Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/2c926695-5d0e-3eea-a763-753ccf27dd21.roa
File: 2c926695-5d0e-3eea-a763-753ccf27dd21.roa (raw, json)
Hash identifier: twciTzfRXtMYeBZgmj9aPibf6CpGizpQcawLJweqEms=
Subject key identifier: BA:45:5C:DB:D6:2F:6F:B9:5A:70:61:38:36:72:3F:01:D4:B0:60:AD
Certificate issuer: /CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Certificate serial: 010D0C9F4328583D6E678008CECAB94332C55B00
Authority key identifier: 5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/2c926695-5d0e-3eea-a763-753ccf27dd21.roa
Signing time: Fri 20 Mar 2020 04:00:00 +0000
ROA not before: Fri 20 Mar 2020 04:00:00 +0000
ROA not after: Sun 29 Dec 2024 05:00:00 +0000
asID: 16509
IP address blocks: 64.207.199.0/24 maxlen: 24
64.207.196.0/24 maxlen: 24
64.207.197.0/24 maxlen: 24
64.207.198.0/24 maxlen: 24
64.207.204.0/24 maxlen: 24
64.207.205.0/24 maxlen: 24
64.207.222.0/24 maxlen: 24
64.207.223.0/24 maxlen: 24
67.222.248.0/24 maxlen: 24
67.222.249.0/24 maxlen: 24
67.222.250.0/24 maxlen: 24
67.222.253.0/24 maxlen: 24
67.222.254.0/24 maxlen: 24
216.9.199.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3d:6e:67:80:08:ce:ca:b9:43:32:c5:5b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Validity
Not Before: Mar 20 04:00:00 2020 GMT
Not After : Dec 29 05:00:00 2024 GMT
Subject: CN=e3d00bb2-ec94-4833-88de-58d52a8962ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2a:06:be:76:9a:e2:04:46:86:1c:83:dc:d2:
c5:ee:45:bb:b1:41:e1:01:39:ef:80:5c:ee:9d:d6:
28:20:c8:40:1f:be:3f:80:bd:27:c3:4e:b6:ad:fc:
16:1d:55:d6:49:fc:fe:84:89:5e:ef:ff:9d:d1:b6:
0b:04:a0:47:19:0c:76:bc:4a:39:19:ae:64:24:db:
87:09:7f:33:55:c0:2a:89:a3:2b:57:20:9c:34:31:
80:7a:17:5b:1d:b1:8e:74:5e:6f:65:92:4a:a3:7d:
47:db:80:34:7b:d9:20:50:82:41:2b:9d:28:0a:16:
36:16:1c:c0:91:79:5b:85:51:2d:b1:44:5e:4c:de:
9b:65:28:5a:eb:c8:31:1b:22:89:e8:44:ad:9a:e0:
e8:44:d8:48:70:a6:56:99:3e:1f:c5:c1:2e:dd:bf:
17:e3:5d:19:46:87:11:22:86:dc:a9:11:33:a6:f0:
7f:b4:63:70:61:57:48:be:15:65:68:40:b7:c9:b1:
4a:42:38:44:2d:93:2c:a7:10:ac:40:af:6d:6b:38:
2f:1e:e6:91:80:62:c8:84:9d:a8:61:02:1c:c8:bd:
05:8c:b7:11:92:af:fc:a3:46:a8:d4:22:6c:4e:ba:
f5:78:b6:4b:43:dc:50:c9:40:e0:f0:fe:40:c7:41:
bc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:45:5C:DB:D6:2F:6F:B9:5A:70:61:38:36:72:3F:01:D4:B0:60:AD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/2c926695-5d0e-3eea-a763-753ccf27dd21.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/13ca66ad-657f-42b1-9ec3-ab39b361fadd.crl
X509v3 Authority Key Identifier:
keyid:5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
sbgp-ipAddrBlock: critical
IPv4:
64.207.196.0/22
64.207.204.0/23
64.207.222.0/23
67.222.248.0-67.222.250.255
67.222.253.0-67.222.254.255
216.9.199.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
b7:d4:dc:d4:2c:e8:75:c5:9d:4f:a4:df:5c:4a:75:0f:2e:a5:
d1:f8:14:2d:35:b5:d7:48:66:a6:97:92:3e:d8:e0:6e:cc:78:
fc:c2:dd:35:8f:c3:ca:46:04:1d:bb:d0:bb:33:57:5a:d3:aa:
1d:04:66:61:8e:1d:0f:63:3d:0d:54:aa:90:a9:45:f5:a8:bf:
36:bb:e8:bb:16:6d:e7:24:07:56:b9:c5:10:93:91:9c:ec:4c:
14:0d:87:a1:09:c3:67:6f:66:9c:6d:c0:e3:0a:95:9e:e3:11:
2f:9a:5e:41:e6:0d:a3:90:fb:14:c9:ea:01:e7:c1:4c:d9:11:
5b:00:78:67:8b:03:19:a9:f8:d3:93:c1:52:3c:ef:eb:42:2f:
76:20:e2:45:67:f3:95:74:d4:e5:80:5a:d3:72:4a:d5:f3:9a:
06:9a:9c:fc:11:88:a0:64:69:35:90:6e:19:a4:b2:a5:68:7d:
67:8d:10:07:e0:11:4c:d7:64:e0:1e:ed:e5:a6:87:15:86:ac:
d6:e7:6b:5a:ea:8f:ea:47:4e:39:57:45:b8:2c:f3:6c:b3:0d:
40:14:98:db:71:f6:5b:25:03:a3:bd:32:0c:ed:e3:22:45:1e:
79:79:99:4f:bb:91:d3:bb:96:ec:00:1e:9e:8e:96:2a:56:48:
fe:71:50:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:46:46 2024 by rpki-client on console-ams.rpki-client.org