Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d79e005d-f7bd-3f3a-9a55-3eff98b4210f.roa
File: d79e005d-f7bd-3f3a-9a55-3eff98b4210f.roa (raw, json)
Hash identifier: t/GMheig3j6XwYC4gEXbj1eC48In7tE2f/sywJl5/b8=
Subject key identifier: AE:4B:3E:C8:3B:29:D6:3F:20:18:C6:37:E7:A8:76:25:2F:A7:92:6B
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844EA9FEA1C9BB062F671FADB00
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d79e005d-f7bd-3f3a-9a55-3eff98b4210f.roa
Signing time: Sat 17 Feb 2024 02:00:27 +0000
ROA not before: Sat 17 Feb 2024 02:00:27 +0000
ROA not after: Fri 17 May 2024 01:00:27 +0000
asID: 400899
IP address blocks: 23.27.1.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:ea:9f:ea:1c:9b:b0:62:f6:71:fa:db:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 17 02:00:27 2024 GMT
Not After : May 17 01:00:27 2024 GMT
Subject: CN=8509d0cf-0ff8-45fb-8423-965150aac87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ca:25:e4:78:8a:e8:13:b9:d2:b0:90:74:81:
9f:b7:eb:bc:c3:ee:bd:b5:a7:77:0e:0d:45:05:8c:
a9:49:09:34:87:3d:01:4a:7e:86:eb:bd:3c:5a:d2:
9c:05:c6:70:5a:f5:f2:ee:7c:4b:04:46:bf:d4:0c:
56:a1:bd:f6:64:b3:b0:8c:fd:35:a5:b4:5c:3a:5b:
2d:bf:13:0e:7e:b7:21:1c:e1:ea:48:5e:5c:30:57:
69:7a:6c:ff:07:84:33:45:2b:25:ed:15:99:fb:c6:
e1:7f:9a:50:25:aa:d6:dc:da:7d:4d:e5:b1:b0:dc:
66:67:a8:7d:8c:06:b5:99:d8:1a:d3:e6:6f:60:72:
d1:8d:13:46:89:b2:80:0b:aa:01:41:35:c5:d0:4d:
af:76:1a:57:34:16:7f:88:b0:c2:1d:db:87:a6:5e:
c0:60:16:95:93:02:9f:17:95:5b:e7:f3:00:42:e2:
a5:f2:aa:b7:b9:5f:d4:72:e1:4a:fa:69:1d:43:b7:
16:5b:bd:5b:bf:ef:49:13:b7:c3:49:1c:58:a3:5f:
0a:1f:88:db:ef:8c:5a:00:ef:42:5d:7c:04:67:78:
13:98:6f:db:1c:74:b3:34:81:93:e0:15:93:85:a8:
97:bf:cd:a3:58:ec:81:fd:6a:db:7c:42:d4:ff:14:
1d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:4B:3E:C8:3B:29:D6:3F:20:18:C6:37:E7:A8:76:25:2F:A7:92:6B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d79e005d-f7bd-3f3a-9a55-3eff98b4210f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.1.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
14:d1:84:8d:7b:00:55:7a:bf:a8:dd:ce:9e:a8:4f:f1:e2:0b:
b8:a7:02:f7:61:ed:12:0d:ce:d8:d4:02:77:80:cd:18:38:f4:
9e:05:e4:7a:7b:f5:c8:c5:17:15:ba:5a:64:b7:b0:95:eb:a7:
0e:af:54:57:44:a5:ca:1d:0d:9a:02:f6:1b:af:28:71:5f:0b:
5a:db:dc:02:6d:90:6e:82:d1:04:e6:59:f2:97:6b:5b:2c:1e:
63:1d:5f:fd:95:aa:ab:70:4c:6d:1e:a6:49:06:7b:96:ad:82:
1e:02:40:24:eb:b6:e0:70:dd:70:19:77:a9:40:18:8c:38:f4:
ed:fb:60:4b:1c:f5:46:af:d6:b8:05:da:9d:a3:dd:96:f2:2c:
fa:97:a9:c5:14:64:f8:07:42:f4:3b:2f:5f:1d:02:a1:eb:0a:
72:32:48:83:69:f0:34:88:ee:9e:71:3c:2d:75:b2:f5:ac:82:
01:83:7d:8c:c5:c2:ba:86:14:04:8b:42:2c:59:83:6c:bd:a8:
e0:39:c7:e7:16:ca:3e:b0:73:77:af:bd:db:35:4b:70:2d:bd:
bb:76:d0:27:3d:86:83:06:8f:7d:99:95:39:3b:2b:27:41:ca:
e5:cc:59:e6:87:f3:9e:7f:4a:f2:14:56:ce:ea:70:ab:5d:1c:
3e:d8:49:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 20:22:47 2024 by rpki-client on console-ams.rpki-client.org