Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/b07419da-0b1a-3a6e-8877-ba922c2a6d51.roa
File: b07419da-0b1a-3a6e-8877-ba922c2a6d51.roa (raw, json)
Hash identifier: T60mczbAczf1M3D4wpWMej/pA5YjBxaL/4tBwWCtGaw=
Subject key identifier: 47:17:35:A7:84:CF:78:58:67:D6:90:64:AF:59:56:F2:CB:C9:D0:35
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328583729B29DB857C197F9F1ED4C80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/b07419da-0b1a-3a6e-8877-ba922c2a6d51.roa
Signing time: Tue 01 Sep 2020 04:00:00 +0000
ROA not before: Tue 01 Sep 2020 04:00:00 +0000
ROA not after: Thu 15 Sep 2022 04:00:00 +0000
asID: 212768
IP address blocks: 104.253.96.0/24 maxlen: 24
173.245.84.0/24 maxlen: 24
209.73.136.0/24 maxlen: 24
104.165.109.0/24 maxlen: 24
104.165.107.0/24 maxlen: 24
104.165.83.0/24 maxlen: 24
104.165.78.0/24 maxlen: 24
104.165.29.0/24 maxlen: 24
23.230.67.0/24 maxlen: 24
23.27.248.0/24 maxlen: 24
23.27.127.0/24 maxlen: 24
23.27.14.0/24 maxlen: 24
23.27.23.0/24 maxlen: 24
23.27.243.0/24 maxlen: 24
23.230.29.0/24 maxlen: 24
50.117.45.0/24 maxlen: 24
50.117.96.0/24 maxlen: 24
50.118.248.0/24 maxlen: 24
50.118.255.0/24 maxlen: 24
104.164.180.0/24 maxlen: 24
104.165.73.0/24 maxlen: 24
104.165.81.0/24 maxlen: 24
104.165.91.0/24 maxlen: 24
104.165.114.0/24 maxlen: 24
104.165.120.0/24 maxlen: 24
104.165.134.0/24 maxlen: 24
104.253.11.0/24 maxlen: 24
104.253.12.0/24 maxlen: 24
104.253.29.0/24 maxlen: 24
104.253.57.0/24 maxlen: 24
104.253.63.0/24 maxlen: 24
104.253.106.0/24 maxlen: 24
104.253.132.0/24 maxlen: 24
104.253.139.0/24 maxlen: 24
104.253.141.0/24 maxlen: 24
104.253.143.0/24 maxlen: 24
104.253.144.0/24 maxlen: 24
104.253.146.0/24 maxlen: 24
104.253.150.0/24 maxlen: 24
107.164.85.0/24 maxlen: 24
107.164.199.0/24 maxlen: 24
107.164.145.0/24 maxlen: 24
107.164.200.0/24 maxlen: 24
107.165.138.0/24 maxlen: 24
107.165.161.0/24 maxlen: 24
216.172.138.0/24 maxlen: 24
216.172.135.0/24 maxlen: 24
209.73.132.0/24 maxlen: 24
209.73.137.0/24 maxlen: 24
205.164.9.0/24 maxlen: 24
205.164.32.0/24 maxlen: 24
205.164.59.0/24 maxlen: 24
136.0.47.0/24 maxlen: 24
136.0.67.0/24 maxlen: 24
136.0.99.0/24 maxlen: 24
136.0.226.0/24 maxlen: 24
142.111.219.0/24 maxlen: 24
142.252.51.0/24 maxlen: 24
142.252.52.0/24 maxlen: 24
166.88.149.0/24 maxlen: 24
172.120.14.0/24 maxlen: 24
172.252.215.0/24 maxlen: 24
107.186.35.0/24 maxlen: 24
107.165.194.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:37:29:b2:9d:b8:57:c1:97:f9:f1:ed:4c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Sep 1 04:00:00 2020 GMT
Not After : Sep 15 04:00:00 2022 GMT
Subject: CN=0f448407-47c8-4b84-a798-92bee4b40dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:72:ca:8f:79:2a:fb:f3:f5:63:de:1f:9b:
12:5f:c9:39:8e:32:25:56:91:95:33:45:dc:5b:32:
e8:b7:ff:29:05:05:66:85:a0:b5:5d:1c:53:e8:e5:
34:2e:13:1a:b8:cb:89:9a:3e:65:60:9a:3c:7c:95:
10:32:70:83:e8:cc:e7:20:87:8c:c1:48:21:0c:30:
69:0d:cb:2e:8c:5f:33:e4:f9:63:09:b3:1d:eb:4b:
b0:a9:1c:67:3b:4c:16:d3:67:0e:fd:6d:49:67:fc:
78:97:45:91:bd:14:43:07:57:97:a7:d4:7d:49:83:
4d:bc:49:3d:59:c7:13:7e:73:95:11:a5:5c:51:c0:
48:54:e9:6d:a5:a2:f5:f2:f3:e4:b5:50:1c:80:33:
1a:3f:9e:39:dd:63:6a:a7:6d:f5:ba:76:f7:af:73:
fe:a8:d0:59:f9:e1:34:d9:ba:d6:55:9a:58:19:7b:
dc:0b:90:84:2f:df:bd:39:03:28:2b:0c:31:03:3a:
d2:3a:2c:99:6b:c4:9a:7a:f1:b9:f7:55:b0:99:c2:
5e:d8:4b:c5:fb:3c:89:50:58:b7:bd:43:a7:1d:b2:
7f:b9:19:cf:97:14:f3:d8:f0:d0:1e:a2:c7:14:27:
f0:28:40:74:fd:1a:a2:41:f4:e9:f8:93:dd:b7:96:
f3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:17:35:A7:84:CF:78:58:67:D6:90:64:AF:59:56:F2:CB:C9:D0:35
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/b07419da-0b1a-3a6e-8877-ba922c2a6d51.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.14.0/24
23.27.23.0/24
23.27.127.0/24
23.27.243.0/24
23.27.248.0/24
23.230.29.0/24
23.230.67.0/24
50.117.45.0/24
50.117.96.0/24
50.118.248.0/24
50.118.255.0/24
104.164.180.0/24
104.165.29.0/24
104.165.73.0/24
104.165.78.0/24
104.165.81.0/24
104.165.83.0/24
104.165.91.0/24
104.165.107.0/24
104.165.109.0/24
104.165.114.0/24
104.165.120.0/24
104.165.134.0/24
104.253.11.0-104.253.12.255
104.253.29.0/24
104.253.57.0/24
104.253.63.0/24
104.253.96.0/24
104.253.106.0/24
104.253.132.0/24
104.253.139.0/24
104.253.141.0/24
104.253.143.0-104.253.144.255
104.253.146.0/24
104.253.150.0/24
107.164.85.0/24
107.164.145.0/24
107.164.199.0-107.164.200.255
107.165.138.0/24
107.165.161.0/24
107.165.194.0/24
107.186.35.0/24
136.0.47.0/24
136.0.67.0/24
136.0.99.0/24
136.0.226.0/24
142.111.219.0/24
142.252.51.0-142.252.52.255
166.88.149.0/24
172.120.14.0/24
172.252.215.0/24
173.245.84.0/24
205.164.9.0/24
205.164.32.0/24
205.164.59.0/24
209.73.132.0/24
209.73.136.0/23
216.172.135.0/24
216.172.138.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
40:e9:e2:af:88:a2:39:f1:92:e4:03:b6:47:6a:21:7a:19:fc:
96:8c:04:da:07:45:e2:61:ef:de:8f:82:1b:53:1a:68:b3:6a:
79:ea:04:06:e9:3b:fc:3a:41:82:cf:b2:a4:4b:39:e4:e1:85:
0a:d2:cc:35:82:21:a0:47:33:6d:2c:13:f7:97:19:19:99:17:
ea:2a:0a:c8:8e:8e:a4:16:97:19:2e:38:cf:2a:f4:ed:ae:d6:
39:0e:dd:64:7c:38:21:d0:a3:55:bc:b5:b0:59:73:45:f4:10:
65:a9:38:73:81:de:02:3f:f5:c7:63:e0:b1:33:72:ff:f5:7c:
8d:79:db:11:68:d8:b0:4b:e2:15:f6:01:b1:22:1b:0f:2c:fe:
b9:75:d1:72:7c:3b:74:a5:ea:a1:8d:2b:f9:f2:db:67:b0:4b:
a5:a7:10:c6:53:d6:cb:ee:f1:87:c1:fb:23:98:f7:ed:f1:c3:
65:4f:13:34:30:54:2b:ce:19:e5:4f:c6:e8:64:a6:43:f3:d6:
ba:d8:65:3b:21:9c:bb:8e:06:af:42:64:61:d1:7c:c9:c4:e9:
55:f9:4b:23:0b:96:04:75:61:a6:93:ea:0c:45:b0:b0:56:31:
86:55:5e:7d:0c:e7:3f:b5:0f:ce:87:98:ed:b0:d2:a0:a5:83:
ba:f5:f5:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:10 2024 by rpki-client on console-ams.rpki-client.org