Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bc0e2a15-6850-3552-91a6-692fd87ff9c2.roa
File: bc0e2a15-6850-3552-91a6-692fd87ff9c2.roa (raw, json)
Hash identifier: IUvvuG2trWmWQ5c2uBH4l7aVEBXvXcw09cLLRS/EbSQ=
Subject key identifier: 4F:4D:F3:93:74:AA:FE:FC:EF:9B:6B:31:11:09:1D:1A:DE:3F:AF:73
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844F5CA9E51429BA16060E68C40
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bc0e2a15-6850-3552-91a6-692fd87ff9c2.roa
Signing time: Wed 21 Feb 2024 02:00:25 +0000
ROA not before: Wed 21 Feb 2024 02:00:25 +0000
ROA not after: Tue 21 May 2024 01:00:25 +0000
asID: 5650
IP address blocks: 104.253.146.0/24 maxlen: 24
104.253.150.0/24 maxlen: 24
107.164.85.0/24 maxlen: 24
107.164.145.0/24 maxlen: 24
104.253.144.0/24 maxlen: 24
104.253.139.0/24 maxlen: 24
23.27.243.0/24 maxlen: 24
50.117.96.0/24 maxlen: 24
23.27.14.0/24 maxlen: 24
23.27.23.0/24 maxlen: 24
104.164.180.0/24 maxlen: 24
23.230.67.0/24 maxlen: 24
50.118.255.0/24 maxlen: 24
23.27.248.0/24 maxlen: 24
23.230.29.0/24 maxlen: 24
23.27.127.0/24 maxlen: 24
104.253.106.0/24 maxlen: 24
104.253.132.0/24 maxlen: 24
104.165.120.0/24 maxlen: 24
104.165.134.0/24 maxlen: 24
104.165.29.0/24 maxlen: 24
172.252.139.0/24 maxlen: 24
172.252.137.0/24 maxlen: 24
172.252.135.0/24 maxlen: 24
172.252.55.0/24 maxlen: 24
172.252.168.0/24 maxlen: 24
172.252.54.0/24 maxlen: 24
209.73.136.0/24 maxlen: 24
209.73.132.0/24 maxlen: 24
205.164.59.0/24 maxlen: 24
205.164.32.0/24 maxlen: 24
216.172.138.0/24 maxlen: 24
216.172.135.0/24 maxlen: 24
209.73.137.0/24 maxlen: 24
205.164.9.0/24 maxlen: 24
173.245.84.0/24 maxlen: 24
172.252.215.0/24 maxlen: 24
136.0.47.0/24 maxlen: 24
136.0.67.0/24 maxlen: 24
107.186.35.0/24 maxlen: 24
142.252.52.0/24 maxlen: 24
142.252.51.0/24 maxlen: 24
136.0.226.0/24 maxlen: 24
136.0.99.0/24 maxlen: 24
107.164.200.0/24 maxlen: 24
172.252.28.0/24 maxlen: 24
107.165.138.0/24 maxlen: 24
172.252.25.0/24 maxlen: 24
107.165.161.0/24 maxlen: 24
172.120.14.0/24 maxlen: 24
107.165.194.0/24 maxlen: 24
166.88.149.0/24 maxlen: 24
107.164.199.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:f5:ca:9e:51:42:9b:a1:60:60:e6:8c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 21 02:00:25 2024 GMT
Not After : May 21 01:00:25 2024 GMT
Subject: CN=c50b304b-f634-40ff-b9c1-1042730f6e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:83:48:22:b8:bd:bd:fa:fe:3b:1d:f5:56:
65:43:01:3b:d4:c5:bc:fa:fc:0f:f6:be:e4:4a:b4:
9a:72:45:a8:cf:38:65:93:39:3b:05:53:4e:cd:13:
aa:1d:55:d0:5a:62:6e:35:a0:cd:62:8c:cf:cd:38:
98:f5:d3:0b:44:03:cb:1d:7c:1a:33:a8:d2:08:fb:
cf:6a:57:ef:2a:d1:6c:24:ec:6e:8d:fa:42:76:a0:
73:7c:ff:72:5a:3f:3f:d3:6c:a3:44:54:d5:59:05:
b4:bd:14:d7:77:e1:13:b1:f5:e5:49:35:e3:84:ca:
a0:de:ce:77:d3:4a:ed:1c:bf:4c:88:77:71:53:77:
34:5a:f5:16:8a:15:c6:9c:86:64:32:05:13:95:c0:
7b:4f:c6:49:a5:79:a2:ed:3b:98:8b:91:e1:05:ef:
53:1c:46:cd:3c:c8:da:42:76:9b:23:83:5c:94:a4:
19:1f:f0:32:f1:8f:13:26:30:e7:82:81:e7:54:f1:
16:86:38:ba:a1:75:f8:17:cf:e4:87:51:81:ca:a2:
39:05:76:57:ad:70:36:f0:52:4a:b1:f2:25:00:5c:
11:c4:bf:d2:ab:50:0c:6d:b9:ae:72:46:9e:9a:4e:
3a:af:e6:79:37:a3:3b:a8:d4:9c:52:df:f5:21:b6:
bc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4D:F3:93:74:AA:FE:FC:EF:9B:6B:31:11:09:1D:1A:DE:3F:AF:73
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bc0e2a15-6850-3552-91a6-692fd87ff9c2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.14.0/24
23.27.23.0/24
23.27.127.0/24
23.27.243.0/24
23.27.248.0/24
23.230.29.0/24
23.230.67.0/24
50.117.96.0/24
50.118.255.0/24
104.164.180.0/24
104.165.29.0/24
104.165.120.0/24
104.165.134.0/24
104.253.106.0/24
104.253.132.0/24
104.253.139.0/24
104.253.144.0/24
104.253.146.0/24
104.253.150.0/24
107.164.85.0/24
107.164.145.0/24
107.164.199.0-107.164.200.255
107.165.138.0/24
107.165.161.0/24
107.165.194.0/24
107.186.35.0/24
136.0.47.0/24
136.0.67.0/24
136.0.99.0/24
136.0.226.0/24
142.252.51.0-142.252.52.255
166.88.149.0/24
172.120.14.0/24
172.252.25.0/24
172.252.28.0/24
172.252.54.0/23
172.252.135.0/24
172.252.137.0/24
172.252.139.0/24
172.252.168.0/24
172.252.215.0/24
173.245.84.0/24
205.164.9.0/24
205.164.32.0/24
205.164.59.0/24
209.73.132.0/24
209.73.136.0/23
216.172.135.0/24
216.172.138.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
68:f5:8d:df:48:9f:00:ed:72:9e:35:45:15:be:cc:b9:dd:cf:
1b:ce:87:7a:e1:c3:7c:66:fc:39:f9:9b:73:77:1b:43:89:61:
0e:f1:88:8d:ef:bf:ad:33:6b:63:d9:17:34:cb:0d:4b:64:25:
a1:ad:dc:3d:8b:8e:d4:ea:21:d8:6e:86:77:04:83:fe:77:18:
ea:fe:03:eb:74:f8:b6:41:50:d3:35:79:10:0b:79:98:e4:ca:
7b:a3:94:30:c2:fc:6b:d8:96:e4:1b:eb:97:99:00:96:c8:32:
99:8c:14:c6:33:4d:fa:e9:87:9a:77:c5:72:e7:65:ed:b9:5b:
39:cc:6b:c2:1b:77:3c:f2:17:1e:20:6f:e8:13:ac:a6:06:dc:
42:20:95:24:ca:31:42:77:cb:33:16:fc:c2:29:f5:ae:fa:52:
f7:45:d3:52:74:e3:e4:a9:9e:b8:e7:1d:e6:e7:c4:ad:c5:3a:
de:d8:ff:2e:57:c3:2d:18:ee:dc:8e:d5:33:a7:91:e9:4f:e3:
67:51:d4:0c:a5:d3:9a:ff:9f:26:99:f2:aa:4e:67:3f:8d:2d:
6c:73:69:9b:43:23:42:1c:35:43:11:f6:5d:58:52:1d:47:cf:
af:31:62:0f:61:81:93:3e:74:f8:ff:04:13:06:9b:99:75:1b:
6d:4f:37:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 19:21:38 2024 by rpki-client on console-fra.rpki-client.org