Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/7a470f25-64ff-3047-b880-39b82505c8dc.roa
File: 7a470f25-64ff-3047-b880-39b82505c8dc.roa (raw, json)
Hash identifier: XPFa8lrZ5dUWD8d2/YnrbGAXTOVDp9dCvHrrp7WXGYI=
Subject key identifier: F8:EB:A6:5E:5F:D5:50:BD:13:FD:8A:BE:E2:28:A0:65:9E:3C:6B:7F
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328584503C00C345E248157CEBCDA00
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/7a470f25-64ff-3047-b880-39b82505c8dc.roa
Signing time: Mon 26 Feb 2024 02:00:26 +0000
ROA not before: Mon 26 Feb 2024 02:00:26 +0000
ROA not after: Sun 26 May 2024 01:00:26 +0000
asID: 5650
IP address blocks: 142.252.40.0/24 maxlen: 24
142.252.19.0/24 maxlen: 24
142.252.18.0/24 maxlen: 24
142.252.48.0/24 maxlen: 24
142.111.243.0/24 maxlen: 24
142.111.241.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:03:c0:0c:34:5e:24:81:57:ce:bc:da:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 26 02:00:26 2024 GMT
Not After : May 26 01:00:26 2024 GMT
Subject: CN=161ec9ca-b261-4539-82b5-b2a87c863f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ff:50:bf:de:0f:2f:5f:e5:5c:c9:82:ee:49:
0e:8e:ad:ad:d4:24:c7:c1:ac:a8:6a:59:02:84:c5:
43:ee:09:83:56:66:45:e5:fb:ca:2d:c7:1b:ea:f2:
f1:32:04:7d:79:4d:88:37:9c:aa:34:be:15:55:10:
e9:d4:bb:ca:d3:d1:ee:1a:93:a6:49:43:21:10:4a:
54:ce:a2:cc:f2:66:7e:47:bd:76:b9:c9:bd:50:81:
a7:02:31:ba:c3:46:f8:b6:f0:23:15:f6:ad:1a:c0:
48:60:8e:45:a7:e8:90:6f:80:32:6e:bf:b2:22:0e:
f8:07:cd:36:ad:ee:5e:60:a6:b2:e1:32:7f:d4:72:
e8:2a:da:7e:dd:a7:77:b9:ff:4a:58:e8:47:f5:5a:
ae:a9:9c:78:a1:fc:2f:5b:56:c1:b5:9d:1d:86:1f:
34:6a:a0:d6:c5:a8:a5:83:69:33:20:08:7d:d5:ab:
f3:31:cf:48:c1:ea:d7:0e:e3:b9:ed:4d:97:ba:31:
08:82:21:0d:42:68:ef:20:39:9d:fb:09:9f:94:3b:
c7:f4:9a:3d:09:25:03:b8:32:ae:03:0b:cc:65:af:
9b:ba:9a:a9:51:d0:35:be:76:c5:0d:e4:51:d0:bf:
de:b0:1f:94:af:8c:ae:f4:4e:38:56:3d:b9:58:36:
0d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EB:A6:5E:5F:D5:50:BD:13:FD:8A:BE:E2:28:A0:65:9E:3C:6B:7F
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/7a470f25-64ff-3047-b880-39b82505c8dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
142.111.241.0/24
142.111.243.0/24
142.252.18.0/23
142.252.40.0/24
142.252.48.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
53:e2:0d:c2:bc:db:06:ec:49:4e:c3:8b:62:16:8a:53:6e:9f:
de:df:72:aa:16:08:c5:66:92:bd:2f:b0:b8:27:c4:5a:fa:ba:
64:9f:ab:0b:d1:bb:1a:f6:e8:94:70:ee:bb:ec:8d:6e:67:1b:
b1:23:ca:8d:d2:eb:4e:dd:92:9c:77:3f:8e:ed:dc:08:33:86:
3f:9a:c8:5d:5e:50:ea:cc:c5:a8:b0:dc:8b:9d:87:be:8b:cc:
b3:1f:f7:f2:09:10:98:36:3f:7c:6a:eb:55:03:c6:59:fe:d6:
c1:50:2e:8f:df:02:83:5d:ec:3c:1b:10:f9:a9:94:fa:7a:96:
65:f3:74:e7:4a:f3:0a:14:13:96:56:20:59:ff:8e:c0:0e:6e:
13:9b:2e:e6:6b:fb:85:3e:44:2e:6b:57:ea:5e:41:f2:67:3a:
96:fd:34:12:42:cb:63:55:4f:19:47:bd:80:7f:02:5e:66:03:
a9:f4:7f:d8:f8:f8:d8:09:38:89:be:79:ae:0c:1d:47:ac:2d:
67:60:ad:26:a4:3c:93:10:98:88:6c:f5:08:c7:45:56:fa:d7:
55:a9:19:b8:8d:07:4d:48:36:6b:43:8f:24:36:ff:3e:5d:1e:
0d:a2:36:3c:a9:28:f3:67:d8:88:8d:24:6b:10:45:5b:34:54:
92:e8:d9:1f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:25 2024 by rpki-client on console-fra.rpki-client.org