Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80/a1be113c-88c8-3cf0-918a-5a49644d6717.roa
File: a1be113c-88c8-3cf0-918a-5a49644d6717.roa (raw, json)
Hash identifier: M7HTGbE65T8cfnhSX0cdnIQyX4JVX0qOvIOYX4FTsn4=
Subject key identifier: 12:15:24:9E:FA:31:EA:AE:87:1D:16:77:2F:08:DF:29:74:19:AC:3D
Certificate issuer: /CN=c91a680c-10f9-4064-bc75-a0790274df80
Certificate serial: 010D0C9F4328584340C4D1A0CA984BC055808280
Authority key identifier: 72:D0:5A:6C:61:A1:F7:5E:F3:5F:7B:6C:A8:85:ED:E3:A4:AE:A3:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80/a1be113c-88c8-3cf0-918a-5a49644d6717.roa
Signing time: Sun 17 Sep 2023 13:00:24 +0000
ROA not before: Sun 17 Sep 2023 13:00:24 +0000
ROA not after: Sat 16 Dec 2023 14:00:24 +0000
asID: 1239
IP address blocks: 216.180.232.0/23 maxlen: 24
216.180.231.0/24 maxlen: 24
216.180.225.0/24 maxlen: 24
216.180.228.0/23 maxlen: 24
216.180.226.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:40:c4:d1:a0:ca:98:4b:c0:55:80:82:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91a680c-10f9-4064-bc75-a0790274df80
Validity
Not Before: Sep 17 13:00:24 2023 GMT
Not After : Dec 16 14:00:24 2023 GMT
Subject: CN=e5397359-9530-4132-8ee1-e48ae868849d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fe:57:aa:34:ff:ec:a1:73:df:d5:8e:eb:94:
6e:c1:e7:3a:fc:03:c8:9f:8b:12:dc:e7:00:fe:40:
4a:fd:bb:01:11:8f:0d:13:54:e5:00:8a:37:7b:d1:
28:f2:0f:e0:41:9a:8e:65:63:9f:5d:5e:ce:e6:be:
1d:25:11:1b:5c:7f:38:e9:d8:12:55:67:d3:06:81:
b9:04:67:c7:40:1f:ea:6d:03:10:c7:0f:3d:be:63:
9a:a8:23:6d:b0:28:21:2a:8c:aa:9b:d9:f1:c4:91:
15:af:bf:7a:2d:f7:42:2b:e8:0e:91:d4:41:5b:63:
a1:ac:78:1b:56:98:c3:6d:45:74:f4:c5:18:b3:07:
1e:8e:1f:8a:6b:ea:90:95:61:46:09:7a:b8:25:31:
e6:93:c7:63:76:5a:9a:e4:22:6e:ee:d3:61:07:45:
20:cb:5a:bc:7a:a3:77:25:88:15:7f:68:3d:a7:8e:
bd:53:79:94:08:53:13:2a:06:b6:f2:aa:c1:bf:43:
22:49:b3:a9:a4:9e:f8:c1:37:e4:27:7a:bc:35:72:
af:00:2d:26:ee:8b:e3:8f:c0:e1:28:c6:88:54:0c:
58:34:cc:ae:5d:c0:c0:c6:db:1b:2c:14:2e:89:9e:
3c:7c:9d:45:7a:e6:5f:e4:8a:24:f5:d3:01:e2:d5:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:15:24:9E:FA:31:EA:AE:87:1D:16:77:2F:08:DF:29:74:19:AC:3D
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80/a1be113c-88c8-3cf0-918a-5a49644d6717.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80/c91a680c-10f9-4064-bc75-a0790274df80.crl
X509v3 Authority Key Identifier:
keyid:72:D0:5A:6C:61:A1:F7:5E:F3:5F:7B:6C:A8:85:ED:E3:A4:AE:A3:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/c91a680c-10f9-4064-bc75-a0790274df80.cer
sbgp-ipAddrBlock: critical
IPv4:
216.180.225.0-216.180.229.255
216.180.231.0-216.180.233.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
33:dd:19:9a:a2:29:67:0b:d2:ea:15:8b:41:84:9d:12:11:8a:
3b:2e:24:38:96:40:01:0c:26:db:3a:68:06:e1:32:ea:d8:69:
1b:57:b3:4b:ad:8c:8a:99:de:90:ce:a3:64:66:10:4b:02:07:
ff:38:9d:4f:c5:c8:eb:9c:59:8c:6b:ff:08:0a:0e:8c:7a:f9:
88:00:03:95:a5:36:a2:5d:9e:d2:7c:1b:ab:7a:a1:28:f4:3d:
b0:77:85:11:05:3f:d5:64:7f:e8:f6:5f:eb:8d:87:ad:83:1c:
6d:1e:e5:42:1b:97:56:a9:28:40:0a:b0:89:7c:02:7b:4b:d4:
21:77:08:a4:66:f5:43:70:e9:2d:c4:cd:39:aa:27:b0:25:52:
86:1b:4a:bd:fb:67:ba:8f:9b:58:55:92:ce:b6:ee:bb:fe:62:
e3:c9:bc:d5:41:2c:4b:49:59:9f:24:74:6b:ee:d2:d5:cc:81:
7f:e5:61:85:d5:9e:86:71:bd:e8:79:e6:22:3d:cf:be:a2:6c:
89:03:05:86:bd:10:1d:88:8e:73:d3:1b:f4:4f:23:78:d1:48:
3e:80:10:ff:f5:71:67:bc:5f:74:52:06:35:cb:0c:2f:af:af:
78:9d:16:d9:89:27:87:51:82:30:9a:dd:8b:6d:19:ee:08:8c:
af:9c:c6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 15:20:18 2023 by rpki-client on console-fra.rpki-client.org