Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d838f259-2714-3cdd-9a50-fc1c16349360.roa
File: d838f259-2714-3cdd-9a50-fc1c16349360.roa (raw, json)
Hash identifier: 6N7ZXAnkMbpWKs4Ra5zC23akJmH7+mGFbun7xuI2fOk=
Subject key identifier: 01:D0:AD:35:21:BE:18:E3:19:BA:2D:85:C8:6F:47:26:80:5A:6D:3B
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844CEB517D5CC209A2B484C35E0
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d838f259-2714-3cdd-9a50-fc1c16349360.roa
Signing time: Wed 07 Feb 2024 02:00:24 +0000
ROA not before: Wed 07 Feb 2024 02:00:24 +0000
ROA not after: Tue 07 May 2024 01:00:24 +0000
asID: 62240
IP address blocks: 142.252.99.0/24 maxlen: 24
142.252.104.0/24 maxlen: 24
142.252.106.0/24 maxlen: 24
142.252.107.0/24 maxlen: 24
142.252.110.0/24 maxlen: 24
142.252.120.0/24 maxlen: 24
142.252.126.0/24 maxlen: 24
142.252.234.0/24 maxlen: 24
142.252.236.0/24 maxlen: 24
142.111.213.0/24 maxlen: 24
142.111.231.0/24 maxlen: 24
107.187.88.0/24 maxlen: 24
107.187.91.0/24 maxlen: 24
107.187.193.0/24 maxlen: 24
107.187.196.0/24 maxlen: 24
107.187.210.0/24 maxlen: 24
107.187.213.0/24 maxlen: 24
172.120.42.0/24 maxlen: 24
172.120.45.0/24 maxlen: 24
172.120.48.0/24 maxlen: 24
172.120.50.0/24 maxlen: 24
172.120.53.0/24 maxlen: 24
172.121.241.0/24 maxlen: 24
192.177.18.0/24 maxlen: 24
192.177.45.0/24 maxlen: 24
142.252.242.0/24 maxlen: 24
142.111.253.0/24 maxlen: 24
142.252.81.0/24 maxlen: 24
142.252.82.0/24 maxlen: 24
142.252.83.0/24 maxlen: 24
142.252.84.0/24 maxlen: 24
142.252.86.0/24 maxlen: 24
107.187.7.0/24 maxlen: 24
107.187.9.0/24 maxlen: 24
107.187.15.0/24 maxlen: 24
107.187.21.0/24 maxlen: 24
107.187.26.0/24 maxlen: 24
107.187.31.0/24 maxlen: 24
107.187.67.0/24 maxlen: 24
142.252.244.0/24 maxlen: 24
142.252.246.0/24 maxlen: 24
166.88.9.0/24 maxlen: 24
166.88.156.0/24 maxlen: 24
166.88.158.0/24 maxlen: 24
172.120.41.0/24 maxlen: 24
107.187.215.0/24 maxlen: 24
107.187.157.0/24 maxlen: 24
107.187.216.0/24 maxlen: 24
107.187.218.0/24 maxlen: 24
107.187.227.0/24 maxlen: 24
107.187.1.0/24 maxlen: 24
107.187.233.0/24 maxlen: 24
104.165.128.0/24 maxlen: 24
107.187.236.0/24 maxlen: 24
107.187.28.0/24 maxlen: 24
107.187.242.0/24 maxlen: 24
107.187.13.0/24 maxlen: 24
142.111.121.0/24 maxlen: 24
107.187.75.0/24 maxlen: 24
107.187.77.0/24 maxlen: 24
107.187.81.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:ce:b5:17:d5:cc:20:9a:2b:48:4c:35:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 7 02:00:24 2024 GMT
Not After : May 7 01:00:24 2024 GMT
Subject: CN=1e0b55d1-8918-44d7-817f-6f583d75938c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:55:52:6d:27:3e:06:b3:e0:28:96:c7:dd:
ff:61:d2:52:67:36:3c:0d:7e:ab:a3:97:0c:ee:58:
00:34:de:0f:79:8a:72:24:20:d7:2d:61:5c:27:c6:
f7:05:a6:ab:30:28:72:ef:57:f6:e4:c6:85:b7:ff:
0e:c1:fb:e7:71:d2:77:1a:c9:ec:77:5a:ce:d8:0e:
f6:e7:3b:d2:1e:13:d7:77:5f:c4:24:84:13:d8:7e:
74:6d:c1:10:f4:38:70:04:28:e5:75:2d:04:e2:0b:
15:58:82:12:7e:13:c2:ee:fd:b6:d7:94:c9:8d:7a:
27:20:47:c6:e5:ba:03:e0:0a:a4:01:8c:c4:16:43:
44:a6:76:6b:ca:d5:a1:de:81:8d:07:f9:d0:74:a5:
bb:52:4d:4d:00:8e:42:78:f7:ba:d9:d7:55:a4:f4:
6f:bb:03:76:88:d1:12:59:b6:d4:ec:4d:12:87:b5:
81:4e:ed:6d:3a:84:e9:c2:fd:79:4d:e4:c2:2b:32:
ec:69:bc:16:5c:c1:b1:71:81:0f:75:f6:06:0b:3c:
ae:eb:e8:fb:0d:fc:e5:40:a7:f0:94:7b:46:ef:c0:
2e:6c:a8:f6:b2:c5:2c:12:3b:ee:38:79:f3:ab:d7:
5e:e5:2d:9d:ed:ed:bf:64:15:08:bb:8f:4b:1a:1e:
89:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D0:AD:35:21:BE:18:E3:19:BA:2D:85:C8:6F:47:26:80:5A:6D:3B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/d838f259-2714-3cdd-9a50-fc1c16349360.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
104.165.128.0/24
107.187.1.0/24
107.187.7.0/24
107.187.9.0/24
107.187.13.0/24
107.187.15.0/24
107.187.21.0/24
107.187.26.0/24
107.187.28.0/24
107.187.31.0/24
107.187.67.0/24
107.187.75.0/24
107.187.77.0/24
107.187.81.0/24
107.187.88.0/24
107.187.91.0/24
107.187.157.0/24
107.187.193.0/24
107.187.196.0/24
107.187.210.0/24
107.187.213.0/24
107.187.215.0-107.187.216.255
107.187.218.0/24
107.187.227.0/24
107.187.233.0/24
107.187.236.0/24
107.187.242.0/24
142.111.121.0/24
142.111.213.0/24
142.111.231.0/24
142.111.253.0/24
142.252.81.0-142.252.84.255
142.252.86.0/24
142.252.99.0/24
142.252.104.0/24
142.252.106.0/23
142.252.110.0/24
142.252.120.0/24
142.252.126.0/24
142.252.234.0/24
142.252.236.0/24
142.252.242.0/24
142.252.244.0/24
142.252.246.0/24
166.88.9.0/24
166.88.156.0/24
166.88.158.0/24
172.120.41.0-172.120.42.255
172.120.45.0/24
172.120.48.0/24
172.120.50.0/24
172.120.53.0/24
172.121.241.0/24
192.177.18.0/24
192.177.45.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
6f:1c:bc:62:1b:63:ad:16:73:ec:13:a6:25:72:a5:d3:31:83:
11:aa:80:e0:df:1f:45:d7:03:74:9e:6c:95:ed:99:b8:95:09:
8f:53:5e:2f:95:ab:2f:26:1f:78:f9:3f:5f:72:bb:c3:7b:71:
6e:bc:59:9f:2d:36:8a:1c:84:95:6c:90:8e:b9:7e:eb:ef:2a:
ff:c8:bb:81:42:5b:75:20:32:1f:c8:c9:d6:2f:36:b8:33:a7:
13:7f:4d:e8:44:4c:4b:50:ad:2b:39:f3:d3:ef:2e:8b:13:02:
56:04:f7:38:21:92:8c:f4:c6:39:a3:db:e7:b7:26:62:31:ed:
2f:86:7a:79:f2:65:43:c8:b5:47:9b:b6:68:65:d9:5c:86:9a:
4d:7a:cf:a0:7f:c9:06:41:79:05:a9:49:f1:d2:6d:d5:4f:a0:
8d:1f:ee:62:d5:4c:66:12:c2:f7:3f:19:ea:33:ed:4d:58:99:
a6:4c:94:30:de:1e:9b:be:0a:6e:eb:f0:39:51:e6:4b:29:27:
35:87:7b:37:89:ab:6d:36:90:c7:71:be:07:7f:fb:31:25:ed:
88:ee:5b:73:e6:96:99:dc:ee:11:23:35:fb:9f:8f:ef:88:af:
50:98:3b:a1:29:b5:7a:04:62:31:44:af:71:c9:0b:ee:88:d7:
0a:67:36:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 19:21:38 2024 by rpki-client on console-fra.rpki-client.org