Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e1aefdd4-6620-3ef8-9aa9-4c74fc80e99b.roa
File: e1aefdd4-6620-3ef8-9aa9-4c74fc80e99b.roa (raw, json)
Hash identifier: YhCa4ilnE4u1UyaBCcdU23i25bfryTKof4Au/pmtQOw=
Subject key identifier: 9D:AA:CA:58:78:C6:7E:30:AB:2F:B8:02:C8:4E:F2:53:3F:5E:EF:23
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844CEB50972C4EB5311D112BA80
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e1aefdd4-6620-3ef8-9aa9-4c74fc80e99b.roa
Signing time: Wed 07 Feb 2024 02:00:24 +0000
ROA not before: Wed 07 Feb 2024 02:00:24 +0000
ROA not after: Tue 07 May 2024 01:00:24 +0000
asID: 397373
IP address blocks: 107.186.230.0/24 maxlen: 24
107.186.196.0/24 maxlen: 24
107.186.195.0/24 maxlen: 24
107.186.40.0/24 maxlen: 24
107.164.187.0/24 maxlen: 24
107.186.17.0/24 maxlen: 24
107.165.254.0/24 maxlen: 24
107.165.220.0/24 maxlen: 24
107.165.167.0/24 maxlen: 24
107.186.42.0/24 maxlen: 24
107.164.135.0/24 maxlen: 24
107.164.130.0/24 maxlen: 24
107.164.10.0/24 maxlen: 24
104.253.217.0/24 maxlen: 24
104.164.160.0/24 maxlen: 24
107.164.38.0/24 maxlen: 24
107.165.160.0/24 maxlen: 24
107.165.154.0/24 maxlen: 24
107.165.4.0/24 maxlen: 24
107.164.178.0/24 maxlen: 24
136.0.71.0/24 maxlen: 24
136.0.60.0/24 maxlen: 24
136.0.55.0/24 maxlen: 24
107.187.106.0/24 maxlen: 24
107.187.97.0/24 maxlen: 24
107.187.55.0/24 maxlen: 24
107.186.150.0/24 maxlen: 24
107.186.145.0/24 maxlen: 24
107.186.93.0/24 maxlen: 24
107.186.80.0/24 maxlen: 24
107.186.74.0/24 maxlen: 24
107.186.70.0/24 maxlen: 24
107.186.53.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:ce:b5:09:72:c4:eb:53:11:d1:12:ba:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 7 02:00:24 2024 GMT
Not After : May 7 01:00:24 2024 GMT
Subject: CN=0da3fbd7-ffc0-4f54-bbf7-4b25d65c6f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:25:0b:48:76:94:d4:b3:ec:7f:4c:3d:d0:45:
58:67:79:9a:99:70:c6:fe:ac:69:d8:c4:1c:41:db:
fb:c2:11:86:16:67:de:3a:9c:0e:7f:6d:e8:c9:e9:
1a:53:03:6f:13:8b:20:c1:92:93:52:c8:96:a9:b5:
be:3f:32:03:2e:26:d9:ad:cd:1e:8d:cc:ba:0a:6e:
6b:da:2a:b5:29:cc:f6:0c:bb:90:d4:c2:84:db:52:
d0:cd:32:d0:8a:b3:bb:e2:d9:fa:2d:03:65:59:40:
b2:85:98:54:68:33:b5:b1:b4:e6:da:f9:e9:07:35:
21:0c:8a:26:d8:a2:59:c9:7a:83:be:e7:98:1b:1a:
b6:88:e7:89:16:c0:dd:95:66:55:89:67:9d:87:28:
72:45:d0:83:6c:3c:e4:a3:3e:19:b3:b3:f6:c6:af:
9a:fb:d9:45:84:3a:cb:6b:fe:52:8b:90:a5:8c:5b:
2b:e9:63:a4:16:01:46:40:50:0f:5b:ae:c3:b6:8e:
69:15:64:08:b7:d6:0e:6a:9d:e5:90:1f:3d:f9:12:
0f:36:c1:0c:85:bb:a2:00:5e:39:25:8f:c8:39:83:
c2:0b:de:1f:51:8b:e8:88:f7:57:af:73:3e:48:f8:
0b:52:47:fe:b1:be:2b:7a:76:a5:01:df:4a:e8:a2:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AA:CA:58:78:C6:7E:30:AB:2F:B8:02:C8:4E:F2:53:3F:5E:EF:23
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e1aefdd4-6620-3ef8-9aa9-4c74fc80e99b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
104.164.160.0/24
104.253.217.0/24
107.164.10.0/24
107.164.38.0/24
107.164.130.0/24
107.164.135.0/24
107.164.178.0/24
107.164.187.0/24
107.165.4.0/24
107.165.154.0/24
107.165.160.0/24
107.165.167.0/24
107.165.220.0/24
107.165.254.0/24
107.186.17.0/24
107.186.40.0/24
107.186.42.0/24
107.186.53.0/24
107.186.70.0/24
107.186.74.0/24
107.186.80.0/24
107.186.93.0/24
107.186.145.0/24
107.186.150.0/24
107.186.195.0-107.186.196.255
107.186.230.0/24
107.187.55.0/24
107.187.97.0/24
107.187.106.0/24
136.0.55.0/24
136.0.60.0/24
136.0.71.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
60:20:f7:55:68:e6:05:6f:d7:ac:16:ab:50:49:03:e9:4b:64:
a0:14:2f:5b:87:3d:4f:54:6d:b4:3e:cc:a9:f6:b7:48:42:12:
54:f8:75:67:98:a4:22:43:74:36:fb:49:78:55:7f:1f:bf:1d:
0e:ae:72:15:84:b2:45:49:ae:4b:d8:ad:12:89:81:2d:6f:26:
35:50:98:25:3f:c0:1b:15:29:87:b8:ac:ee:28:aa:62:3c:22:
e0:69:37:e9:26:6b:78:b7:26:02:16:05:80:e1:98:29:88:1f:
60:9c:dc:99:58:fc:6f:d8:50:92:e1:b8:ca:ff:d7:ad:6c:7d:
c5:46:bb:be:53:c0:7c:41:24:5f:7c:d3:39:3f:d2:a7:ee:b9:
f7:fe:ba:b6:d7:8b:80:e7:d3:bb:b1:b1:a6:7f:1c:81:e3:e1:
8b:26:30:2a:e5:f3:8d:a0:f5:c6:9c:a5:b7:07:93:f5:e9:b5:
4b:7e:3e:a2:50:3d:ce:f6:2f:79:45:a1:95:d8:e8:9f:10:6c:
f9:02:2b:d2:da:aa:3d:d1:6b:ce:72:25:1b:f7:bc:58:2f:aa:
cf:ab:ff:7e:a1:b0:dd:be:d1:df:0d:11:b4:16:f7:97:01:1a:
e8:78:8a:cd:9a:8e:42:4d:ed:8d:41:8d:e2:0e:54:05:f2:47:
a5:a8:db:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:10:33 2024 by rpki-client on console-fra.rpki-client.org