Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/1ea424f9-d906-32eb-bc9e-aa6785ad472d.roa
File: 1ea424f9-d906-32eb-bc9e-aa6785ad472d.roa (raw, json)
Hash identifier: f+lN1S1QSjr7rdThC67lSCwxdSzZ14zMHv8xBo4PKZI=
Subject key identifier: 8D:15:6B:F2:BF:EC:95:CB:96:94:7F:57:53:F9:4B:45:78:1D:31:03
Certificate issuer: /CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Certificate serial: 010D0C9F4328583CDA232E55F41F8019AB7CB300
Authority key identifier: 5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/1ea424f9-d906-32eb-bc9e-aa6785ad472d.roa
Signing time: Fri 20 Mar 2020 04:00:00 +0000
ROA not before: Fri 20 Mar 2020 04:00:00 +0000
ROA not after: Mon 30 Dec 2024 05:00:00 +0000
asID: 16509
IP address blocks: 64.207.199.0/24 maxlen: 24
64.207.196.0/24 maxlen: 24
64.207.197.0/24 maxlen: 24
64.207.198.0/24 maxlen: 24
64.207.204.0/24 maxlen: 24
64.207.205.0/24 maxlen: 24
64.207.222.0/24 maxlen: 24
64.207.223.0/24 maxlen: 24
67.222.248.0/24 maxlen: 24
67.222.249.0/24 maxlen: 24
67.222.250.0/24 maxlen: 24
67.222.253.0/24 maxlen: 24
67.222.254.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3c:da:23:2e:55:f4:1f:80:19:ab:7c:b3:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Validity
Not Before: Mar 20 04:00:00 2020 GMT
Not After : Dec 30 05:00:00 2024 GMT
Subject: CN=edad10d6-f1f0-4b3b-9878-ff5e5756213a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7a:31:3a:bf:3f:a8:82:6c:c1:6c:c3:0e:8c:
5e:7c:66:b1:77:ae:71:3c:32:d0:1d:1e:f4:f9:fd:
1c:92:cd:61:9b:03:94:b9:c9:4c:4f:4d:82:63:6c:
dd:04:1b:34:da:9d:25:40:c1:d9:6d:02:1c:14:23:
ed:38:49:cf:6f:f1:02:69:24:39:84:ba:c4:c0:5b:
7c:cd:6a:e4:ad:33:4d:7c:4a:19:0c:82:79:f5:d3:
38:c8:35:05:bd:8a:97:0e:16:7f:97:15:70:d8:23:
73:76:d6:19:79:4f:77:03:eb:e9:ee:52:ba:2f:12:
27:26:30:15:e8:72:8a:cc:07:5e:54:02:ed:34:cf:
15:23:a3:01:82:23:d9:e9:88:a2:ae:34:81:2a:40:
4f:f0:96:45:e9:8b:49:da:86:79:50:69:db:99:0a:
7b:ee:de:94:f0:d8:40:e3:49:0b:08:55:14:87:42:
1b:75:06:35:3a:e7:11:e9:8a:09:a3:16:40:1c:4b:
a2:19:61:23:1e:b5:a0:44:a2:6f:b7:c8:3c:52:4c:
b1:fc:05:2d:76:9d:eb:0a:18:31:e5:b1:ce:4d:b5:
88:e7:0d:7d:e5:f0:87:1d:9e:e4:35:bc:a8:77:07:
40:c5:64:40:97:28:11:89:30:3d:67:bc:06:c2:4d:
99:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:15:6B:F2:BF:EC:95:CB:96:94:7F:57:53:F9:4B:45:78:1D:31:03
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/1ea424f9-d906-32eb-bc9e-aa6785ad472d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/13ca66ad-657f-42b1-9ec3-ab39b361fadd.crl
X509v3 Authority Key Identifier:
keyid:5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
sbgp-ipAddrBlock: critical
IPv4:
64.207.196.0/22
64.207.204.0/23
64.207.222.0/23
67.222.248.0-67.222.250.255
67.222.253.0-67.222.254.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
20:de:cb:57:cf:02:18:f0:b3:df:1d:ad:42:48:e6:a1:c8:e4:
2a:f0:2a:28:34:87:54:4f:dd:78:d2:9b:ab:14:9b:ae:e5:db:
ed:16:e6:99:91:d7:79:54:dd:e8:fa:01:d3:d4:55:3f:8d:c2:
30:60:66:89:6c:dd:f4:25:01:f5:79:76:43:5c:bc:6a:43:73:
f9:46:ff:8b:2e:ad:6b:5e:fc:79:66:2b:65:91:43:8c:8f:01:
3d:3a:ff:95:a7:e6:a4:cb:ad:53:40:76:93:ba:dc:ec:89:4e:
7f:d3:e2:75:03:2f:42:a6:a1:01:ff:b8:1c:85:db:12:fd:f1:
87:76:40:f9:f6:e9:c7:88:ed:b8:5d:1f:45:38:98:08:4d:b9:
84:f1:d0:94:8a:84:b2:b1:68:35:d4:82:59:a7:ad:19:d8:83:
b8:e8:19:30:54:35:e4:0f:94:6f:55:e0:b7:14:d8:6f:b4:5a:
66:cc:63:78:2f:fe:c5:68:5b:51:cf:aa:bb:10:b4:2d:7e:99:
4f:5f:1a:55:e1:ec:6e:58:d9:c1:6f:39:76:0b:bd:25:fa:7b:
9d:62:de:43:18:5b:76:7c:2f:b4:aa:ec:5c:0c:21:ae:9e:78:
1b:94:6b:6d:8f:de:9a:d0:ba:c3:7d:c6:6a:d4:10:54:96:64:
a7:78:db:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:46:46 2024 by rpki-client on console-ams.rpki-client.org