Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9152fbe8-6b97-3a45-8613-4decbf8689fc.roa
File: 9152fbe8-6b97-3a45-8613-4decbf8689fc.roa (raw, json)
Hash identifier: zOdY1X6nlnqx9DeauGuWGTwv50lVbr06KAYvhHC3IQA=
Subject key identifier: D7:99:E3:EB:3D:C2:2E:6F:7D:1E:4C:E6:C3:06:60:8B:C5:E4:00:1E
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285845068ACAF2E74514A9DCAC4A40
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9152fbe8-6b97-3a45-8613-4decbf8689fc.roa
Signing time: Tue 27 Feb 2024 02:00:26 +0000
ROA not before: Tue 27 Feb 2024 02:00:26 +0000
ROA not after: Mon 27 May 2024 01:00:26 +0000
asID: 44477
IP address blocks: 23.230.72.0/24 maxlen: 24
45.38.40.0/24 maxlen: 24
23.230.78.0/24 maxlen: 24
45.38.42.0/24 maxlen: 24
23.230.88.0/24 maxlen: 24
45.38.139.0/24 maxlen: 24
23.230.48.0/24 maxlen: 24
45.38.143.0/24 maxlen: 24
23.230.49.0/24 maxlen: 24
45.38.62.0/24 maxlen: 24
23.230.66.0/24 maxlen: 24
45.38.130.0/24 maxlen: 24
23.230.162.0/24 maxlen: 24
23.27.190.0/24 maxlen: 24
23.27.134.0/24 maxlen: 24
45.38.36.0/24 maxlen: 24
23.27.139.0/24 maxlen: 24
23.27.122.0/24 maxlen: 24
23.230.236.0/24 maxlen: 24
23.230.244.0/24 maxlen: 24
23.230.215.0/24 maxlen: 24
23.230.230.0/24 maxlen: 24
23.230.165.0/24 maxlen: 24
23.230.168.0/24 maxlen: 24
23.230.179.0/24 maxlen: 24
23.230.189.0/24 maxlen: 24
45.38.150.0/24 maxlen: 24
23.27.2.0/24 maxlen: 24
23.27.21.0/24 maxlen: 24
23.27.100.0/24 maxlen: 24
23.27.0.0/24 maxlen: 24
23.230.14.0/24 maxlen: 24
23.27.189.0/24 maxlen: 24
23.230.22.0/24 maxlen: 24
45.38.163.0/24 maxlen: 24
23.230.26.0/24 maxlen: 24
45.38.167.0/24 maxlen: 24
23.230.33.0/24 maxlen: 24
45.38.151.0/24 maxlen: 24
23.230.37.0/24 maxlen: 24
45.38.160.0/24 maxlen: 24
23.27.224.0/24 maxlen: 24
23.27.246.0/24 maxlen: 24
23.230.8.0/24 maxlen: 24
45.38.170.0/24 maxlen: 24
23.230.13.0/24 maxlen: 24
45.38.194.0/24 maxlen: 24
23.27.197.0/24 maxlen: 24
23.27.222.0/24 maxlen: 24
23.230.45.0/24 maxlen: 24
23.230.47.0/24 maxlen: 24
23.230.139.0/24 maxlen: 24
23.230.153.0/24 maxlen: 24
23.230.155.0/24 maxlen: 24
23.230.157.0/24 maxlen: 24
23.230.100.0/24 maxlen: 24
23.230.101.0/24 maxlen: 24
23.230.113.0/24 maxlen: 24
23.230.128.0/24 maxlen: 24
23.230.93.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:06:8a:ca:f2:e7:45:14:a9:dc:ac:4a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 27 02:00:26 2024 GMT
Not After : May 27 01:00:26 2024 GMT
Subject: CN=00e7c03f-e425-4f59-b72f-fa6683c9e57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1a:93:c8:ba:d3:86:4b:68:ef:70:5c:69:fa:
38:e6:60:ab:8e:3e:b9:f9:2d:5b:6b:b1:8d:83:f9:
92:07:b0:de:fb:8e:2f:2f:31:32:a2:6d:d4:6c:d2:
21:2c:dd:09:3e:9d:81:1f:48:99:c6:4c:c0:79:85:
b3:da:38:d8:90:98:12:f1:68:5d:d1:6b:23:1c:b4:
ac:72:22:c3:86:ef:ab:55:63:4c:e5:b8:34:39:78:
c6:a0:70:1a:f7:59:1d:e6:13:8e:46:36:12:e7:b1:
81:6f:d7:c5:18:4b:03:96:af:21:fe:8b:67:06:2c:
4e:64:25:78:66:57:1a:d6:16:c1:e5:c5:b5:ba:a8:
fc:55:d6:55:96:9b:fd:fa:e5:57:31:4e:13:21:1e:
f3:71:37:76:61:5a:93:ff:68:16:b1:3c:eb:03:2a:
fa:f1:be:40:6a:16:7f:55:6f:7a:94:3c:ae:93:d4:
b1:c1:8d:33:d0:cd:49:ff:78:22:1a:fc:64:16:55:
8c:b0:18:28:d5:d3:2e:1b:df:d6:53:42:d6:f3:d1:
fc:c3:27:ff:c8:85:05:ef:c5:21:a1:5b:e5:04:86:
76:37:16:2d:3e:4e:30:92:3e:98:8f:70:8f:2c:e0:
ca:a1:1f:84:7e:cb:a0:39:0b:ae:8f:07:1f:d9:a5:
a2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:99:E3:EB:3D:C2:2E:6F:7D:1E:4C:E6:C3:06:60:8B:C5:E4:00:1E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9152fbe8-6b97-3a45-8613-4decbf8689fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.0.0/24
23.27.2.0/24
23.27.21.0/24
23.27.100.0/24
23.27.122.0/24
23.27.134.0/24
23.27.139.0/24
23.27.189.0-23.27.190.255
23.27.197.0/24
23.27.222.0/24
23.27.224.0/24
23.27.246.0/24
23.230.8.0/24
23.230.13.0-23.230.14.255
23.230.22.0/24
23.230.26.0/24
23.230.33.0/24
23.230.37.0/24
23.230.45.0/24
23.230.47.0-23.230.49.255
23.230.66.0/24
23.230.72.0/24
23.230.78.0/24
23.230.88.0/24
23.230.93.0/24
23.230.100.0/23
23.230.113.0/24
23.230.128.0/24
23.230.139.0/24
23.230.153.0/24
23.230.155.0/24
23.230.157.0/24
23.230.162.0/24
23.230.165.0/24
23.230.168.0/24
23.230.179.0/24
23.230.189.0/24
23.230.215.0/24
23.230.230.0/24
23.230.236.0/24
23.230.244.0/24
45.38.36.0/24
45.38.40.0/24
45.38.42.0/24
45.38.62.0/24
45.38.130.0/24
45.38.139.0/24
45.38.143.0/24
45.38.150.0/23
45.38.160.0/24
45.38.163.0/24
45.38.167.0/24
45.38.170.0/24
45.38.194.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
75:5f:bc:95:a8:ee:8c:5e:97:20:b0:4c:89:32:d1:64:f3:17:
05:d1:41:d7:3c:f3:a8:04:16:00:4f:1f:07:6b:e9:7b:4a:01:
f5:c4:23:6d:62:8b:32:60:c7:0f:f6:2a:f3:a2:76:4c:be:47:
26:69:aa:0b:f7:ca:5c:ad:2f:51:18:d0:a4:6f:ff:4a:1f:a9:
e7:dd:49:c6:7f:7b:b4:56:92:41:6b:e2:f5:e9:a1:c8:7b:0c:
72:c2:46:81:44:8b:0a:ea:ed:6f:42:ab:c0:fd:68:37:2e:33:
03:c9:26:d2:71:00:78:a1:78:11:b1:3b:1b:6a:79:81:ea:45:
9a:93:64:b1:11:0b:b9:c0:87:7b:b1:d2:35:ce:d1:ba:8f:c4:
e6:e4:68:42:ff:6f:8a:0f:98:fc:05:35:3f:03:c5:df:9c:16:
95:56:ea:1b:f0:0d:ab:2b:43:36:d0:f4:3a:88:04:26:34:47:
d4:e9:2b:24:69:b5:02:ec:9b:e5:ff:d4:c2:b5:20:d5:9a:95:
1c:8f:d3:da:07:0c:01:f7:47:86:0e:24:93:ca:8e:2b:ee:d6:
df:5c:c2:e1:fa:49:d3:46:8e:58:a6:da:0d:f6:28:d1:45:c0:
9a:63:6a:76:5a:18:dd:7d:d8:94:39:c6:ff:58:a9:6d:a3:11:
30:77:99:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 19:21:38 2024 by rpki-client on console-fra.rpki-client.org