Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/6ae550fe-6c43-317b-a9a6-6b22ba5cfcc1.roa
File: 6ae550fe-6c43-317b-a9a6-6b22ba5cfcc1.roa (raw, json)
Hash identifier: uYlP7CxEnbMrnJ5WqaTTr6x8Urdf59I2RARrRFFoyNQ=
Subject key identifier: 6A:DD:AC:88:43:0C:0F:2C:F2:5F:71:F6:77:8D:74:21:23:0B:4E:04
Certificate issuer: /CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Certificate serial: 010D0C9F4328583C8F05D2D1BBEAC2FADD5EFB00
Authority key identifier: 5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/6ae550fe-6c43-317b-a9a6-6b22ba5cfcc1.roa
Signing time: Fri 20 Mar 2020 04:00:00 +0000
ROA not before: Fri 20 Mar 2020 04:00:00 +0000
ROA not after: Wed 01 Jan 2025 05:00:00 +0000
asID: 16509
IP address blocks: 64.207.199.0/24 maxlen: 24
64.207.196.0/24 maxlen: 24
64.207.197.0/24 maxlen: 24
64.207.198.0/24 maxlen: 24
64.207.204.0/24 maxlen: 24
64.207.205.0/24 maxlen: 24
64.207.222.0/24 maxlen: 24
67.222.248.0/24 maxlen: 24
67.222.249.0/24 maxlen: 24
67.222.250.0/24 maxlen: 24
67.222.253.0/24 maxlen: 24
67.222.254.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3c:8f:05:d2:d1:bb:ea:c2:fa:dd:5e:fb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ca66ad-657f-42b1-9ec3-ab39b361fadd
Validity
Not Before: Mar 20 04:00:00 2020 GMT
Not After : Jan 1 05:00:00 2025 GMT
Subject: CN=00e6137e-cdf3-4cb6-a1a4-0bfd2e32d0b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:56:d6:96:df:88:76:69:fa:3e:ad:bd:ab:
50:dd:b0:1d:31:0e:17:d3:6f:67:24:7f:9b:b8:0e:
8e:97:ca:38:5a:4e:5d:06:29:80:31:02:55:84:d4:
e6:63:26:79:9e:dd:49:94:c8:77:20:26:20:59:e3:
6a:e1:df:ad:4c:b2:d8:93:96:bd:f0:6a:99:61:69:
e4:ae:0b:b9:d7:09:ed:3d:7e:48:ba:1c:88:6d:a8:
79:d8:b2:0e:b9:7f:ce:2a:55:05:0b:85:22:59:14:
80:75:8b:fe:ae:66:06:fd:0e:5c:48:f9:51:80:ee:
e6:ce:f4:07:49:7f:ad:7c:75:74:f7:32:a6:a1:ba:
59:67:7c:e3:f2:53:70:5c:53:7c:42:e8:4d:80:d3:
7f:20:ee:00:24:05:b9:a8:52:c5:0c:bf:0e:28:51:
bb:86:54:61:9f:c6:73:02:07:8b:0c:4d:0b:89:a1:
f4:5d:0b:cd:01:30:4f:ab:af:cf:47:ac:ef:b0:f0:
1c:9f:85:fd:60:9c:6c:2a:e6:eb:a8:aa:cd:94:69:
c0:19:c2:4a:16:26:64:b8:f3:8d:b4:0e:35:e0:86:
97:41:98:98:e8:29:f5:9c:f0:f7:d1:24:95:09:76:
00:3a:3f:2a:51:1c:c3:d6:11:f9:1f:1d:a2:e6:99:
08:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DD:AC:88:43:0C:0F:2C:F2:5F:71:F6:77:8D:74:21:23:0B:4E:04
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/6ae550fe-6c43-317b-a9a6-6b22ba5cfcc1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd/13ca66ad-657f-42b1-9ec3-ab39b361fadd.crl
X509v3 Authority Key Identifier:
keyid:5A:51:E9:57:92:52:CB:6E:79:77:7B:1C:28:F0:F2:F0:60:7B:1E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/13ca66ad-657f-42b1-9ec3-ab39b361fadd.cer
sbgp-ipAddrBlock: critical
IPv4:
64.207.196.0/22
64.207.204.0/23
64.207.222.0/24
67.222.248.0-67.222.250.255
67.222.253.0-67.222.254.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
74:88:17:56:ca:64:3c:00:e9:bf:fc:4d:53:2f:78:aa:9e:60:
9c:85:f5:7b:bd:45:16:d0:49:77:f3:76:81:10:cd:f5:f4:a4:
fb:87:10:d5:37:20:a4:f3:d8:be:3c:bb:b8:ed:e0:51:dd:c2:
8d:c3:4a:d1:91:7c:03:e3:af:52:bf:d9:c6:4d:56:e7:bf:58:
9e:c1:d9:52:12:e6:62:c0:5c:7d:b0:a3:0a:9b:7a:49:53:53:
0e:3d:1e:c2:1e:37:12:d1:e3:9d:1d:40:e6:85:82:b4:9c:34:
49:79:78:57:c4:a4:93:70:db:37:a7:9f:1d:50:7c:8b:96:9c:
2f:0e:6f:d7:bd:38:79:a8:18:0f:e2:15:1f:51:49:8f:ea:48:
26:24:29:b6:09:d7:57:ff:74:d3:29:eb:b8:88:ae:66:e8:e1:
d3:bc:5a:ee:a3:3f:c1:93:0a:35:5a:8e:d7:f1:6d:be:10:35:
a7:d1:eb:98:88:94:f9:91:e3:d3:58:47:0f:91:23:63:dd:6c:
49:c3:38:15:70:df:3c:4b:04:3d:b8:7a:ad:87:23:76:19:65:
4a:73:0e:42:ff:7d:9f:bf:35:48:58:06:fb:20:f4:58:8a:34:
a8:ce:0b:d5:e0:43:04:51:07:03:43:63:3f:ec:cb:8b:fb:58:
c9:fc:05:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 10:19:43 2025 by rpki-client