Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/6a05a043-22b6-349c-a2c6-1d93f9f579fd.roa
File: 6a05a043-22b6-349c-a2c6-1d93f9f579fd.roa (raw, json)
Hash identifier: GhQAVuevNVDibpbgvjIuMSJr+OhTRXVSUscW/VJ93Rw=
Subject key identifier: C4:C7:1F:48:21:BF:43:19:03:79:51:A7:0A:48:02:6C:73:68:3C:95
Certificate issuer: /CN=8583e379-1578-4044-8426-ddcb4a4a8192
Certificate serial: 010D0C9F432858475BDB7E6386AE9DB369CA9080
Authority key identifier: 89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/6a05a043-22b6-349c-a2c6-1d93f9f579fd.roa
Signing time: Sat 28 Sep 2024 01:00:31 +0000
ROA not before: Sat 28 Sep 2024 01:00:31 +0000
ROA not after: Fri 27 Dec 2024 02:00:31 +0000
asID: 397423
IP address blocks: 192.154.202.0/24 maxlen: 24
192.154.205.0/24 maxlen: 24
192.154.213.0/24 maxlen: 24
192.154.253.0/24 maxlen: 24
192.154.254.0/24 maxlen: 24
192.154.255.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:5b:db:7e:63:86:ae:9d:b3:69:ca:90:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8583e379-1578-4044-8426-ddcb4a4a8192
Validity
Not Before: Sep 28 01:00:31 2024 GMT
Not After : Dec 27 02:00:31 2024 GMT
Subject: CN=7fe78c66-b67a-493d-8758-5381913280ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c7:65:71:fe:f4:6d:80:25:50:b2:1f:72:a2:
b3:70:50:23:6f:96:27:62:d4:23:ae:04:bd:bb:18:
5e:1b:dd:1b:d2:2d:49:80:00:64:14:42:ec:5f:c6:
fd:df:ec:4c:fa:c3:6a:01:da:eb:65:ee:af:34:ef:
52:a5:05:96:38:d9:ed:a0:a8:75:04:64:e8:4f:3f:
a7:0d:ee:93:e5:82:20:09:5d:f7:6a:05:16:7b:71:
f1:0e:8f:4d:27:90:37:86:0e:1b:71:eb:8b:70:72:
3f:b1:f4:30:b7:86:46:29:e9:6c:d2:ab:43:ec:dc:
6c:ab:af:d1:7b:33:be:a9:71:40:dc:fa:13:73:9e:
45:83:b5:a1:02:ba:c6:4b:04:2a:56:5a:d8:31:7d:
f9:93:b3:d0:6a:6d:e8:2e:b4:01:b0:7a:11:0e:0d:
79:62:be:0d:f0:bd:b6:26:d7:59:22:e0:e9:83:bf:
fc:09:26:6c:8c:c3:22:b3:55:df:bb:b7:99:7a:2b:
9c:94:86:cf:c3:67:85:56:67:75:33:e4:93:27:40:
5a:6f:ce:81:72:a3:2e:f7:84:9d:63:1a:de:c4:28:
a6:71:f4:11:9b:ba:a3:7e:65:e9:5e:76:46:5a:97:
50:9e:94:73:6b:4b:53:3a:79:cf:4f:24:51:ee:96:
fc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C7:1F:48:21:BF:43:19:03:79:51:A7:0A:48:02:6C:73:68:3C:95
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/6a05a043-22b6-349c-a2c6-1d93f9f579fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192/8583e379-1578-4044-8426-ddcb4a4a8192.crl
X509v3 Authority Key Identifier:
keyid:89:C7:5F:3F:CE:A7:5D:0D:C3:10:F9:23:2C:65:92:27:0C:63:1D:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/8583e379-1578-4044-8426-ddcb4a4a8192.cer
sbgp-ipAddrBlock: critical
IPv4:
192.154.202.0/24
192.154.205.0/24
192.154.213.0/24
192.154.253.0-192.154.255.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
99:2b:0a:26:9a:4f:f9:bf:30:b5:53:25:8d:83:34:42:c4:66:
a1:26:3b:e1:b2:39:78:b9:46:30:bf:ac:21:e7:06:dd:15:ac:
8c:83:86:63:39:d1:01:d7:9e:16:50:a5:ae:c9:7f:16:8a:0c:
ce:18:bc:f1:6b:f8:77:2b:02:c2:c8:1b:7b:8e:25:de:52:35:
f8:8b:9a:94:4e:4c:04:c6:4f:f0:95:c5:05:eb:80:69:ae:01:
5e:5c:06:b2:2e:28:27:97:cb:2f:7f:16:cb:59:dd:30:91:15:
f7:00:c6:c8:ad:61:71:6a:74:40:d1:ec:d5:5b:fd:1f:04:71:
8e:15:87:5f:de:79:ac:95:76:f7:8c:03:9f:54:07:8d:76:35:
cc:a8:c4:cb:11:c1:e3:04:78:bf:f9:d6:89:ff:da:8c:f9:12:
0b:78:3a:91:e7:4b:a7:cc:d6:db:04:83:74:2c:4f:2e:bb:cf:
33:c1:4e:f2:4d:4f:52:d0:e6:46:45:db:34:e3:b7:b9:a2:f4:
df:67:df:54:80:7b:2e:0b:4a:d6:27:d7:68:ce:92:43:03:4f:
fc:50:16:7e:8a:41:a0:1a:59:f9:63:b8:ad:d4:37:11:0c:b8:
e0:37:07:62:03:4f:7d:3d:3a:4d:82:16:e0:a9:28:7c:1f:9e:
ad:e5:62:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 7 15:01:50 2024 by rpki-client on console-fra.rpki-client.org