Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e515c8eb-79ba-38d1-a68d-7f0b1cf3ed1b.roa
File: e515c8eb-79ba-38d1-a68d-7f0b1cf3ed1b.roa (raw, json)
Hash identifier: jJQ/TecNpEsaZaLG2QzXKbfrOtkcU1HVpVzKilt4a3k=
Subject key identifier: 4B:D3:F3:A8:35:7D:3E:42:88:1D:42:06:DE:4E:29:96:6F:61:BA:18
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F43285844E7D541B310748CA1A57FC180
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e515c8eb-79ba-38d1-a68d-7f0b1cf3ed1b.roa
Signing time: Fri 16 Feb 2024 02:00:26 +0000
ROA not before: Fri 16 Feb 2024 02:00:26 +0000
ROA not after: Thu 16 May 2024 01:00:26 +0000
asID: 1239
IP address blocks: 107.186.75.0/24 maxlen: 24
107.186.71.0/24 maxlen: 24
107.187.114.0/24 maxlen: 24
107.186.94.0/24 maxlen: 24
136.0.45.0/24 maxlen: 24
107.186.67.0/24 maxlen: 24
107.187.127.0/24 maxlen: 24
107.186.84.0/24 maxlen: 24
142.111.242.0/24 maxlen: 24
136.0.65.0/24 maxlen: 24
107.187.118.0/24 maxlen: 24
142.111.243.0/24 maxlen: 24
142.252.18.0/24 maxlen: 24
142.252.48.0/24 maxlen: 24
142.252.40.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:e7:d5:41:b3:10:74:8c:a1:a5:7f:c1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Feb 16 02:00:26 2024 GMT
Not After : May 16 01:00:26 2024 GMT
Subject: CN=bab7eda2-51c8-4c0f-ab18-108d30b608ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:78:26:99:28:eb:7c:54:f0:d5:47:01:48:a4:
97:72:e6:2e:d0:ea:09:f8:6c:60:dc:c7:6d:84:d4:
18:fb:27:5c:9a:dc:a4:0a:7e:ea:b3:21:ad:44:e0:
17:38:ac:13:13:e7:d1:ac:c2:85:17:8e:cf:1c:07:
db:15:32:a3:33:4c:5b:e7:4b:db:b3:c8:0d:c1:3b:
c7:43:cc:13:ea:2e:fe:4a:09:71:e2:20:ca:08:ed:
20:fd:41:13:73:ca:d2:f0:78:35:ee:61:b3:af:84:
f7:fa:ea:af:08:e6:24:b8:3b:b1:9b:ed:14:c6:15:
df:56:a2:5d:5d:60:50:78:cb:f8:7f:e3:96:a3:be:
b3:ac:3c:7d:55:aa:b7:ad:58:b4:54:4d:07:bc:1c:
60:36:58:1b:3a:7e:f3:9e:cd:4d:fb:2b:82:d5:9c:
f4:19:76:2a:ec:89:4c:ed:66:e7:84:15:5e:e5:33:
c0:56:23:d2:2e:2a:a6:aa:ab:23:3c:46:dd:33:26:
67:2c:e3:a5:a9:84:91:bc:1a:fd:ec:66:cc:71:02:
1c:84:0a:91:0d:4c:c8:ee:43:50:49:81:45:dc:3a:
ea:5a:8a:83:13:f9:c7:d5:2b:b2:03:a5:ed:47:7d:
a5:0d:3f:a4:cc:3f:c2:42:31:49:c7:c1:7c:ae:c4:
8d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D3:F3:A8:35:7D:3E:42:88:1D:42:06:DE:4E:29:96:6F:61:BA:18
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/e515c8eb-79ba-38d1-a68d-7f0b1cf3ed1b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
107.186.67.0/24
107.186.71.0/24
107.186.75.0/24
107.186.84.0/24
107.186.94.0/24
107.187.114.0/24
107.187.118.0/24
107.187.127.0/24
136.0.45.0/24
136.0.65.0/24
142.111.242.0/23
142.252.18.0/24
142.252.40.0/24
142.252.48.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
41:af:8b:b1:02:46:72:e8:81:1c:b4:99:67:8b:18:5f:7e:e8:
12:ab:a8:bd:64:11:9b:f2:0a:a8:d0:44:47:d9:bd:2f:75:c6:
74:16:f2:cc:88:55:18:74:49:80:73:97:a2:02:db:f6:06:53:
42:d3:02:3b:76:ab:61:e6:22:8a:06:e6:3b:fc:64:01:da:e6:
65:16:a4:a9:33:f1:23:f3:46:e0:55:d7:a1:f8:11:1d:67:9d:
2d:17:5c:9d:60:a9:8f:6c:ab:ae:ce:52:3b:9d:87:76:30:9b:
b7:d3:64:ea:76:17:6e:66:6b:a7:ef:d3:8c:da:52:f5:46:c3:
ba:d8:7e:d9:42:42:02:15:f7:52:3a:0e:2b:5c:1c:f6:3c:49:
aa:4a:c2:66:37:27:fe:73:71:b7:95:17:32:ef:45:6b:14:06:
d2:d9:8c:60:65:cd:37:30:66:4b:87:ef:62:41:7c:df:b4:1f:
71:ea:4a:39:25:40:8d:d9:9a:55:42:72:36:7b:1d:a3:05:30:
30:9e:b7:ca:5a:2f:07:09:c5:3e:a3:74:04:a0:ad:52:ea:37:
b7:bb:e5:5a:81:2e:fb:1a:48:76:02:e3:9d:89:b5:5a:da:98:
17:29:a1:ab:9b:5f:f0:98:2f:93:46:bf:5d:f9:fb:4d:34:28:
e2:a5:cc:5c
-----BEGIN CERTIFICATE-----
MIIGkTCCBXmgAwIBAgIUAQ0Mn0MoWETn1UGzEHSMoaV/wYAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTI0MDIxNjAyMDAyNloXDTI0MDUxNjAxMDAyNlowLzEtMCsGA1UEAxMk
YmFiN2VkYTItNTFjOC00YzBmLWFiMTgtMTA4ZDMwYjYwOGFkMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6XgmmSjrfFTw1UcBSKSXcuYu0OoJ+Gxg3Mdt
hNQY+ydcmtykCn7qsyGtROAXOKwTE+fRrMKFF47PHAfbFTKjM0xb50vbs8gNwTvH
Q8wT6i7+Sglx4iDKCO0g/UETc8rS8Hg17mGzr4T3+uqvCOYkuDuxm+0UxhXfVqJd
XWBQeMv4f+OWo76zrDx9Vaq3rVi0VE0HvBxgNlgbOn7zns1N+yuC1Zz0GXYq7IlM
7WbnhBVe5TPAViPSLiqmqqsjPEbdMyZnLOOlqYSRvBr97GbMcQIchAqRDUzI7kNQ
SYFF3DrqWoqDE/nH1SuyA6XtR32lDT+kzD/CQjFJx8F8rsSNcwIDAQABo4IDozCC
A58wHQYDVR0OBBYEFEvT86g1fT5CiB1CBt5OKZZvYboYMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvZTUxNWM4ZWItNzliYS0z
OGQxLWE2OGQtN2YwYjFjZjNlZDFiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAa7pDAwQA
a7pHAwQAa7pLAwQAa7pUAwQAa7peAwQAa7tyAwQAa7t2AwQAa7t/AwQAiAAtAwQA
iABBAwQBjm/yAwQAjvwSAwQAjvwoAwQAjvwwMFQGA1UdIAEB/wRKMEgwRgYIKwYB
BQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3Vy
Y2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAEGvi7ECRnLogRy0
mWeLGF9+6BKrqL1kEZvyCqjQREfZvS91xnQW8syIVRh0SYBzl6IC2/YGU0LTAjt2
q2HmIooG5jv8ZAHa5mUWpKkz8SPzRuBV16H4ER1nnS0XXJ1gqY9sq67OUjudh3Yw
m7fTZOp2F25ma6fv04zaUvVGw7rYftlCQgIV91I6DitcHPY8SapKwmY3J/5zcbeV
FzLvRWsUBtLZjGBlzTcwZkuH72JBfN+0H3HqSjklQI3ZmlVCcjZ7HaMFMDCet8pa
LwcJxT6jdASgrVLqN7e75VqBLvsaSHYC452JtVramBcpoaubX/CYL5NGv135+000
KOKlzFw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:42:13 2024 by rpki-client on console-ams.rpki-client.org