Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/657053c0-c4c5-3d04-8758-15f6e5d45a53.roa
File: 657053c0-c4c5-3d04-8758-15f6e5d45a53.roa (raw, json)
Hash identifier: mohl1t3puZtleyXF6WjA0Bls3wmMcob3OYBqTjMyAZA=
Subject key identifier: BE:5B:B4:4F:00:06:67:29:4E:6C:51:76:7C:B6:E0:22:57:CA:A8:D2
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328584402E91147835BE48C09DE2140
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/657053c0-c4c5-3d04-8758-15f6e5d45a53.roa
Signing time: Sun 26 Nov 2023 02:00:16 +0000
ROA not before: Sun 26 Nov 2023 02:00:16 +0000
ROA not after: Sat 24 Feb 2024 02:00:16 +0000
asID: 12083
IP address blocks: 107.165.240.0/24 maxlen: 24
104.165.174.0/24 maxlen: 24
45.38.191.0/24 maxlen: 24
23.230.218.0/24 maxlen: 24
23.27.205.0/24 maxlen: 24
45.39.58.0/24 maxlen: 24
107.165.235.0/24 maxlen: 24
107.165.228.0/24 maxlen: 24
107.165.222.0/24 maxlen: 24
107.165.205.0/24 maxlen: 24
107.164.211.0/24 maxlen: 24
107.164.210.0/24 maxlen: 24
107.165.199.0/24 maxlen: 24
107.165.186.0/24 maxlen: 24
107.165.164.0/24 maxlen: 24
107.165.155.0/24 maxlen: 24
104.165.155.0/24 maxlen: 24
45.39.225.0/24 maxlen: 24
45.39.215.0/24 maxlen: 24
104.252.133.0/24 maxlen: 24
104.165.255.0/24 maxlen: 24
104.165.193.0/24 maxlen: 24
104.165.178.0/24 maxlen: 24
107.164.188.0/24 maxlen: 24
107.164.132.0/24 maxlen: 24
107.164.121.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:02:e9:11:47:83:5b:e4:8c:09:de:21:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Nov 26 02:00:16 2023 GMT
Not After : Feb 24 02:00:16 2024 GMT
Subject: CN=1551c2a1-26e0-43d2-a433-25b3a6059da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:ea:3b:82:bb:e8:3a:5e:a3:6a:c2:df:c7:
95:91:b5:85:9b:aa:b8:d2:e9:bf:d6:57:18:6a:d0:
49:2e:e3:8f:e6:87:8f:7d:ae:4d:c6:d9:08:b8:ec:
20:4c:22:ca:1d:10:0e:3f:bd:c7:a7:22:81:c5:39:
7a:a4:31:44:8e:ae:b6:5e:28:11:57:e3:3a:0f:d7:
9f:16:0e:08:77:a8:8b:b4:11:a1:82:ea:f6:5d:9a:
3e:6e:d1:5f:b4:27:4b:24:88:c3:eb:8b:81:ca:04:
98:03:f8:30:3d:44:a9:3a:2c:68:bb:68:23:91:f2:
d7:ac:83:f6:e6:a6:4d:ac:f7:2c:09:01:72:22:1e:
af:70:66:7d:4b:cb:99:a7:81:11:1c:9a:20:71:e8:
11:7c:c2:01:0b:cb:4a:63:a2:ba:7a:71:87:35:01:
56:4d:ba:c6:8f:26:4a:85:34:ec:83:83:a9:99:fb:
2e:ad:30:6b:e0:62:21:94:7f:ac:e1:59:92:28:94:
61:01:60:a5:8a:3a:99:14:3f:3e:81:fb:a6:12:15:
fe:ab:bc:a5:65:79:4a:a7:bb:99:06:f4:e0:b9:c9:
5b:46:25:29:f2:44:f1:9b:33:2a:5a:9d:06:00:ea:
2a:98:a8:df:a3:e2:cd:c8:0b:88:6c:04:5f:26:c4:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5B:B4:4F:00:06:67:29:4E:6C:51:76:7C:B6:E0:22:57:CA:A8:D2
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/657053c0-c4c5-3d04-8758-15f6e5d45a53.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.205.0/24
23.230.218.0/24
45.38.191.0/24
45.39.58.0/24
45.39.215.0/24
45.39.225.0/24
104.165.155.0/24
104.165.174.0/24
104.165.178.0/24
104.165.193.0/24
104.165.255.0/24
104.252.133.0/24
107.164.121.0/24
107.164.132.0/24
107.164.188.0/24
107.164.210.0/23
107.165.155.0/24
107.165.164.0/24
107.165.186.0/24
107.165.199.0/24
107.165.205.0/24
107.165.222.0/24
107.165.228.0/24
107.165.235.0/24
107.165.240.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
38:0f:ce:f1:70:81:29:29:0d:3c:a0:e1:24:78:41:57:64:13:
40:74:87:7c:c0:36:53:aa:4d:88:6e:92:1f:66:10:6c:14:60:
52:70:0c:6c:1e:0d:4d:c2:d0:00:b7:33:16:d2:85:67:f9:91:
5c:ae:ec:97:ec:cb:2e:b9:54:04:66:c2:86:30:72:79:67:b2:
ac:9e:9b:59:24:57:71:2b:63:a7:de:3c:87:51:f5:73:85:4f:
f4:25:26:8f:5b:64:74:50:3a:8a:8f:c1:9e:50:b2:e0:d1:c5:
c6:9b:35:40:33:46:c7:68:c4:6c:81:e2:6c:3a:3b:ed:86:11:
f0:14:a5:d2:eb:52:c2:80:6e:b4:2d:e7:d2:89:06:d9:8f:e4:
3b:c2:ab:39:ec:d1:b2:18:34:6e:2a:1b:a0:e9:36:e1:c3:10:
a7:41:19:4b:25:f0:12:c6:8f:8d:9d:1c:f3:53:e2:ae:6a:30:
c3:3e:5e:77:25:16:1f:e9:81:99:ba:a4:3a:ed:da:b4:d0:fa:
06:79:9c:01:ae:29:a0:dd:ca:ba:52:13:06:13:03:73:e2:46:
78:bc:17:76:3e:0c:3c:c3:c1:ad:a4:03:2c:df:6d:67:6d:89:
c5:d4:c1:aa:25:d3:5c:00:3f:0f:1b:e2:30:67:ad:81:c7:ae:
3e:db:a5:8d
-----BEGIN CERTIFICATE-----
MIIG2DCCBcCgAwIBAgIUAQ0Mn0MoWEQC6RFHg1vkjAneIUAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIzMTEyNjAyMDAxNloXDTI0MDIyNDAyMDAxNlowLzEtMCsGA1UEAxMk
MTU1MWMyYTEtMjZlMC00M2QyLWE0MzMtMjViM2E2MDU5ZGE0MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYLqO4K76Dpeo2rC38eVkbWFm6q40um/1lcY
atBJLuOP5oePfa5NxtkIuOwgTCLKHRAOP73HpyKBxTl6pDFEjq62XigRV+M6D9ef
Fg4Id6iLtBGhgur2XZo+btFftCdLJIjD64uBygSYA/gwPUSpOixou2gjkfLXrIP2
5qZNrPcsCQFyIh6vcGZ9S8uZp4ERHJogcegRfMIBC8tKY6K6enGHNQFWTbrGjyZK
hTTsg4OpmfsurTBr4GIhlH+s4VmSKJRhAWClijqZFD8+gfumEhX+q7ylZXlKp7uZ
BvTguclbRiUp8kTxmzMqWp0GAOoqmKjfo+LNyAuIbARfJsRIrwIDAQABo4ID6jCC
A+YwHQYDVR0OBBYEFL5btE8ABmcpTmxRdny24CJXyqjSMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvNjU3MDUzYzAtYzRjNS0z
ZDA0LTg3NTgtMTVmNmU1ZDQ1YTUzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAAX
G80DBAAX5toDBAAtJr8DBAAtJzoDBAAtJ9cDBAAtJ+EDBABopZsDBABopa4DBABo
pbIDBABopcEDBABopf8DBABo/IUDBABrpHkDBABrpIQDBABrpLwDBAFrpNIDBABr
pZsDBABrpaQDBABrpboDBABrpccDBABrpc0DBABrpd4DBABrpeQDBABrpesDBABr
pfAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRw
czovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG
9w0BAQsFAAOCAQEAOA/O8XCBKSkNPKDhJHhBV2QTQHSHfMA2U6pNiG6SH2YQbBRg
UnAMbB4NTcLQALczFtKFZ/mRXK7sl+zLLrlUBGbChjByeWeyrJ6bWSRXcStjp948
h1H1c4VP9CUmj1tkdFA6io/BnlCy4NHFxps1QDNGx2jEbIHibDo77YYR8BSl0utS
woButC3n0okG2Y/kO8KrOezRshg0bioboOk24cMQp0EZSyXwEsaPjZ0c81Pirmow
wz5edyUWH+mBmbqkOu3atND6BnmcAa4poN3KulITBhMDc+JGeLwXdj4MPMPBraQD
LN9tZ22JxdTBqiXTXAA/DxviMGetgceuPtuljQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:07 2024 by rpki-client on console-ams.rpki-client.org