Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/43c34485-9eba-352c-a13c-264283696cee.roa
File: 43c34485-9eba-352c-a13c-264283696cee.roa (raw, json)
Hash identifier: OcHpd97XrBGpp2Li6fnoPhrLWoD6y0i7GTC4PeaUqNE=
Subject key identifier: B5:FC:B8:93:74:FA:11:4A:36:CE:03:3F:84:77:B4:CC:DC:73:A2:CA
Certificate issuer: /CN=6876d5a8-5dd6-440a-97e2-5e20b9e00f5c
Certificate serial: 010D0C9F43285846E26AC7373B32C5CC04F67860
Authority key identifier: A1:27:6E:C4:CF:90:E9:A7:8A:38:DD:8C:B9:B8:D1:1C:F0:17:9A:B3
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/43c34485-9eba-352c-a13c-264283696cee.roa
Signing time: Thu 15 Aug 2024 13:00:40 +0000
ROA not before: Thu 15 Aug 2024 13:00:40 +0000
ROA not after: Wed 13 Nov 2024 14:00:40 +0000
asID: 207083
IP address blocks: 64.188.22.0/23 maxlen: 24
66.63.168.0/23 maxlen: 24
66.212.22.0/24 maxlen: 24
72.11.156.0/23 maxlen: 24
104.223.34.0/23 maxlen: 24
104.223.80.0/24 maxlen: 24
104.223.81.0/24 maxlen: 24
155.94.208.0/23 maxlen: 24
155.94.210.0/23 maxlen: 24
161.129.64.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:46:e2:6a:c7:37:3b:32:c5:cc:04:f6:78:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6876d5a8-5dd6-440a-97e2-5e20b9e00f5c
Validity
Not Before: Aug 15 13:00:40 2024 GMT
Not After : Nov 13 14:00:40 2024 GMT
Subject: CN=330643d1-d9ae-4eee-b142-2046e471286a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:3f:9a:2c:0d:38:00:64:f7:07:6e:b5:2d:
07:c2:7d:cf:32:b3:99:3c:40:c3:e5:ef:58:4d:38:
7a:78:59:31:0e:7e:ab:58:ec:df:a1:af:e8:69:7f:
7b:2b:9d:b4:89:e1:b2:00:ef:5c:8b:57:74:e1:b6:
21:81:ec:f8:d8:cc:f5:48:23:20:7e:4f:a1:f9:64:
8e:1f:03:08:fd:47:b1:33:77:2a:d9:4a:71:59:29:
0b:ba:de:87:03:0c:11:e2:60:50:12:f2:9b:e4:54:
4f:21:ff:f3:a0:86:0d:ba:b5:88:40:db:d8:bb:13:
e1:10:49:c0:cf:66:05:c0:14:eb:60:af:b5:a0:4a:
11:11:ea:3f:e3:d8:06:db:a9:1a:ad:9e:bd:19:1a:
f5:79:08:fc:04:af:b1:52:d1:84:a6:90:46:17:d8:
ae:6f:c1:37:03:3c:8c:b9:cd:9e:37:ce:dc:d3:7e:
91:e0:b4:ed:ff:65:0a:dd:e5:80:02:4a:96:0c:da:
ba:d8:f9:6d:a0:af:ad:30:13:06:45:7d:7a:c2:d8:
88:d2:6c:bb:f1:88:91:77:2d:30:4d:ea:94:34:33:
4a:bb:f9:de:fe:3a:bd:d6:76:87:02:50:95:01:0d:
39:b3:f2:b6:f9:9c:b6:57:67:03:c6:98:72:40:e5:
46:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FC:B8:93:74:FA:11:4A:36:CE:03:3F:84:77:B4:CC:DC:73:A2:CA
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/43c34485-9eba-352c-a13c-264283696cee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.crl
X509v3 Authority Key Identifier:
keyid:A1:27:6E:C4:CF:90:E9:A7:8A:38:DD:8C:B9:B8:D1:1C:F0:17:9A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.cer
sbgp-ipAddrBlock: critical
IPv4:
64.188.22.0/23
66.63.168.0/23
66.212.22.0/24
72.11.156.0/23
104.223.34.0/23
104.223.80.0/23
155.94.208.0/22
161.129.64.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2d:6d:ca:25:02:ad:88:71:0d:26:fe:22:9a:2b:3d:12:ff:ed:
08:68:0b:18:12:ae:1d:29:e9:80:05:e9:79:bb:9e:c9:6e:19:
95:e3:19:70:b1:d6:a5:e8:a7:aa:df:c5:4f:3a:11:5c:c0:62:
9e:82:68:b4:26:2e:81:b7:a7:9c:7a:39:0c:b2:68:e7:0b:42:
51:24:6b:4c:69:75:39:12:c8:c9:1a:3e:5f:01:51:f1:15:ec:
14:27:d7:9a:01:02:f9:83:c2:64:17:ea:62:bd:30:41:9f:5c:
43:7e:bd:ac:ba:44:4a:43:d1:15:37:39:bb:49:fa:3e:9b:82:
5d:dd:e7:fd:71:0b:1d:bd:98:c6:98:9f:d2:b9:4c:ec:bb:ab:
b2:23:99:7f:e9:3f:77:a1:1e:a2:79:d2:f8:72:81:4c:a1:65:
5e:53:70:a3:cc:86:c0:d8:ee:4a:dd:43:27:20:90:9d:f2:39:
52:59:50:b0:c9:6b:ab:78:4e:78:d1:f7:7b:98:cf:7f:de:8c:
d8:27:58:42:1b:2c:65:3a:46:45:cb:b5:4f:2d:fb:d7:98:fc:
1c:d0:0d:0e:c9:cb:8d:76:35:ec:70:d5:3a:68:41:be:fa:f5:
7b:83:77:dc:e0:b2:c2:07:ed:20:51:d6:72:da:46:07:4e:97:
d9:d7:1e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 14:25:13 2024 by rpki-client on console-fra.rpki-client.org