Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9d559a53-423f-37da-ad30-71086fac69c2.roa
File: 9d559a53-423f-37da-ad30-71086fac69c2.roa (raw, json)
Hash identifier: 2E49SS6bec7o+m0g7xdipng9k7pSnpgoDB3iupv9tfY=
Subject key identifier: 7C:A1:4B:A1:A9:75:63:28:F4:47:C7:F3:70:1A:08:17:06:6F:F7:73
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583EF59F20A3565A1769B632B430
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9d559a53-423f-37da-ad30-71086fac69c2.roa
Signing time: Wed 26 Aug 2020 17:55:28 +0000
ROA not before: Wed 26 Aug 2020 17:55:28 +0000
ROA not after: Thu 21 Nov 2024 05:00:00 +0000
asID: 212762
IP address blocks: 104.165.91.0/24 maxlen: 24
50.118.248.0/24 maxlen: 24
23.27.243.0/24 maxlen: 24
104.165.81.0/24 maxlen: 24
104.165.83.0/24 maxlen: 24
104.165.107.0/24 maxlen: 24
104.165.109.0/24 maxlen: 24
104.165.114.0/24 maxlen: 24
104.165.120.0/24 maxlen: 24
104.165.134.0/24 maxlen: 24
104.253.11.0/24 maxlen: 24
104.253.12.0/24 maxlen: 24
104.253.29.0/24 maxlen: 24
104.253.57.0/24 maxlen: 24
104.253.63.0/24 maxlen: 24
104.253.96.0/24 maxlen: 24
104.253.106.0/24 maxlen: 24
104.253.132.0/24 maxlen: 24
104.253.139.0/24 maxlen: 24
104.253.141.0/24 maxlen: 24
104.253.143.0/24 maxlen: 24
104.253.144.0/24 maxlen: 24
104.253.146.0/24 maxlen: 24
104.253.150.0/24 maxlen: 24
107.164.85.0/24 maxlen: 24
107.164.145.0/24 maxlen: 24
107.164.199.0/24 maxlen: 24
107.164.200.0/24 maxlen: 24
107.165.138.0/24 maxlen: 24
107.165.161.0/24 maxlen: 24
107.165.194.0/24 maxlen: 24
107.186.35.0/24 maxlen: 24
136.0.47.0/24 maxlen: 24
136.0.67.0/24 maxlen: 24
136.0.99.0/24 maxlen: 24
136.0.226.0/24 maxlen: 24
142.111.219.0/24 maxlen: 24
142.252.51.0/24 maxlen: 24
142.252.52.0/24 maxlen: 24
166.88.149.0/24 maxlen: 24
172.120.14.0/24 maxlen: 24
172.252.215.0/24 maxlen: 24
173.245.84.0/24 maxlen: 24
205.164.9.0/24 maxlen: 24
205.164.32.0/24 maxlen: 24
205.164.59.0/24 maxlen: 24
209.73.132.0/24 maxlen: 24
209.73.136.0/24 maxlen: 24
209.73.137.0/24 maxlen: 24
216.172.135.0/24 maxlen: 24
216.172.138.0/24 maxlen: 24
104.165.78.0/24 maxlen: 24
104.165.29.0/24 maxlen: 24
104.165.73.0/24 maxlen: 24
50.118.255.0/24 maxlen: 24
104.164.180.0/24 maxlen: 24
50.117.45.0/24 maxlen: 24
23.27.14.0/24 maxlen: 24
23.27.23.0/24 maxlen: 24
23.27.127.0/24 maxlen: 24
23.27.248.0/24 maxlen: 24
23.230.29.0/24 maxlen: 24
23.230.67.0/24 maxlen: 24
50.117.96.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3e:f5:9f:20:a3:56:5a:17:69:b6:32:b4:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Aug 26 17:55:28 2020 GMT
Not After : Nov 21 05:00:00 2024 GMT
Subject: CN=303db728-de0d-4423-8554-6e916318609e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2b:f6:39:ad:c7:b2:a6:26:c5:cf:7d:0b:87:
21:84:77:0c:b2:d5:1d:d7:ef:d5:51:49:68:cc:7e:
f8:91:a3:4c:71:d9:80:6d:79:07:e7:0c:ce:f4:b9:
38:31:c4:2c:4a:a0:6f:32:cf:50:b7:7a:e5:69:14:
16:65:90:01:b7:3f:78:97:65:84:f5:d7:9f:56:7d:
18:85:d6:82:52:26:cf:00:45:7a:25:f8:ed:70:71:
07:22:79:a0:55:dc:89:45:f0:c2:16:06:bd:51:1d:
37:38:10:5b:70:34:52:d8:85:40:ac:ab:32:e7:b1:
9f:a7:74:c6:38:4c:a3:ed:76:52:9e:13:9d:2a:30:
ae:75:05:6d:f4:fd:21:8a:f8:84:0d:ce:25:60:68:
ac:a8:b5:f0:af:58:1b:2d:af:59:6f:64:b5:c6:11:
31:95:93:4d:fc:2c:19:f6:ae:09:69:75:58:45:da:
a0:59:d3:31:c0:18:84:cb:ab:03:bc:ae:b6:6b:15:
12:70:94:22:99:94:a4:22:61:e8:fd:86:4a:48:fb:
dd:2a:c7:99:ee:6c:56:28:f5:12:7f:8a:a5:1f:64:
ef:5d:01:1d:ed:50:3f:d7:61:f6:53:9f:d6:83:62:
d2:57:18:dc:9b:61:0d:de:9e:6b:5c:ad:36:b1:00:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A1:4B:A1:A9:75:63:28:F4:47:C7:F3:70:1A:08:17:06:6F:F7:73
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/9d559a53-423f-37da-ad30-71086fac69c2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.14.0/24
23.27.23.0/24
23.27.127.0/24
23.27.243.0/24
23.27.248.0/24
23.230.29.0/24
23.230.67.0/24
50.117.45.0/24
50.117.96.0/24
50.118.248.0/24
50.118.255.0/24
104.164.180.0/24
104.165.29.0/24
104.165.73.0/24
104.165.78.0/24
104.165.81.0/24
104.165.83.0/24
104.165.91.0/24
104.165.107.0/24
104.165.109.0/24
104.165.114.0/24
104.165.120.0/24
104.165.134.0/24
104.253.11.0-104.253.12.255
104.253.29.0/24
104.253.57.0/24
104.253.63.0/24
104.253.96.0/24
104.253.106.0/24
104.253.132.0/24
104.253.139.0/24
104.253.141.0/24
104.253.143.0-104.253.144.255
104.253.146.0/24
104.253.150.0/24
107.164.85.0/24
107.164.145.0/24
107.164.199.0-107.164.200.255
107.165.138.0/24
107.165.161.0/24
107.165.194.0/24
107.186.35.0/24
136.0.47.0/24
136.0.67.0/24
136.0.99.0/24
136.0.226.0/24
142.111.219.0/24
142.252.51.0-142.252.52.255
166.88.149.0/24
172.120.14.0/24
172.252.215.0/24
173.245.84.0/24
205.164.9.0/24
205.164.32.0/24
205.164.59.0/24
209.73.132.0/24
209.73.136.0/23
216.172.135.0/24
216.172.138.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
07:a9:c7:e5:95:a0:9c:71:80:87:44:00:29:af:05:cc:0d:58:
3a:0f:76:4f:eb:80:2f:33:c7:dd:ae:8f:a5:7a:77:f7:84:34:
ba:3a:bc:b6:ae:d9:fc:db:4f:64:0b:1b:c7:32:33:97:13:df:
8d:c9:99:50:bd:6e:6f:02:75:16:e3:cd:d0:95:1c:ab:fa:ab:
1d:cb:0f:3f:0b:ed:f6:1d:64:2d:fc:57:c4:4e:85:05:c5:9b:
3b:f6:e0:03:74:e0:14:51:00:7b:9b:a2:35:13:c4:d1:00:8e:
d1:2d:42:5c:0b:06:be:9d:b5:77:61:97:2e:83:5e:a4:b8:07:
48:e7:24:3f:3d:70:d0:92:ae:fc:6c:01:69:1d:df:7e:38:05:
6d:9e:e5:20:ca:8c:26:60:21:f0:4c:95:27:f2:a8:6c:33:98:
e0:30:54:6a:f3:ec:61:ca:d5:7a:8f:b8:89:2f:9a:b4:7f:bc:
72:6e:d2:2a:db:ea:70:74:d2:4a:e0:7c:d9:e2:f4:f9:10:d5:
2f:de:e4:d3:77:8c:e6:38:1d:a3:32:0c:5b:0b:69:4a:dd:0e:
ee:1f:92:21:c0:22:db:af:28:d7:15:52:a5:f4:3d:9c:cf:90:
e4:67:96:d5:a3:26:54:26:61:0a:6e:a2:0b:bc:51:7d:98:0f:
c6:ca:f5:df
-----BEGIN CERTIFICATE-----
MIIHyTCCBrGgAwIBAgIUAQ0Mn0MoWD71nyCjVloXabYytDAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIwMDgyNjE3NTUyOFoXDTI0MTEyMTA1MDAwMFowLzEtMCsGA1UEAxMk
MzAzZGI3MjgtZGUwZC00NDIzLTg1NTQtNmU5MTYzMTg2MDllMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iv2Oa3HsqYmxc99C4chhHcMstUd1+/VUUlo
zH74kaNMcdmAbXkH5wzO9Lk4McQsSqBvMs9Qt3rlaRQWZZABtz94l2WE9defVn0Y
hdaCUibPAEV6JfjtcHEHInmgVdyJRfDCFga9UR03OBBbcDRS2IVArKsy57Gfp3TG
OEyj7XZSnhOdKjCudQVt9P0hiviEDc4lYGisqLXwr1gbLa9Zb2S1xhExlZNN/CwZ
9q4JaXVYRdqgWdMxwBiEy6sDvK62axUScJQimZSkImHo/YZKSPvdKseZ7mxWKPUS
f4qlH2TvXQEd7VA/12H2U5/Wg2LSVxjcm2EN3p5rXK02sQDLhwIDAQABo4IE2zCC
BNcwHQYDVR0OBBYEFHyhS6GpdWMo9EfH83AaCBcGb/dzMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvOWQ1NTlhNTMtNDIzZi0z
N2RhLWFkMzAtNzEwODZmYWM2OWMyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIIBowYIKwYBBQUHAQcBAf8EggGSMIIBjjCCAYoEAgABMIIB
ggMEABcbDgMEABcbFwMEABcbfwMEABcb8wMEABcb+AMEABfmHQMEABfmQwMEADJ1
LQMEADJ1YAMEADJ2+AMEADJ2/wMEAGiktAMEAGilHQMEAGilSQMEAGilTgMEAGil
UQMEAGilUwMEAGilWwMEAGilawMEAGilbQMEAGilcgMEAGileAMEAGilhjAMAwQA
aP0LAwQAaP0MAwQAaP0dAwQAaP05AwQAaP0/AwQAaP1gAwQAaP1qAwQAaP2EAwQA
aP2LAwQAaP2NMAwDBABo/Y8DBABo/ZADBABo/ZIDBABo/ZYDBABrpFUDBABrpJEw
DAMEAGukxwMEAGukyAMEAGuligMEAGuloQMEAGulwgMEAGu6IwMEAIgALwMEAIgA
QwMEAIgAYwMEAIgA4gMEAI5v2zAMAwQAjvwzAwQAjvw0AwQApliVAwQArHgOAwQA
rPzXAwQArfVUAwQAzaQJAwQAzaQgAwQAzaQ7AwQA0UmEAwQB0UmIAwQA2KyHAwQA
2KyKMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0
cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZI
hvcNAQELBQADggEBAAepx+WVoJxxgIdEACmvBcwNWDoPdk/rgC8zx92uj6V6d/eE
NLo6vLau2fzbT2QLG8cyM5cT343JmVC9bm8CdRbjzdCVHKv6qx3LDz8L7fYdZC38
V8ROhQXFmzv24AN04BRRAHubojUTxNEAjtEtQlwLBr6dtXdhly6DXqS4B0jnJD89
cNCSrvxsAWkd3344BW2e5SDKjCZgIfBMlSfyqGwzmOAwVGrz7GHK1XqPuIkvmrR/
vHJu0irb6nB00krgfNni9PkQ1S/e5NN3jOY4HaMyDFsLaUrdDu4fkiHAItuvKNcV
UqX0PZzPkORnltWjJlQmYQpuogu8UX2YD8bK9d8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:10 2024 by rpki-client on console-ams.rpki-client.org