7:f3:9a:
5b:62:b8:a0:27:a2:5e:27:07:da:f9:5e:58:9d:e5:
18:f2:8f:b1:cd:46:84:f5:b1:2b:ad:55:4e:bd:08:
d5:5d:9d:f1:db:65:59:c7:22:5c:cb:70:8e:cd:40:
97:4b:fb:20:5f:73:d4:9d:fd:83:a8:96:d4:3c:28:
75:28:59:94:0e:91:d5:75:8b:7f:1c:6e:cf:15:79:
53:10:ab:78:14:49:53:ac:f8:12:8b:21:4b:da:07:
69:3a:f2:f8:b5:66:b8:3c:37:93:e7:7e:4f:a6:8b:
4f:d0:64:d4:f2:77:c5:5a:28:84:42:5a:c5:fb:9f:
6c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A3:80:6D:17:8C:83:45:C4:88:D6:9C:6E:2A:5F:03:48:17:FE:0B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.230.178.0/24
23.230.245.0/24
23.230.251.0/24
104.164.43.0/24
104.164.160.0/24
166.88.57.0/24
166.88.132.0/24
166.88.134.0/24
166.88.167.0/24
172.121.27.0/24
172.121.143.0/24
172.121.153.0/24
172.121.227.0/24
172.121.234.0/24
172.252.49.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
3b:87:fb:74:d0:e0:d2:6c:dd:ee:e5:f0:ce:81:8c:74:ac:91:
57:a3:ef:61:34:e5:e1:c8:c7:8f:7c:04:8a:a0:e2:05:68:77:
77:29:a8:6f:d3:91:a8:77:02:77:a5:12:38:1b:10:f4:84:30:
c7:64:8d:fe:06:51:5f:34:da:f6:69:e3:c8:c6:8d:e3:0d:57:
4b:83:29:9b:fb:b3:88:65:d9:f4:d5:15:b8:e5:b6:2e:6e:f9:
81:7d:d8:b2:12:ee:49:b1:17:91:49:84:a7:f1:08:77:d0:14:
65:47:c5:83:64:a2:b7:3a:d9:4a:d4:c4:25:33:b3:a1:80:06:
16:21:6a:25:c3:7f:49:af:33:a2:af:1d:0f:2a:cc:55:5e:93:
97:44:8d:9f:e5:52:70:97:ac:3f:11:da:74:ad:45:38:d7:bd:
49:93:b6:1f:23:aa:b6:a5:bf:ce:61:f6:e5:e0:e8:03:d2:26:
71:84:fe:ca:c1:f8:e2:23:41:9a:ed:87:53:4a:24:d1:9e:a8:
2f:2b:3d:63:26:39:0f:d3:0b:af:13:b7:9c:ac:d9:dc:b9:8f:
d0:82:a5:7b:fc:dd:68:9e:09:23:87:3f:75:bd:2e:4d:9c:d2:
fe:20:dd:ed:4d:d1:11:93:a7:3e:3f:34:f8:9d:98:1d:ce:11:
d7:f4:4f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:21 2024 by rpki-client on console-fra.rpki-client.org