Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6/89ed6f02-75fb-3eea-a630-5dbf6a947096.roa
File: 89ed6f02-75fb-3eea-a630-5dbf6a947096.roa (raw, json)
Hash identifier: EJZ/srSBJY+TDbGoD1uZ4vsRtvlQIdQQU++bkVpxi2c=
Subject key identifier: 3C:F6:91:69:BC:87:72:91:B0:9F:92:FE:7B:39:83:C9:F7:26:21:77
Certificate issuer: /CN=53ee2d2b-5a77-4db4-8fbd-85e75401cae6
Certificate serial: 010D0C9F43285843703A738CE922CC4522569610
Authority key identifier: 31:57:93:9D:40:13:B3:6B:9F:E6:FB:23:B2:E3:4A:75:C5:F3:7C:6F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6/89ed6f02-75fb-3eea-a630-5dbf6a947096.roa
Signing time: Wed 04 Oct 2023 13:00:24 +0000
ROA not before: Wed 04 Oct 2023 13:00:24 +0000
ROA not after: Tue 02 Jan 2024 14:00:24 +0000
asID: 395662
IP address blocks: 207.183.128.0/19 maxlen: 24
167.224.128.0/17 maxlen: 24
169.150.136.0/21 maxlen: 24
86.63.128.0/19 maxlen: 24
170.10.176.0/20 maxlen: 24
170.199.160.0/19 maxlen: 24
2603:a000::/24 maxlen: 32
2607:cb80::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:70:3a:73:8c:e9:22:cc:45:22:56:96:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ee2d2b-5a77-4db4-8fbd-85e75401cae6
Validity
Not Before: Oct 4 13:00:24 2023 GMT
Not After : Jan 2 14:00:24 2024 GMT
Subject: CN=50e914a8-64bb-4a46-99ae-845e8c0217db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:07:4c:21:47:93:13:80:54:38:5e:86:d2:43:
03:11:c9:0f:20:42:fd:c6:e4:e9:4e:dc:14:79:eb:
29:1e:9d:37:34:78:95:cf:9d:7e:80:2b:c5:ee:5c:
8f:14:fb:92:eb:a3:48:72:c0:42:6f:c0:68:b2:a5:
16:0f:4f:05:38:a1:e9:e0:b5:d1:d3:1b:54:df:df:
02:a3:5a:8c:fe:10:4f:45:b4:42:01:a9:f6:75:c6:
37:e5:fa:6a:da:45:b3:f2:95:3c:ba:1c:25:39:7b:
a9:75:a6:80:ef:9e:ee:91:9b:a5:cd:15:77:c3:8d:
07:c5:c3:6b:b8:34:f9:1c:21:3d:e4:22:e1:75:fd:
43:5f:62:d3:cb:46:7b:e3:7f:f5:93:4e:b3:62:69:
45:a8:dd:cd:bd:3e:3f:5a:49:1e:21:77:53:46:a6:
7d:6e:e5:8b:3c:61:26:74:dd:d6:4e:7a:04:80:ee:
36:70:87:43:25:78:37:7a:e9:15:92:31:32:97:17:
95:23:16:a1:8b:85:be:3d:41:3d:b2:3a:1d:d9:b2:
84:6a:46:0a:6d:81:3f:e2:d8:65:78:3c:e4:4e:e7:
83:ec:92:b1:cd:b6:98:96:89:4f:02:90:f4:50:d5:
a1:20:0b:e6:22:8c:8d:d2:14:28:98:d2:d0:ab:04:
2b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F6:91:69:BC:87:72:91:B0:9F:92:FE:7B:39:83:C9:F7:26:21:77
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6/89ed6f02-75fb-3eea-a630-5dbf6a947096.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6/53ee2d2b-5a77-4db4-8fbd-85e75401cae6.crl
X509v3 Authority Key Identifier:
keyid:31:57:93:9D:40:13:B3:6B:9F:E6:FB:23:B2:E3:4A:75:C5:F3:7C:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/53ee2d2b-5a77-4db4-8fbd-85e75401cae6.cer
sbgp-ipAddrBlock: critical
IPv4:
86.63.128.0/19
167.224.128.0/17
169.150.136.0/21
170.10.176.0/20
170.199.160.0/19
207.183.128.0/19
IPv6:
2603:a000::/24
2607:cb80::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
54:01:7f:1f:4e:50:c5:70:30:88:b5:58:7a:a6:d6:b1:26:ef:
1a:67:6c:14:22:d1:77:c6:95:87:e5:76:87:65:6c:fc:ca:e1:
a7:64:40:19:08:97:bb:32:89:67:1b:9b:62:23:fe:fa:d5:b2:
2a:c0:63:45:a8:6c:68:5f:9a:ee:ac:cc:1b:64:d7:ca:2b:43:
48:78:c0:c7:65:2d:4e:01:0d:5a:eb:a7:95:95:a2:4a:6e:30:
4e:23:f6:2b:70:3c:46:56:42:d7:31:77:ea:7f:44:24:eb:52:
57:26:e8:9c:01:26:f0:4f:18:cc:97:49:e6:e1:a7:12:05:2d:
b0:18:f0:9a:df:3f:5f:f7:f5:4f:c0:c2:4f:2c:32:80:fa:df:
64:4e:74:f2:16:3f:8f:6f:c4:28:cf:fc:92:49:c9:45:69:b7:
83:b4:6d:fe:97:58:16:c7:27:43:6b:55:f6:2e:40:a0:44:4f:
2a:5d:59:7d:e9:70:3e:6d:30:eb:0e:13:6c:6f:37:31:a6:35:
70:49:9e:ac:50:31:18:a9:4e:8b:1d:ac:6d:84:89:e5:92:13:
bb:26:1f:93:e7:3f:e3:3b:88:45:45:c7:9b:87:12:69:e7:53:
8f:c9:99:24:e8:69:b8:39:e2:59:54:9d:19:32:8b:60:d2:83:
39:d3:4b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 2 18:07:40 2023 by rpki-client on console-ams.rpki-client.org