Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/67523c2f-4c29-3fcb-b32c-4dd1c5e6c877.roa
File: 67523c2f-4c29-3fcb-b32c-4dd1c5e6c877.roa (raw, json)
Hash identifier: ZFoSsofRtPQSCdnDdKQWjxo26LE/DbOBQo8ZtgK3qVI=
Subject key identifier: 99:82:35:42:15:59:F3:FD:E1:7E:6F:66:C8:DB:59:FA:CE:7F:8B:B2
Certificate issuer: /CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Certificate serial: 010D0C9F43285842659E043775FF5B489EC09800
Authority key identifier: A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/67523c2f-4c29-3fcb-b32c-4dd1c5e6c877.roa
Signing time: Sat 01 Jul 2023 01:00:16 +0000
ROA not before: Sat 01 Jul 2023 01:00:16 +0000
ROA not after: Fri 29 Sep 2023 01:00:16 +0000
asID: 18254
IP address blocks: 205.210.165.0/24 maxlen: 24
172.81.99.0/24 maxlen: 24
104.143.43.0/24 maxlen: 24
205.210.164.0/24 maxlen: 24
23.249.23.0/24 maxlen: 24
23.186.64.0/24 maxlen: 24
172.81.104.0/24 maxlen: 24
23.249.16.0/24 maxlen: 24
205.210.164.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:42:65:9e:04:37:75:ff:5b:48:9e:c0:98:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Validity
Not Before: Jul 1 01:00:16 2023 GMT
Not After : Sep 29 01:00:16 2023 GMT
Subject: CN=ff924671-7714-4e00-826d-a45ce0c7716c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:98:0d:26:02:df:8c:32:88:18:29:3f:51:24:
85:d7:96:c4:02:0f:9a:3a:48:0b:3d:6f:13:4e:47:
fd:b7:f2:65:3f:84:65:e6:0e:2d:1c:40:6f:56:de:
cc:cb:87:da:e4:f5:74:7c:31:30:00:27:67:ac:6e:
30:9e:9a:49:f2:41:29:9f:34:59:1e:98:48:a0:c5:
96:cf:b4:dc:a2:d2:d9:aa:c0:ce:a6:e2:ce:eb:30:
ba:7f:78:db:a0:05:fe:b9:6d:c6:ec:fa:5f:cf:04:
be:a7:35:40:ca:46:94:dd:54:5c:39:d2:5e:20:87:
d9:21:f3:ae:8b:99:d0:d2:90:58:b0:49:23:d8:69:
ad:e8:35:7b:6b:8f:46:7c:b0:8e:a8:9f:fc:a8:c5:
71:2c:8c:68:35:98:6a:10:f2:73:a4:d8:00:5f:ba:
08:e8:fa:97:c0:05:27:fe:2e:51:c5:e7:f2:05:f2:
1a:2b:67:97:51:39:3d:ec:74:b1:89:25:c6:61:3f:
eb:ac:42:cf:a8:3e:6c:dd:e2:65:e1:00:8f:2f:60:
da:56:a9:87:94:ba:ae:8d:5f:92:a3:6f:26:38:4b:
63:4f:21:59:19:91:36:ed:e3:a1:62:33:5e:a5:01:
63:72:a1:5d:43:d7:16:e3:54:2a:c1:a3:4a:4a:40:
48:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:82:35:42:15:59:F3:FD:E1:7E:6F:66:C8:DB:59:FA:CE:7F:8B:B2
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/67523c2f-4c29-3fcb-b32c-4dd1c5e6c877.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/bc831f6b-71a6-46bb-9f64-2da80ccc244c.crl
X509v3 Authority Key Identifier:
keyid:A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.186.64.0/24
23.249.16.0/24
23.249.23.0/24
104.143.43.0/24
172.81.99.0/24
172.81.104.0/24
205.210.164.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
7a:dd:da:7f:ac:46:30:7d:f9:22:c3:6e:4a:34:46:34:32:7e:
cb:6c:2c:36:44:aa:fc:f3:b0:8c:5f:11:34:d9:34:0b:fb:b8:
cf:18:4e:b2:6a:36:ef:d9:a2:0a:0c:b5:09:07:c9:ac:7d:49:
1a:ba:25:58:dd:5a:05:be:71:99:fb:e2:86:56:21:2a:14:ed:
4a:34:bd:9e:11:bc:fb:e3:ae:3a:27:a8:39:19:68:54:d7:49:
20:6a:fd:01:5d:8e:8c:12:61:56:44:ed:ea:43:07:e4:fa:da:
ae:c4:a7:c3:c1:fc:39:e5:ce:f9:7f:84:4c:77:2e:c6:3b:5b:
bd:1d:37:2e:67:43:52:e5:b1:b0:ef:66:84:9f:b4:bc:7a:6c:
23:47:bb:63:18:fe:a2:2f:8b:d3:88:9f:60:ab:00:2e:b6:44:
30:fa:a0:dd:06:11:1f:a2:e3:b3:d8:80:3f:e1:28:5f:0d:d5:
0e:76:f0:b1:ad:b9:f7:7b:9f:24:a3:4b:e4:0f:5f:1a:a6:42:
7b:cb:df:53:54:18:e8:9f:e6:cf:97:5a:b7:43:e5:46:df:c6:
42:ca:05:75:a2:86:36:9c:a4:12:03:16:ff:3b:31:6a:ac:f4:
7f:6c:84:82:a5:ec:f1:79:79:c0:15:b1:d1:6d:05:e2:dd:b2:
d5:db:71:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:14:54 2024 by rpki-client on console-fra.rpki-client.org