Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/def332cc-820a-3e62-9159-1b0780b51071.roa
File: def332cc-820a-3e62-9159-1b0780b51071.roa (raw, json)
Hash identifier: jC9i9+1ELHDKu8UGVa0QLJDbqdSDjJbM5cTQh0FIAzk=
Subject key identifier: FE:62:57:DB:06:07:16:1A:1D:BE:9D:71:43:1D:1F:F2:3F:A6:E2:72
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285843E2C191FE68FF0B2608ECF970
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/def332cc-820a-3e62-9159-1b0780b51071.roa
Signing time: Tue 14 Nov 2023 13:34:54 +0000
ROA not before: Tue 14 Nov 2023 13:34:54 +0000
ROA not after: Mon 12 Feb 2024 13:34:54 +0000
asID: 64267
IP address blocks: 104.165.169.0/24 maxlen: 24
104.165.232.0/24 maxlen: 24
104.252.19.0/24 maxlen: 24
104.252.28.0/24 maxlen: 24
104.252.30.0/24 maxlen: 24
104.252.131.0/24 maxlen: 24
104.252.143.0/24 maxlen: 24
142.252.145.0/24 maxlen: 24
166.88.220.0/24 maxlen: 24
172.121.255.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:e2:c1:91:fe:68:ff:0b:26:08:ec:f9:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Nov 14 13:34:54 2023 GMT
Not After : Feb 12 13:34:54 2024 GMT
Subject: CN=d0b9fa22-ad13-4d4f-9888-679d6701c2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e4:aa:b3:68:c6:88:e9:d3:a7:5d:e5:5c:af:
ae:de:b1:8d:82:fb:2b:5f:42:f1:56:7b:61:8f:ca:
89:1f:d3:e6:c9:28:3a:90:ed:2b:23:32:1f:cf:27:
6f:b8:6e:d5:68:f2:2b:3f:cd:35:90:f0:28:66:89:
4b:ef:4a:0a:25:86:24:b0:c9:11:b0:9d:8f:60:25:
c1:36:1d:1d:43:00:d0:93:ed:fb:f0:c0:aa:04:21:
1d:90:75:40:be:4d:00:fa:35:cf:c9:75:1b:2c:ed:
67:c9:8d:f7:9d:2a:33:04:df:0c:94:cb:cb:8a:80:
e3:19:8f:f6:f2:3a:b4:3c:bf:15:46:4d:68:e8:8b:
74:e2:bf:3f:ff:ce:68:94:67:a9:ac:c9:c4:27:7c:
a2:7b:e1:77:88:73:1e:99:50:f3:73:59:9e:ca:f4:
30:00:02:91:5a:6e:7c:69:70:d3:f9:af:07:b5:bf:
44:4b:5b:fd:e4:bc:65:90:96:cc:84:92:8c:f4:ef:
42:87:39:78:03:47:a3:78:b4:18:3d:64:13:7e:f7:
22:0f:fd:3c:26:82:0f:4c:ff:10:95:dc:d1:39:5b:
65:ab:09:49:33:e4:b0:20:d6:01:8e:dc:5b:93:b0:
95:c3:9f:19:48:b8:28:c7:39:f3:a4:27:56:50:f2:
f0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:62:57:DB:06:07:16:1A:1D:BE:9D:71:43:1D:1F:F2:3F:A6:E2:72
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/def332cc-820a-3e62-9159-1b0780b51071.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
104.165.169.0/24
104.165.232.0/24
104.252.19.0/24
104.252.28.0/24
104.252.30.0/24
104.252.131.0/24
104.252.143.0/24
142.252.145.0/24
166.88.220.0/24
172.121.255.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
4c:8d:c9:c4:e3:bf:85:0e:af:fe:a4:4d:66:13:8e:59:5b:d8:
d8:31:28:ff:5e:c0:7e:15:a5:aa:73:bf:c7:c3:d5:da:fc:80:
ed:d7:68:89:6c:6e:7a:60:f5:87:04:b3:76:5f:8a:45:95:3a:
53:20:47:e4:17:38:bc:91:c2:6c:0f:1d:d1:9f:24:b6:b3:c5:
aa:21:f9:8c:b4:bc:74:73:dd:cc:bc:53:e8:d4:a8:df:a3:47:
28:67:92:83:20:ac:8c:fe:f7:23:d7:ad:5e:32:54:57:28:84:
0e:db:e5:0d:ee:f4:80:11:f8:a8:93:dd:07:75:8c:ee:a9:45:
69:f1:4c:e2:14:3a:f9:2f:fa:77:56:e3:12:d6:34:ca:e9:35:
a2:e7:d9:1d:13:d1:23:49:3f:71:8a:23:4e:b4:aa:32:20:96:
3a:7b:a7:ad:bf:8a:bf:35:8c:77:9e:e1:55:b4:62:a7:8f:fd:
5d:86:e9:c2:b1:8a:be:23:03:49:7b:28:2a:5d:87:0b:fb:ef:
05:26:8e:7f:0d:ea:87:78:46:70:c4:4a:ef:13:65:dd:68:a1:
61:73:4d:52:ef:96:75:50:bd:fb:ac:31:cc:43:cc:59:a6:13:
dd:bf:30:e9:1a:44:ab:73:93:db:ee:09:99:61:e1:3c:61:b1:
a3:3c:ff:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:12 2024 by rpki-client on console-ams.rpki-client.org