Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa
File: 4b538b6b-469b-3b66-8614-02b963afa000.roa (raw, json)
Hash identifier: ehGrWtwfqMqrkzxeQAgwUGIGelNGipJNSUGQ2g4c5u4=
Subject key identifier: C3:1A:19:70:27:C1:8C:F6:3B:87:89:FD:B0:39:82:EB:7A:E1:CA:E4
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583B0DC4FEE8C30A9513499CA590
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Wed 29 Nov 2023 05:00:00 +0000
asID: 4181
IP address blocks: 45.38.211.0/24 maxlen: 24
23.27.235.0/24 maxlen: 24
23.230.45.0/24 maxlen: 24
23.230.47.0/24 maxlen: 24
45.39.61.0/24 maxlen: 24
45.39.80.0/24 maxlen: 24
45.39.238.0/24 maxlen: 24
104.164.196.0/24 maxlen: 24
104.165.121.0/24 maxlen: 24
104.165.141.0/24 maxlen: 24
104.165.197.0/24 maxlen: 24
104.252.17.0/24 maxlen: 24
104.252.100.0/24 maxlen: 24
104.253.19.0/24 maxlen: 24
107.164.5.0/24 maxlen: 24
107.165.227.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3b:0d:c4:fe:e8:c3:0a:95:13:49:9c:a5:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Nov 29 05:00:00 2023 GMT
Subject: CN=0184665f-aef9-47bc-ad9a-ae13270a8f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f1:b4:68:b1:af:fa:1d:72:7e:be:d8:65:93:
dd:1c:64:c9:23:5e:c3:44:89:64:90:0a:39:89:15:
a5:bc:8f:78:f9:9c:05:c1:c5:2c:b2:25:77:fa:9e:
f5:7d:c6:65:e4:a7:55:d4:b6:1e:5d:47:06:f9:09:
14:55:bd:fd:58:5a:31:16:e6:8b:6e:d0:44:2c:3a:
49:d1:17:15:84:bd:d1:e6:1c:96:72:f5:d3:ff:ef:
de:18:4e:53:d8:66:31:04:3b:32:19:04:be:24:c7:
05:f7:c0:05:c2:08:b7:d1:24:23:f9:ad:38:73:f5:
f8:8d:b0:40:2f:f2:44:c7:d5:30:aa:24:30:b4:0c:
03:a8:0b:18:63:c6:20:bb:d6:f0:66:36:f2:58:20:
d8:49:b5:c9:9d:3e:35:0b:f9:f6:77:48:5f:a5:46:
fa:2e:03:a0:01:17:35:88:21:ec:76:cc:99:b8:15:
bc:e6:3f:73:56:f2:5a:9d:95:01:5a:94:c1:9b:8f:
4e:63:42:82:7c:3e:be:df:96:37:68:48:b2:1e:61:
fc:94:a7:f7:f1:d8:db:14:29:c7:04:8b:85:db:83:
54:7b:e7:36:f6:c7:a1:42:0f:c9:93:4d:30:08:74:
7c:a4:b8:f0:83:2a:53:00:40:5f:01:80:9b:4c:7f:
5e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1A:19:70:27:C1:8C:F6:3B:87:89:FD:B0:39:82:EB:7A:E1:CA:E4
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/4b538b6b-469b-3b66-8614-02b963afa000.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.235.0/24
23.230.45.0/24
23.230.47.0/24
45.38.211.0/24
45.39.61.0/24
45.39.80.0/24
45.39.238.0/24
104.164.196.0/24
104.165.121.0/24
104.165.141.0/24
104.165.197.0/24
104.252.17.0/24
104.252.100.0/24
104.253.19.0/24
107.164.5.0/24
107.165.227.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
01:fa:3d:52:e0:25:f8:ce:3e:e7:c2:4f:a5:68:14:72:98:ba:
3c:21:ec:fb:c2:6a:78:e8:a4:f8:dc:7d:3c:b4:80:01:7d:8f:
ee:f4:c8:fe:a6:ec:1b:69:32:c7:0f:ff:25:55:22:37:d2:30:
19:41:09:be:5b:93:52:a9:dd:6f:3d:b8:b7:5d:5c:70:26:5d:
1a:76:4c:c4:d0:2f:0c:f2:8b:5d:06:3f:e6:23:3a:14:12:14:
f0:61:21:15:d2:29:07:b0:b8:4d:7a:a1:7e:b2:03:6e:be:53:
93:37:10:a3:dc:2f:cd:3e:d7:87:d3:ff:aa:72:9d:86:f6:c8:
3c:92:90:7d:51:aa:e0:67:88:2e:63:c9:22:96:9b:0b:25:04:
85:36:5d:3e:e1:72:31:3b:e0:32:a5:89:8a:25:43:f9:2d:5f:
76:bc:43:ce:26:ae:d9:43:0d:fa:b4:fa:44:7f:75:ea:ec:f6:
63:c2:48:67:8e:dc:50:6e:7a:78:c9:fe:4f:5e:ee:10:cd:1a:
8d:93:75:c9:a8:41:97:18:5f:d8:e0:63:92:4e:c1:28:c7:f5:
f1:80:b8:48:42:60:37:e2:41:e6:2c:20:cf:25:6c:a7:e5:36:
4a:e2:93:a2:fe:31:28:0b:38:90:ea:fd:30:d1:72:cc:e2:24:
bb:6f:19:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:22 2024 by rpki-client on console-fra.rpki-client.org