Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca/ee25c88b-f990-33f6-baee-a719cc9e5700.roa
File: ee25c88b-f990-33f6-baee-a719cc9e5700.roa (raw, json)
Hash identifier: 1VruLhTsWyMupsNb1LNe2GpMiCO2Ya0XKfx14SKPIt0=
Subject key identifier: 05:5F:19:18:C1:DD:D9:CF:96:B1:33:44:96:C1:A8:77:08:5C:83:16
Certificate issuer: /CN=b1b8e1e4-65a6-4ea6-b62d-2576458162ca
Certificate serial: 010D0C9F43285846572FF95B0EF6AE3A0A5EDB00
Authority key identifier: 31:53:78:8F:17:38:74:9C:D4:80:2C:AD:F9:94:C9:F2:04:79:F3:AD
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca/ee25c88b-f990-33f6-baee-a719cc9e5700.roa
Signing time: Wed 26 Jun 2024 16:05:00 +0000
ROA not before: Wed 26 Jun 2024 16:05:00 +0000
ROA not after: Tue 24 Sep 2024 16:05:00 +0000
asID: 21507
IP address blocks: 148.65.0.0/16 maxlen: 16
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:46:57:2f:f9:5b:0e:f6:ae:3a:0a:5e:db:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b8e1e4-65a6-4ea6-b62d-2576458162ca
Validity
Not Before: Jun 26 16:05:00 2024 GMT
Not After : Sep 24 16:05:00 2024 GMT
Subject: CN=7e53d3c8-2931-4726-b376-b85bf4ef1142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7c:9e:fb:24:19:52:98:74:d9:8b:fd:57:cb:
98:e8:06:86:0a:91:d8:2a:29:66:b5:2c:49:ce:be:
81:35:03:8f:4c:c2:91:a6:86:8b:4e:0d:69:24:f8:
8a:2c:40:76:f8:55:5f:b9:19:47:59:b4:44:3b:ec:
ba:93:c9:e8:b0:db:07:b7:cc:d0:bb:87:1c:70:14:
6d:67:b7:bd:eb:68:ef:90:a8:ea:3d:b5:db:4e:4e:
e7:e2:a3:34:70:b7:7a:4c:c3:a4:07:ff:04:db:ad:
93:b4:fd:58:93:34:18:cf:3e:03:40:61:7a:4a:80:
15:27:37:fa:ca:c4:c5:84:e9:c7:59:c4:e0:44:0e:
96:a6:07:58:15:92:b0:f4:97:b4:06:98:20:48:07:
9c:d5:03:b6:50:e2:45:47:a1:78:84:fa:9f:53:42:
7c:c5:2e:b5:a9:20:31:1c:d8:63:a2:56:f3:00:e6:
e4:52:40:e6:eb:57:59:06:63:29:14:08:d3:2e:e6:
c1:50:49:ef:35:ec:f6:53:6e:4a:13:91:06:75:a7:
34:2b:20:d0:cf:58:27:65:d1:d5:4f:70:44:0a:9a:
18:09:74:49:a7:3e:be:eb:71:27:5f:ec:2d:ba:81:
00:f4:73:3b:c3:11:6a:b3:a7:c8:84:bc:1c:71:1e:
5e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5F:19:18:C1:DD:D9:CF:96:B1:33:44:96:C1:A8:77:08:5C:83:16
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca/ee25c88b-f990-33f6-baee-a719cc9e5700.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca/b1b8e1e4-65a6-4ea6-b62d-2576458162ca.crl
X509v3 Authority Key Identifier:
keyid:31:53:78:8F:17:38:74:9C:D4:80:2C:AD:F9:94:C9:F2:04:79:F3:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/b1b8e1e4-65a6-4ea6-b62d-2576458162ca.cer
sbgp-ipAddrBlock: critical
IPv4:
148.65.0.0/16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2f:d2:a8:e6:c2:93:3d:5b:ce:ea:fd:9b:1c:c2:2a:3a:a0:fe:
44:9f:3d:47:fd:91:52:f0:34:fc:41:45:35:f9:3b:0e:a1:b0:
37:dd:ce:05:e4:0a:9e:0d:b8:03:76:1e:55:70:83:b7:2d:5f:
2b:4d:f3:f2:2a:4f:94:1d:02:3f:98:a6:17:ba:b1:c8:ca:39:
c6:96:eb:37:64:13:f6:78:43:ff:7a:29:a2:84:6c:44:d4:33:
76:1f:0f:a4:8d:66:af:a6:66:48:48:09:ec:0f:76:a6:dc:4a:
a4:ea:f3:27:23:0f:c9:f3:6a:03:b5:ae:28:bf:eb:0e:93:54:
bb:90:39:b3:a0:94:38:7a:de:f4:07:fd:fc:11:f7:65:96:fe:
7f:4f:9a:93:ee:7f:af:61:78:15:e7:4f:57:d1:7f:2b:d8:5a:
19:10:6a:16:7c:83:fa:a8:c2:f5:9f:fd:cb:5d:d5:e1:33:27:
b9:4c:96:5e:94:79:5e:70:83:17:30:5c:4f:e1:38:86:47:b3:
99:05:e3:02:cf:f5:75:b6:b3:61:f7:4f:6a:3b:c3:10:5f:5a:
0e:a4:a1:4f:15:4c:df:ca:16:28:8f:3f:04:f8:69:d9:43:05:
23:88:ee:94:ba:c8:c6:e5:75:e0:3c:df:41:84:88:0c:14:fe:
0c:8a:51:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:12:52 2025 by rpki-client