Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bed8e614-ca57-325f-bc86-2ab61dfa5529.roa
File: bed8e614-ca57-325f-bc86-2ab61dfa5529.roa (raw, json)
Hash identifier: oodxo2iuQlC9s8CqJ5N6lirsxFME7QnjniQO62boKxo=
Subject key identifier: 3F:0C:CC:B3:9A:E4:DA:F7:6A:4A:4E:ED:08:CE:6D:BE:6D:38:84:7F
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285837299C60295F6E46D63F1C3F80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bed8e614-ca57-325f-bc86-2ab61dfa5529.roa
Signing time: Wed 02 Sep 2020 04:00:00 +0000
ROA not before: Wed 02 Sep 2020 04:00:00 +0000
ROA not after: Thu 15 Sep 2022 04:00:00 +0000
asID: 398373
IP address blocks: 104.253.96.0/24 maxlen: 24
173.245.84.0/24 maxlen: 24
209.73.136.0/24 maxlen: 24
104.165.109.0/24 maxlen: 24
104.165.107.0/24 maxlen: 24
104.165.83.0/24 maxlen: 24
104.165.78.0/24 maxlen: 24
104.165.29.0/24 maxlen: 24
23.230.67.0/24 maxlen: 24
23.27.248.0/24 maxlen: 24
23.27.127.0/24 maxlen: 24
23.27.14.0/24 maxlen: 24
23.27.23.0/24 maxlen: 24
23.27.243.0/24 maxlen: 24
23.230.29.0/24 maxlen: 24
50.117.45.0/24 maxlen: 24
50.117.96.0/24 maxlen: 24
50.118.248.0/24 maxlen: 24
50.118.255.0/24 maxlen: 24
104.164.180.0/24 maxlen: 24
104.165.73.0/24 maxlen: 24
104.165.81.0/24 maxlen: 24
104.165.91.0/24 maxlen: 24
104.165.114.0/24 maxlen: 24
104.165.120.0/24 maxlen: 24
104.165.134.0/24 maxlen: 24
104.253.11.0/24 maxlen: 24
104.253.12.0/24 maxlen: 24
104.253.29.0/24 maxlen: 24
104.253.57.0/24 maxlen: 24
104.253.63.0/24 maxlen: 24
104.253.106.0/24 maxlen: 24
104.253.132.0/24 maxlen: 24
104.253.139.0/24 maxlen: 24
104.253.141.0/24 maxlen: 24
104.253.143.0/24 maxlen: 24
104.253.144.0/24 maxlen: 24
104.253.146.0/24 maxlen: 24
104.253.150.0/24 maxlen: 24
107.164.85.0/24 maxlen: 24
107.164.199.0/24 maxlen: 24
107.164.145.0/24 maxlen: 24
107.164.200.0/24 maxlen: 24
107.165.138.0/24 maxlen: 24
107.165.161.0/24 maxlen: 24
216.172.138.0/24 maxlen: 24
216.172.135.0/24 maxlen: 24
209.73.132.0/24 maxlen: 24
209.73.137.0/24 maxlen: 24
205.164.9.0/24 maxlen: 24
205.164.32.0/24 maxlen: 24
205.164.59.0/24 maxlen: 24
136.0.47.0/24 maxlen: 24
136.0.67.0/24 maxlen: 24
136.0.99.0/24 maxlen: 24
136.0.226.0/24 maxlen: 24
142.111.219.0/24 maxlen: 24
142.252.51.0/24 maxlen: 24
142.252.52.0/24 maxlen: 24
166.88.149.0/24 maxlen: 24
172.120.14.0/24 maxlen: 24
172.252.215.0/24 maxlen: 24
107.186.35.0/24 maxlen: 24
107.165.194.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:37:29:9c:60:29:5f:6e:46:d6:3f:1c:3f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Sep 2 04:00:00 2020 GMT
Not After : Sep 15 04:00:00 2022 GMT
Subject: CN=5cc78dc8-666b-4fac-944c-143e9bd3b694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:26:84:e6:37:1d:c0:0d:bf:1e:c5:8a:c6:14:
e6:fc:38:47:eb:13:c9:de:5a:92:a9:e2:a0:80:51:
27:c0:e5:56:72:44:f9:ea:8f:ca:5a:4b:55:16:6f:
03:35:49:a1:31:91:a7:ee:44:df:eb:6b:b8:fa:d3:
5c:f6:25:d9:63:e6:2a:a6:50:83:9a:14:4d:c7:e5:
28:36:05:ef:fc:e4:ce:f9:40:67:ab:bd:20:66:88:
d4:10:18:80:8c:d6:b6:90:e4:86:9b:2f:8f:0b:a3:
7a:52:02:73:2f:4b:dc:72:ae:40:3a:4b:dd:17:4c:
e0:6a:5c:b5:f8:ff:a6:fa:0a:c8:6f:82:63:e3:1a:
31:f7:fe:41:6a:28:cb:35:8e:69:56:4d:7b:6f:08:
7b:6e:4a:fd:41:38:b7:76:07:ed:b3:ed:20:f8:67:
29:22:0a:b7:26:18:90:f6:8b:c1:41:b3:3f:ea:7f:
bc:a3:44:e2:31:0d:fe:4e:e1:76:73:51:4f:44:e7:
0b:69:ba:e4:a4:5d:fa:98:b6:bb:d2:24:ba:33:28:
8e:7b:cd:4e:b0:33:be:d1:37:28:93:95:c6:57:28:
74:29:ae:01:d2:d9:b7:0a:70:19:e4:9c:f3:4e:ed:
fe:0f:df:8e:15:4d:6e:92:bc:43:c4:78:91:ff:6e:
27:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0C:CC:B3:9A:E4:DA:F7:6A:4A:4E:ED:08:CE:6D:BE:6D:38:84:7F
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/bed8e614-ca57-325f-bc86-2ab61dfa5529.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.14.0/24
23.27.23.0/24
23.27.127.0/24
23.27.243.0/24
23.27.248.0/24
23.230.29.0/24
23.230.67.0/24
50.117.45.0/24
50.117.96.0/24
50.118.248.0/24
50.118.255.0/24
104.164.180.0/24
104.165.29.0/24
104.165.73.0/24
104.165.78.0/24
104.165.81.0/24
104.165.83.0/24
104.165.91.0/24
104.165.107.0/24
104.165.109.0/24
104.165.114.0/24
104.165.120.0/24
104.165.134.0/24
104.253.11.0-104.253.12.255
104.253.29.0/24
104.253.57.0/24
104.253.63.0/24
104.253.96.0/24
104.253.106.0/24
104.253.132.0/24
104.253.139.0/24
104.253.141.0/24
104.253.143.0-104.253.144.255
104.253.146.0/24
104.253.150.0/24
107.164.85.0/24
107.164.145.0/24
107.164.199.0-107.164.200.255
107.165.138.0/24
107.165.161.0/24
107.165.194.0/24
107.186.35.0/24
136.0.47.0/24
136.0.67.0/24
136.0.99.0/24
136.0.226.0/24
142.111.219.0/24
142.252.51.0-142.252.52.255
166.88.149.0/24
172.120.14.0/24
172.252.215.0/24
173.245.84.0/24
205.164.9.0/24
205.164.32.0/24
205.164.59.0/24
209.73.132.0/24
209.73.136.0/23
216.172.135.0/24
216.172.138.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
63:e4:97:7a:bc:99:41:3f:ea:38:c2:09:a2:f6:42:61:52:af:
e5:b9:cf:ed:9e:a4:58:78:0b:7a:1c:fd:8d:5a:ba:f2:33:79:
a3:9f:52:d8:43:a7:51:cc:69:fa:a0:76:54:bb:1b:eb:90:4f:
62:10:c1:81:5c:18:6c:a4:cc:f1:2b:2a:59:40:ea:52:ff:d4:
c4:0a:27:f3:22:fa:b6:9a:e7:5e:a0:81:de:7f:fb:98:81:d8:
f6:66:cd:af:22:62:b0:da:de:a5:39:86:57:d5:7a:a2:4b:0e:
bb:74:a4:9f:f1:76:93:7c:d5:42:34:8d:4e:34:c3:ef:2f:84:
aa:26:c9:a0:64:f5:61:27:c1:1a:a1:81:fb:f4:8e:d8:63:78:
81:11:e0:9f:7f:eb:19:bd:b5:af:f8:1a:20:9d:0b:4f:eb:41:
43:03:02:ab:bf:5d:ae:45:6d:26:76:bd:90:e0:b3:ce:4d:10:
a4:ec:c9:53:be:e1:f4:72:8a:c2:e8:5b:ff:19:f4:f2:47:63:
1d:ed:63:a1:36:66:ed:6c:4b:47:97:24:b8:73:c2:9e:97:b7:
29:11:32:2a:1a:f1:75:ef:86:1d:7f:03:cb:5a:54:8f:88:6c:
50:bf:91:e2:de:86:23:cd:37:f4:c7:86:b8:74:68:60:b0:0c:
8e:30:0d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:11 2024 by rpki-client on console-ams.rpki-client.org