Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa
File:                     3db8065b-aa43-36c3-b0bb-3b26a797790e.roa (download)
Hash identifier:          PAE8ntDWErKeHitsvrkI2FvK+xKPb06Wu0/Gw5Ka3sI=
Subject key identifier:   E8:A3:80:6D:17:8C:83:45:C4:88:D6:9C:6E:2A:5F:03:48:17:FE:0B
Certificate issuer:       /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial:       010D0C9F4328583C8FED2782CEB78EAFFF9F1080
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa
ROA valid until:          Apr 15 04:00:00 2024 GMT
asID:                     1239
IP address blocks:
    1: 104.164.43.0/24 maxlen: 24
    2: 23.230.178.0/24 maxlen: 24
    3: 23.230.245.0/24 maxlen: 24
    4: 23.230.251.0/24 maxlen: 24
    5: 104.164.160.0/24 maxlen: 24
    6: 166.88.57.0/24 maxlen: 24
    7: 166.88.132.0/24 maxlen: 24
    8: 166.88.134.0/24 maxlen: 24
    9: 166.88.167.0/24 maxlen: 24
   10: 172.121.27.0/24 maxlen: 24
   11: 172.121.143.0/24 maxlen: 24
   12: 172.121.153.0/24 maxlen: 24
   13: 172.121.227.0/24 maxlen: 24
   14: 172.121.234.0/24 maxlen: 24
   15: 172.252.49.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:3c:8f:ed:27:82:ce:b7:8e:af:ff:9f:10:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
        Validity
            Not Before: Aug 26 04:00:00 2020 GMT
            Not After : Apr 15 04:00:00 2024 GMT
        Subject: CN=d1ced5c6-6500-466d-abae-cfe353268655
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:92:55:c6:8a:79:5f:18:fb:26:7f:1b:32:e9:
                    f9:8d:61:39:5b:78:08:32:8c:c7:67:8f:40:3e:8a:
                    9f:08:c1:26:2f:8a:0f:5e:76:d1:d4:3e:06:71:6d:
                    39:ea:2c:c1:aa:0e:2c:bc:7e:31:5f:17:5a:63:d8:
                    1b:c2:1b:56:8a:fe:e8:67:54:49:f9:5d:65:be:fa:
                    77:52:a8:e8:a3:2d:d8:82:a4:36:49:44:41:4d:48:
                    82:53:35:8d:d0:31:8c:67:f6:58:76:96:51:1b:90:
                    90:9a:74:86:fd:8c:57:b0:d4:cd:d7:2f:01:f0:8d:
                    3c:4c:78:3d:c5:da:a9:16:e1:1a:4d:6f:d7:f3:9a:
                    5b:62:b8:a0:27:a2:5e:27:07:da:f9:5e:58:9d:e5:
                    18:f2:8f:b1:cd:46:84:f5:b1:2b:ad:55:4e:bd:08:
                    d5:5d:9d:f1:db:65:59:c7:22:5c:cb:70:8e:cd:40:
                    97:4b:fb:20:5f:73:d4:9d:fd:83:a8:96:d4:3c:28:
                    75:28:59:94:0e:91:d5:75:8b:7f:1c:6e:cf:15:79:
                    53:10:ab:78:14:49:53:ac:f8:12:8b:21:4b:da:07:
                    69:3a:f2:f8:b5:66:b8:3c:37:93:e7:7e:4f:a6:8b:
                    4f:d0:64:d4:f2:77:c5:5a:28:84:42:5a:c5:fb:9f:
                    6c:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E8:A3:80:6D:17:8C:83:45:C4:88:D6:9C:6E:2A:5F:03:48:17:FE:0B
            Subject Information Access: 
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/3db8065b-aa43-36c3-b0bb-3b26a797790e.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl

            X509v3 Authority Key Identifier: 
                keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.230.178.0/24
                  23.230.245.0/24
                  23.230.251.0/24
                  104.164.43.0/24
                  104.164.160.0/24
                  166.88.57.0/24
                  166.88.132.0/24
                  166.88.134.0/24
                  166.88.167.0/24
                  172.121.27.0/24
                  172.121.143.0/24
                  172.121.153.0/24
                  172.121.227.0/24
                  172.121.234.0/24
                  172.252.49.0/24

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         3b:87:fb:74:d0:e0:d2:6c:dd:ee:e5:f0:ce:81:8c:74:ac:91:
         57:a3:ef:61:34:e5:e1:c8:c7:8f:7c:04:8a:a0:e2:05:68:77:
         77:29:a8:6f:d3:91:a8:77:02:77:a5:12:38:1b:10:f4:84:30:
         c7:64:8d:fe:06:51:5f:34:da:f6:69:e3:c8:c6:8d:e3:0d:57:
         4b:83:29:9b:fb:b3:88:65:d9:f4:d5:15:b8:e5:b6:2e:6e:f9:
         81:7d:d8:b2:12:ee:49:b1:17:91:49:84:a7:f1:08:77:d0:14:
         65:47:c5:83:64:a2:b7:3a:d9:4a:d4:c4:25:33:b3:a1:80:06:
         16:21:6a:25:c3:7f:49:af:33:a2:af:1d:0f:2a:cc:55:5e:93:
         97:44:8d:9f:e5:52:70:97:ac:3f:11:da:74:ad:45:38:d7:bd:
         49:93:b6:1f:23:aa:b6:a5:bf:ce:61:f6:e5:e0:e8:03:d2:26:
         71:84:fe:ca:c1:f8:e2:23:41:9a:ed:87:53:4a:24:d1:9e:a8:
         2f:2b:3d:63:26:39:0f:d3:0b:af:13:b7:9c:ac:d9:dc:b9:8f:
         d0:82:a5:7b:fc:dd:68:9e:09:23:87:3f:75:bd:2e:4d:9c:d2:
         fe:20:dd:ed:4d:d1:11:93:a7:3e:3f:34:f8:9d:98:1d:ce:11:
         d7:f4:4f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 20:41:11 2022 by rpki-client.