Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687/1aa15d9a-7585-3491-b7a4-e9f2c3a30322.roa
File: 1aa15d9a-7585-3491-b7a4-e9f2c3a30322.roa (raw, json)
Hash identifier: NJQaumMTHM4ICLVNgLctCuL1teYBKy9hqNe/jNU1EuA=
Subject key identifier: 56:4B:13:7D:C4:27:2D:0C:39:C6:59:63:8E:B8:03:6D:44:6B:24:93
Certificate issuer: /CN=65419565-1d73-4edf-be97-60704f8ad687
Certificate serial: 010D0C9F4328583D3F343BFDEBB00E6C4C018EC0
Authority key identifier: 5C:67:54:78:C5:92:3D:85:2B:FF:B5:DF:E5:A4:EF:88:FE:1D:45:89
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687/1aa15d9a-7585-3491-b7a4-e9f2c3a30322.roa
Signing time: Tue 15 Mar 2022 04:00:00 +0000
ROA not before: Tue 15 Mar 2022 04:00:00 +0000
ROA not after: Thu 15 Sep 2022 04:00:00 +0000
asID: 1239
IP address blocks: 144.142.144.0/20 maxlen: 20
144.142.80.0/20 maxlen: 20
144.142.112.0/20 maxlen: 20
144.142.48.0/20 maxlen: 20
144.142.0.0/20 maxlen: 20
144.142.16.0/20 maxlen: 20
144.142.32.0/20 maxlen: 20
144.142.64.0/20 maxlen: 20
144.142.96.0/20 maxlen: 20
144.142.128.0/20 maxlen: 20
144.142.160.0/20 maxlen: 20
144.142.176.0/20 maxlen: 20
144.142.192.0/20 maxlen: 20
144.142.208.0/20 maxlen: 20
144.142.224.0/20 maxlen: 20
144.142.240.0/20 maxlen: 20
163.192.0.0/20 maxlen: 20
163.192.16.0/20 maxlen: 20
163.192.32.0/20 maxlen: 20
163.192.48.0/20 maxlen: 20
163.192.64.0/20 maxlen: 20
163.192.80.0/20 maxlen: 20
163.192.96.0/20 maxlen: 20
163.192.112.0/20 maxlen: 20
163.192.128.0/20 maxlen: 20
163.192.144.0/20 maxlen: 20
163.192.160.0/20 maxlen: 20
163.192.176.0/20 maxlen: 20
163.192.192.0/20 maxlen: 20
163.192.208.0/20 maxlen: 20
163.192.224.0/20 maxlen: 20
163.192.240.0/20 maxlen: 20
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3d:3f:34:3b:fd:eb:b0:0e:6c:4c:01:8e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65419565-1d73-4edf-be97-60704f8ad687
Validity
Not Before: Mar 15 04:00:00 2022 GMT
Not After : Sep 15 04:00:00 2022 GMT
Subject: CN=a0886e88-b375-4989-8a2f-e6fa3512595b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:05:98:63:bc:f2:06:ea:85:24:c9:d8:09:
d0:4e:24:e2:b3:34:1b:2f:7e:1e:04:cc:e4:0c:43:
02:70:2a:d5:b5:3b:26:e6:b0:e8:51:8c:86:7e:7e:
72:ce:14:9c:d5:4e:93:6f:3d:0a:b7:90:9b:ec:3d:
fa:b3:44:a8:02:a6:0b:8c:e0:90:27:ab:ac:d2:ca:
85:45:89:cc:9e:53:6c:e3:b4:31:93:89:fc:af:4b:
44:e1:02:82:99:3d:dc:00:9c:c9:54:39:81:41:06:
d0:23:1a:b8:b8:f6:f6:25:ca:42:e4:41:aa:91:bb:
0c:f5:5a:4f:d8:a2:ff:a1:eb:7c:b2:5b:11:32:21:
e8:1e:00:46:62:92:51:02:dd:bc:90:96:d8:57:95:
fa:7f:8f:6a:49:e1:71:ba:d8:72:d4:dc:92:a8:d5:
7a:2d:e0:e7:be:94:dc:cc:e6:eb:25:6a:96:8a:38:
77:93:be:f6:6e:8c:60:37:55:13:5c:af:f1:72:96:
47:01:74:61:22:49:fb:34:49:c2:dc:2f:3d:9f:51:
9d:5c:78:7d:bf:91:13:8e:b1:95:37:23:f9:6d:85:
4f:7d:50:04:f6:f7:60:68:6a:0a:06:da:eb:c5:ce:
4e:18:4b:f0:16:29:9a:9a:02:9e:d9:aa:6f:63:18:
9c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4B:13:7D:C4:27:2D:0C:39:C6:59:63:8E:B8:03:6D:44:6B:24:93
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687/1aa15d9a-7585-3491-b7a4-e9f2c3a30322.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687/65419565-1d73-4edf-be97-60704f8ad687.crl
X509v3 Authority Key Identifier:
keyid:5C:67:54:78:C5:92:3D:85:2B:FF:B5:DF:E5:A4:EF:88:FE:1D:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/65419565-1d73-4edf-be97-60704f8ad687.cer
sbgp-ipAddrBlock: critical
IPv4:
144.142.0.0/16
163.192.0.0/16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
33:d7:6c:de:d7:a8:82:70:db:de:a3:93:bb:56:40:40:60:b3:
62:bb:b0:1d:b8:b2:96:44:2d:bc:27:22:90:4d:d8:dc:30:10:
7b:ab:34:56:97:d9:28:90:a7:0d:92:b8:fd:54:a6:1b:0e:98:
08:92:c4:15:a0:d6:2c:96:98:10:1b:da:d3:a4:e7:2b:08:12:
4d:46:37:2c:95:4d:34:fb:1f:1f:2e:c4:eb:ca:bd:04:a0:df:
0c:fb:23:48:5b:8c:89:a9:52:7a:cc:e1:5e:42:0c:82:91:82:
5c:37:29:7c:7d:b3:f4:0e:75:07:bd:c2:4d:11:ab:70:30:fa:
c8:f3:93:c7:47:fa:20:8f:8d:bf:f1:0c:82:54:26:5a:61:1d:
f7:5b:57:71:0c:58:12:28:97:09:0f:ee:0b:d2:19:bc:41:f4:
3b:14:51:e2:2d:5f:53:50:37:03:bc:bd:a4:d7:0c:30:8d:db:
fc:0c:df:6b:70:53:3f:cf:69:52:fc:21:9b:12:bf:d0:39:76:
a9:56:41:a3:aa:cb:76:4a:6e:91:e9:2d:c1:f0:d5:a4:dd:03:
90:59:6f:74:11:b3:b4:a9:10:3a:40:27:9b:56:82:19:2b:c6:
30:ad:ae:da:a3:8f:60:02:d8:db:77:be:e6:0c:f3:80:d5:8b:
46:e9:68:bd
-----BEGIN CERTIFICATE-----
MIIGRzCCBS+gAwIBAgIUAQ0Mn0MoWD0/NDv967AObEwBjsAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNjU0MTk1NjUtMWQ3My00ZWRmLWJlOTctNjA3MDRmOGFk
Njg3MB4XDTIyMDMxNTA0MDAwMFoXDTIyMDkxNTA0MDAwMFowLzEtMCsGA1UEAxMk
YTA4ODZlODgtYjM3NS00OTg5LThhMmYtZTZmYTM1MTI1OTViMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyMFmGO88gbqhSTJ2AnQTiTiszQbL34eBMzk
DEMCcCrVtTsm5rDoUYyGfn5yzhSc1U6Tbz0Kt5Cb7D36s0SoAqYLjOCQJ6us0sqF
RYnMnlNs47Qxk4n8r0tE4QKCmT3cAJzJVDmBQQbQIxq4uPb2JcpC5EGqkbsM9VpP
2KL/oet8slsRMiHoHgBGYpJRAt28kJbYV5X6f49qSeFxuthy1NySqNV6LeDnvpTc
zObrJWqWijh3k772boxgN1UTXK/xcpZHAXRhIkn7NEnC3C89n1GdXHh9v5ETjrGV
NyP5bYVPfVAE9vdgaGoKBtrrxc5OGEvwFimamgKe2apvYxic8QIDAQABo4IDWTCC
A1UwHQYDVR0OBBYEFFZLE33EJy0MOcZZY464A21EaySTMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS82NTQx
OTU2NS0xZDczLTRlZGYtYmU5Ny02MDcwNGY4YWQ2ODcvMWFhMTVkOWEtNzU4NS0z
NDkxLWI3YTQtZTlmMmMzYTMwMzIyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k
MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvNjU0MTk1NjUtMWQ3My00ZWRmLWJl
OTctNjA3MDRmOGFkNjg3LzY1NDE5NTY1LTFkNzMtNGVkZi1iZTk3LTYwNzA0Zjhh
ZDY4Ny5jcmwwHwYDVR0jBBgwFoAUXGdUeMWSPYUr/7Xf5aTviP4dRYkwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5
NC04ZjZjLWQ2YzkxYjBiODQxNS82NTQxOTU2NS0xZDczLTRlZGYtYmU5Ny02MDcw
NGY4YWQ2ODcuY2VyMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAATAKAwMAkI4DAwCj
wDBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBz
Oi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3
DQEBCwUAA4IBAQAz12ze16iCcNveo5O7VkBAYLNiu7AduLKWRC28JyKQTdjcMBB7
qzRWl9kokKcNkrj9VKYbDpgIksQVoNYslpgQG9rTpOcrCBJNRjcslU00+x8fLsTr
yr0EoN8M+yNIW4yJqVJ6zOFeQgyCkYJcNyl8fbP0DnUHvcJNEatwMPrI85PHR/og
j42/8QyCVCZaYR33W1dxDFgSKJcJD+4L0hm8QfQ7FFHiLV9TUDcDvL2k1wwwjdv8
DN9rcFM/z2lS/CGbEr/QOXapVkGjqst2Sm6R6S3B8NWk3QOQWW90EbO0qRA6QCeb
VoIZK8Ywra7ao49gAtjbd77mDPOA1YtG6Wi9
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:29 2023 by rpki-client on console-ams.rpki-client.org