Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a002bd00-f4c1-34f3-a8ae-3f6f1f8d52ba.roa
File: a002bd00-f4c1-34f3-a8ae-3f6f1f8d52ba.roa (raw, json)
Hash identifier: xzgMfhfLtND1yvMEZfF31UgimlN/MZycdSfsP8jh6+8=
Subject key identifier: 95:32:AD:F4:F6:7C:8D:07:72:A6:82:E4:84:E2:11:F6:39:3D:2D:7B
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F432858427325E644060A8CB3FB314780
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a002bd00-f4c1-34f3-a8ae-3f6f1f8d52ba.roa
Signing time: Wed 05 Jul 2023 21:19:35 +0000
ROA not before: Wed 05 Jul 2023 21:19:35 +0000
ROA not after: Tue 03 Oct 2023 21:19:35 +0000
asID: 12083
IP address blocks: 45.39.225.0/24 maxlen: 24
23.230.218.0/24 maxlen: 24
23.27.134.0/24 maxlen: 24
23.27.197.0/24 maxlen: 24
23.27.205.0/24 maxlen: 24
45.38.191.0/24 maxlen: 24
45.39.58.0/24 maxlen: 24
45.39.215.0/24 maxlen: 24
104.165.155.0/24 maxlen: 24
104.165.174.0/24 maxlen: 24
104.165.178.0/24 maxlen: 24
104.165.193.0/24 maxlen: 24
104.165.255.0/24 maxlen: 24
104.252.133.0/24 maxlen: 24
104.252.168.0/24 maxlen: 24
107.164.87.0/24 maxlen: 24
107.164.121.0/24 maxlen: 24
107.164.132.0/24 maxlen: 24
107.164.188.0/24 maxlen: 24
107.164.210.0/24 maxlen: 24
107.164.211.0/24 maxlen: 24
107.165.155.0/24 maxlen: 24
107.165.164.0/24 maxlen: 24
107.165.186.0/24 maxlen: 24
107.165.199.0/24 maxlen: 24
107.165.205.0/24 maxlen: 24
107.165.222.0/24 maxlen: 24
107.165.228.0/24 maxlen: 24
107.165.234.0/24 maxlen: 24
107.165.235.0/24 maxlen: 24
107.165.240.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:42:73:25:e6:44:06:0a:8c:b3:fb:31:47:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Jul 5 21:19:35 2023 GMT
Not After : Oct 3 21:19:35 2023 GMT
Subject: CN=c2836da2-993f-45b5-b842-eb79f95348e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:68:3e:83:9c:05:3e:16:74:97:09:56:e9:82:
ff:0a:a0:44:4c:74:4d:75:8c:11:3a:3d:9d:51:42:
c4:be:b6:99:41:51:2c:a3:41:ee:3e:a8:db:d1:02:
8d:fd:32:c3:23:1c:c0:6f:c8:ff:3e:f7:25:03:ea:
82:0a:03:fa:62:82:58:c4:41:3b:ce:fe:a5:ca:aa:
01:ba:d7:86:db:bb:2a:90:ed:00:fd:6d:e6:8e:6f:
3b:0e:b5:bf:6c:be:42:b1:6c:50:eb:2d:df:43:68:
a3:0c:c2:b1:cc:6e:fb:4e:df:7c:e0:35:d4:03:12:
2e:87:49:c0:5d:69:c2:69:df:7b:d4:db:e6:8a:12:
e9:f2:6f:71:6f:17:9a:4e:35:db:96:fd:00:35:b5:
e3:20:06:23:40:a6:59:f0:0f:ea:e9:6e:18:82:85:
63:68:75:dc:f1:46:bb:b0:70:f8:75:b1:35:d6:04:
67:4a:00:a7:f9:9d:ca:8c:13:9b:8b:da:a6:ca:fd:
71:b7:5d:91:97:ae:7c:c4:21:ab:cd:5e:ba:08:7f:
69:61:de:99:ca:6d:29:13:ca:7d:a8:79:57:14:83:
50:23:b1:5c:d7:e5:4a:05:b0:6b:30:11:e8:21:44:
ff:77:43:39:e7:73:1a:2e:c6:11:e8:8a:fe:bb:2e:
bd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:32:AD:F4:F6:7C:8D:07:72:A6:82:E4:84:E2:11:F6:39:3D:2D:7B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a002bd00-f4c1-34f3-a8ae-3f6f1f8d52ba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.134.0/24
23.27.197.0/24
23.27.205.0/24
23.230.218.0/24
45.38.191.0/24
45.39.58.0/24
45.39.215.0/24
45.39.225.0/24
104.165.155.0/24
104.165.174.0/24
104.165.178.0/24
104.165.193.0/24
104.165.255.0/24
104.252.133.0/24
104.252.168.0/24
107.164.87.0/24
107.164.121.0/24
107.164.132.0/24
107.164.188.0/24
107.164.210.0/23
107.165.155.0/24
107.165.164.0/24
107.165.186.0/24
107.165.199.0/24
107.165.205.0/24
107.165.222.0/24
107.165.228.0/24
107.165.234.0/23
107.165.240.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
68:67:83:dd:a1:17:36:11:ff:27:1e:9e:fe:d9:02:b8:8b:64:
be:bc:04:90:9a:2c:13:2c:a8:75:78:9a:a9:47:f6:37:dc:66:
68:14:bd:b3:51:b8:61:8e:47:e4:65:d7:6a:d1:7c:bf:b3:73:
91:bb:35:45:75:dc:66:f8:9b:08:77:8a:72:2b:b3:9c:ee:ae:
97:e1:09:f1:51:59:d6:44:86:61:61:8d:b7:18:57:77:8e:c6:
cb:2e:ff:90:4a:5b:c3:58:4f:eb:f8:fa:70:14:d2:a9:ea:51:
37:79:77:f5:c3:4c:7c:b4:9f:b9:28:46:2b:fb:d8:fd:e3:40:
b3:ec:14:68:a8:d7:45:d2:2d:9b:62:7d:35:3f:99:a8:57:bc:
31:32:54:4f:c9:33:8d:8b:2b:22:f1:69:f3:51:35:0f:6c:f9:
da:3d:cc:bc:90:56:69:80:8c:69:6f:f2:b6:81:61:91:73:38:
04:b1:cf:d3:6f:1a:77:6c:18:a2:b1:54:2c:9d:72:09:2e:79:
cc:76:05:28:1c:df:6e:b8:c1:6a:53:6b:7a:01:d1:d0:c5:b1:
a5:93:8f:7c:77:25:70:b1:d4:f9:59:e3:fa:78:9d:a1:dd:44:
56:18:a5:42:51:39:c2:f7:79:69:ce:e6:bd:77:ae:45:e3:96:
22:06:84:cc
-----BEGIN CERTIFICATE-----
MIIG8DCCBdigAwIBAgIUAQ0Mn0MoWEJzJeZEBgqMs/sxR4AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTIzMDcwNTIxMTkzNVoXDTIzMTAwMzIxMTkzNVowLzEtMCsGA1UEAxMk
YzI4MzZkYTItOTkzZi00NWI1LWI4NDItZWI3OWY5NTM0OGU2MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2g+g5wFPhZ0lwlW6YL/CqBETHRNdYwROj2d
UULEvraZQVEso0HuPqjb0QKN/TLDIxzAb8j/PvclA+qCCgP6YoJYxEE7zv6lyqoB
uteG27sqkO0A/W3mjm87DrW/bL5CsWxQ6y3fQ2ijDMKxzG77Tt984DXUAxIuh0nA
XWnCad971NvmihLp8m9xbxeaTjXblv0ANbXjIAYjQKZZ8A/q6W4YgoVjaHXc8Ua7
sHD4dbE11gRnSgCn+Z3KjBObi9qmyv1xt12Rl658xCGrzV66CH9pYd6Zym0pE8p9
qHlXFINQI7Fc1+VKBbBrMBHoIUT/d0M553MaLsYR6Ir+uy69hwIDAQABo4IEAjCC
A/4wHQYDVR0OBBYEFJUyrfT2fI0HcqaC5ITiEfY5PS17MIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvYTAwMmJkMDAtZjRjMS0z
NGYzLWE4YWUtM2Y2ZjFmOGQ1MmJhLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMIHLBggrBgEFBQcBBwEB/wSBuzCBuDCBtQQCAAEwga4DBAAX
G4YDBAAXG8UDBAAXG80DBAAX5toDBAAtJr8DBAAtJzoDBAAtJ9cDBAAtJ+EDBABo
pZsDBABopa4DBABopbIDBABopcEDBABopf8DBABo/IUDBABo/KgDBABrpFcDBABr
pHkDBABrpIQDBABrpLwDBAFrpNIDBABrpZsDBABrpaQDBABrpboDBABrpccDBABr
pc0DBABrpd4DBABrpeQDBAFrpeoDBABrpfAwVAYDVR0gAQH/BEowSDBGBggrBgEF
BQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJj
ZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAaGeD3aEXNhH/Jx6e
/tkCuItkvrwEkJosEyyodXiaqUf2N9xmaBS9s1G4YY5H5GXXatF8v7Nzkbs1RXXc
ZvibCHeKciuznO6ul+EJ8VFZ1kSGYWGNtxhXd47Gyy7/kEpbw1hP6/j6cBTSqepR
N3l39cNMfLSfuShGK/vY/eNAs+wUaKjXRdItm2J9NT+ZqFe8MTJUT8kzjYsrIvFp
81E1D2z52j3MvJBWaYCMaW/ytoFhkXM4BLHP028ad2wYorFULJ1yCS55zHYFKBzf
brjBalNregHR0MWxpZOPfHclcLHU+Vnj+nidod1EVhilQlE5wvd5ac7mvXeuReOW
IgaEzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:28 2024 by rpki-client on console-fra.rpki-client.org