Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a17ba85f-cfdf-370c-b836-3c83cad068f9.roa
File: a17ba85f-cfdf-370c-b836-3c83cad068f9.roa (raw, json)
Hash identifier: rLqgM7FZ3yTZBvme3EoGrC4cye8fhiBrVOuRIcHH/Tc=
Subject key identifier: 9E:74:3A:97:EF:3B:2B:3D:1D:65:02:18:EC:2E:6B:F4:C1:6D:28:06
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844D7151AB2E3891707E7C9FE00
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a17ba85f-cfdf-370c-b836-3c83cad068f9.roa
Signing time: Sat 10 Feb 2024 02:00:26 +0000
ROA not before: Sat 10 Feb 2024 02:00:26 +0000
ROA not after: Fri 10 May 2024 01:00:26 +0000
asID: 174
IP address blocks: 136.0.77.0/24 maxlen: 24
45.38.24.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:d7:15:1a:b2:e3:89:17:07:e7:c9:fe:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 10 02:00:26 2024 GMT
Not After : May 10 01:00:26 2024 GMT
Subject: CN=9eb1f9f7-c3d6-4f47-9524-779bb487044c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b4:3d:dd:b5:c1:60:8c:64:8e:0b:84:bf:b4:
15:f2:80:7b:c2:1d:d5:13:08:c2:76:2b:fc:f3:a5:
e1:21:9c:f8:23:9b:d2:17:3a:c3:b4:f3:eb:c6:9e:
ff:af:36:de:f5:21:3c:68:5e:4e:69:6c:d7:70:b6:
4e:df:dc:af:6e:e4:e1:4f:47:d7:aa:62:e9:d2:4a:
b1:e7:8c:a9:b8:37:5d:77:e7:90:6c:9f:9a:a2:9f:
8a:ae:f2:c4:b9:ce:d6:78:fb:ab:49:75:e9:e4:64:
73:a5:f9:7f:42:35:86:de:92:60:ca:1a:ff:10:cd:
39:9a:80:8c:83:3f:5d:7b:d2:e1:4b:d6:66:c6:33:
a5:a7:cf:9a:dd:04:42:0b:1c:56:0b:38:e3:b8:35:
14:04:fa:a1:d5:f4:ac:eb:01:4a:96:48:c3:6c:93:
d2:9a:90:da:6c:d0:d7:67:f5:91:47:52:82:f5:15:
71:4e:95:7e:93:6d:2f:d3:56:2c:f5:75:ac:d3:2e:
f2:81:29:de:01:37:49:67:32:6a:85:7f:5c:df:b0:
40:d1:5b:41:56:a9:58:bc:9f:e9:33:8a:15:52:20:
9c:4b:41:17:a3:79:25:8d:5d:07:80:4a:59:cb:5c:
f7:c7:ee:5b:9c:de:cd:e8:30:56:dc:2c:42:d0:98:
54:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:74:3A:97:EF:3B:2B:3D:1D:65:02:18:EC:2E:6B:F4:C1:6D:28:06
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/a17ba85f-cfdf-370c-b836-3c83cad068f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
45.38.24.0/24
136.0.77.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1b:f1:3c:58:f6:ae:f4:ae:40:09:c2:19:ff:bb:de:08:28:b1:
64:b9:7b:b1:ad:34:d1:97:b9:f5:13:64:76:f1:a9:57:17:a6:
a1:67:07:37:f8:3a:5c:e3:65:fd:44:77:bf:45:b6:d9:6f:9f:
28:b3:eb:33:2a:4a:18:f4:4a:bc:77:9e:89:8a:b4:32:c6:c4:
13:c2:4c:60:39:c9:ad:8c:9a:e1:ca:42:4f:c1:90:19:f3:23:
d6:ec:42:7a:27:51:07:a4:4a:d3:bf:ba:34:7f:69:6d:14:db:
15:e8:28:d8:67:d9:e2:bd:72:95:27:2d:e0:c7:d3:cd:d8:90:
28:52:52:e5:90:b5:25:fb:6d:87:57:12:72:3c:c0:18:74:34:
b6:fb:42:a8:99:39:0d:07:91:be:28:42:3d:1e:d2:4d:56:ad:
1b:c7:77:5f:d6:a9:9c:42:bc:b1:9a:84:5b:ee:59:94:5a:b3:
d1:aa:cf:0c:65:8d:62:2c:3b:ec:8d:3f:bf:f3:f6:29:46:57:
87:de:62:fb:6b:29:21:99:41:8f:4e:1b:7f:36:18:cd:89:28:
74:67:88:28:4b:22:2f:3a:50:34:56:81:6c:12:58:ab:74:ee:
a0:75:ee:9f:54:60:28:8c:0e:63:d8:b5:b5:e2:e7:ab:31:7a:
f7:05:f2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:28 2024 by rpki-client on console-fra.rpki-client.org