Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/5942231e-fd62-3695-bb15-78ba6827beeb.roa
File: 5942231e-fd62-3695-bb15-78ba6827beeb.roa (raw, json)
Hash identifier: rEW5hrlZmHPORp4zDNoXZ/3ByfMGOdDOPt+WFDf6w/U=
Subject key identifier: F3:09:AF:8F:98:D4:26:FD:A2:4B:BD:24:8F:7A:9D:79:41:C6:93:0A
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583B9264433488BB720DC3390D80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/5942231e-fd62-3695-bb15-78ba6827beeb.roa
Signing time: Wed 26 Aug 2020 04:00:00 +0000
ROA not before: Wed 26 Aug 2020 04:00:00 +0000
ROA not after: Mon 15 Jan 2024 05:00:00 +0000
asID: 7922
IP address blocks: 104.164.202.0/24 maxlen: 24
45.38.54.0/24 maxlen: 24
45.39.231.0/24 maxlen: 24
23.230.109.0/24 maxlen: 24
23.230.32.0/24 maxlen: 24
23.230.40.0/24 maxlen: 24
23.230.96.0/24 maxlen: 24
23.230.227.0/24 maxlen: 24
45.38.166.0/24 maxlen: 24
50.117.86.0/24 maxlen: 24
104.165.66.0/24 maxlen: 24
104.165.128.0/24 maxlen: 24
104.165.175.0/24 maxlen: 24
104.165.191.0/24 maxlen: 24
104.252.103.0/24 maxlen: 24
104.252.183.0/24 maxlen: 24
104.252.244.0/24 maxlen: 24
104.253.147.0/24 maxlen: 24
107.165.238.0/24 maxlen: 24
107.186.28.0/24 maxlen: 24
107.186.83.0/24 maxlen: 24
107.186.238.0/24 maxlen: 24
107.187.34.0/24 maxlen: 24
107.187.50.0/24 maxlen: 24
107.187.54.0/24 maxlen: 24
107.187.96.0/24 maxlen: 24
107.187.100.0/24 maxlen: 24
107.187.105.0/24 maxlen: 24
107.187.119.0/24 maxlen: 24
107.187.121.0/24 maxlen: 24
136.0.35.0/24 maxlen: 24
104.252.238.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3b:92:64:43:34:88:bb:72:0d:c3:39:0d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 04:00:00 2020 GMT
Not After : Jan 15 05:00:00 2024 GMT
Subject: CN=abe572b7-4d1c-449c-a46b-3950e07f8413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:68:3c:59:1f:46:18:8d:2c:1d:e2:33:72:60:
e6:7b:82:1f:cb:34:a4:de:f4:ce:78:53:5e:d9:f8:
0e:86:6f:bb:a3:ce:92:e1:4c:11:a6:70:c9:ae:b1:
de:9f:c3:0d:fd:b1:26:9e:96:c6:82:50:3c:26:e3:
dc:54:b0:c8:a2:c0:d5:cf:6e:82:eb:d1:47:c9:a9:
9e:7d:62:6f:50:28:40:4f:b6:64:da:5a:d1:85:b2:
91:f1:85:a2:81:74:0d:f0:67:63:be:f6:78:37:e4:
98:30:34:08:74:51:a4:5a:92:2c:ca:14:61:b1:0e:
92:26:43:09:64:b2:ba:f8:2c:17:3c:44:d3:2c:70:
03:0e:17:14:27:21:f8:25:fa:28:04:75:52:6f:6d:
d0:38:ff:1f:a3:40:a6:1c:8f:95:61:e1:0e:22:8d:
fa:a5:a9:28:f1:ec:84:ef:1b:c8:47:c5:ec:43:0a:
10:08:a2:2a:a1:8b:99:c2:e1:00:ea:b5:c2:f0:4e:
d3:3c:69:df:84:14:9f:bd:d2:ec:1a:07:ae:60:0a:
ce:fb:64:ae:27:b8:e6:8e:52:d8:fd:93:2e:d8:51:
72:f4:11:6f:21:71:4a:06:1a:42:0b:40:9b:37:1f:
8d:35:83:77:4a:0b:e4:16:a3:02:fd:64:38:f3:83:
39:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:09:AF:8F:98:D4:26:FD:A2:4B:BD:24:8F:7A:9D:79:41:C6:93:0A
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/5942231e-fd62-3695-bb15-78ba6827beeb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.230.32.0/24
23.230.40.0/24
23.230.96.0/24
23.230.109.0/24
23.230.227.0/24
45.38.54.0/24
45.38.166.0/24
45.39.231.0/24
50.117.86.0/24
104.164.202.0/24
104.165.66.0/24
104.165.128.0/24
104.165.175.0/24
104.165.191.0/24
104.252.103.0/24
104.252.183.0/24
104.252.238.0/24
104.252.244.0/24
104.253.147.0/24
107.165.238.0/24
107.186.28.0/24
107.186.83.0/24
107.186.238.0/24
107.187.34.0/24
107.187.50.0/24
107.187.54.0/24
107.187.96.0/24
107.187.100.0/24
107.187.105.0/24
107.187.119.0/24
107.187.121.0/24
136.0.35.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
60:73:c9:de:7e:21:c9:22:f7:bd:24:d3:b7:1c:63:64:0d:88:
bf:e5:7f:d1:af:77:ec:d3:77:3c:1d:71:72:b4:c3:3b:89:16:
1b:ee:84:8d:ea:df:31:c5:7f:2e:2e:96:73:5b:2c:3e:cc:c4:
d6:19:51:00:cd:1d:97:77:03:2c:2f:0d:ab:91:fc:ea:d0:d1:
c1:f6:2d:1e:f3:a7:02:15:26:73:67:78:3a:c5:96:94:67:ba:
71:95:0f:52:de:e3:0e:14:54:00:6e:98:fc:20:14:3c:5d:10:
2f:91:49:56:47:76:ab:39:c4:c4:0a:2d:02:1b:2b:c7:30:2a:
26:13:15:a4:2d:0c:13:77:bc:d3:16:49:2e:50:bc:13:2a:23:
49:c0:b9:58:90:66:79:20:97:75:79:8b:a7:7c:af:f2:92:21:
54:05:11:4d:df:7f:86:49:04:f2:73:87:65:bd:03:68:18:23:
65:c9:c4:14:d3:fb:5a:40:77:b0:8a:10:e2:b7:08:12:9d:d6:
73:ba:3a:a8:86:1b:df:13:d0:b4:d7:8e:41:22:69:a0:63:f4:
78:84:56:cd:bc:fc:8e:f3:79:40:2d:c0:46:90:bf:c3:6b:07:
40:ca:83:32:fa:2b:98:ee:69:06:c8:ed:dd:0c:7b:af:d4:e1:
75:95:12:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:07 2024 by rpki-client on console-ams.rpki-client.org