Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa
File: ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa (raw, json)
Hash identifier: Y3nXqqFxNwG3ScFF0XMNaMvDuFndPhE0hzlfZ/ihqTw=
Subject key identifier: C6:FE:FD:81:AA:03:5E:B3:C7:6F:6A:FD:40:CF:FD:D6:3A:37:87:CD
Certificate issuer: /CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Certificate serial: 010D0C9F4328583EC57DE81401F27A4AF987A190
Authority key identifier: A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa
Signing time: Fri 21 Jun 2019 10:51:11 +0000
ROA not before: Fri 21 Jun 2019 10:51:11 +0000
ROA not after: Thu 21 Jun 2029 04:00:00 +0000
asID: 21859
IP address blocks: 104.251.228.0/24 maxlen: 24
104.143.41.0/24 maxlen: 24
104.143.35.0/24 maxlen: 24
104.251.224.0/24 maxlen: 24
104.251.227.0/24 maxlen: 24
104.251.230.0/24 maxlen: 24
104.251.232.0/24 maxlen: 24
104.251.233.0/24 maxlen: 24
104.251.234.0/24 maxlen: 24
104.251.235.0/24 maxlen: 24
104.251.236.0/24 maxlen: 24
104.251.237.0/24 maxlen: 24
104.251.238.0/24 maxlen: 24
198.176.48.0/24 maxlen: 24
198.176.49.0/24 maxlen: 24
198.176.50.0/24 maxlen: 24
198.176.51.0/24 maxlen: 24
198.176.52.0/24 maxlen: 24
198.176.53.0/24 maxlen: 24
198.176.54.0/24 maxlen: 24
198.176.55.0/24 maxlen: 24
198.176.56.0/24 maxlen: 24
198.176.57.0/24 maxlen: 24
198.176.58.0/24 maxlen: 24
198.176.59.0/24 maxlen: 24
198.176.60.0/24 maxlen: 24
198.176.61.0/24 maxlen: 24
198.176.62.0/24 maxlen: 24
198.176.63.0/24 maxlen: 24
205.210.166.0/24 maxlen: 24
205.210.167.0/24 maxlen: 24
172.81.110.0/24 maxlen: 24
172.81.107.0/24 maxlen: 24
172.81.108.0/24 maxlen: 24
172.81.105.0/24 maxlen: 24
172.81.106.0/24 maxlen: 24
172.81.101.0/24 maxlen: 24
172.81.98.0/24 maxlen: 24
172.81.96.0/24 maxlen: 24
172.81.97.0/24 maxlen: 24
172.81.100.0/24 maxlen: 24
172.81.103.0/24 maxlen: 24
104.143.47.0/24 maxlen: 24
104.143.45.0/24 maxlen: 24
104.143.46.0/24 maxlen: 24
104.143.42.0/24 maxlen: 24
104.143.44.0/24 maxlen: 24
104.143.39.0/24 maxlen: 24
104.143.32.0/24 maxlen: 24
104.143.33.0/24 maxlen: 24
104.143.34.0/24 maxlen: 24
104.143.36.0/24 maxlen: 24
104.143.37.0/24 maxlen: 24
104.143.38.0/24 maxlen: 24
104.143.40.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3e:c5:7d:e8:14:01:f2:7a:4a:f9:87:a1:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Validity
Not Before: Jun 21 10:51:11 2019 GMT
Not After : Jun 21 04:00:00 2029 GMT
Subject: CN=66695c39-4a84-43a6-8006-21efdaaaf145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fe:d1:9e:13:ba:de:04:2e:db:60:8b:ff:a4:
51:e6:2a:34:f8:89:65:18:f5:61:b3:fa:18:c9:73:
d9:f9:b5:c7:98:81:84:d3:96:92:bc:e0:d8:56:3d:
ae:60:62:7c:e1:0f:79:51:dc:e7:1a:3b:16:db:b8:
8a:e8:21:0f:53:00:fe:59:90:ca:e4:a8:09:ce:b1:
fe:6a:27:22:9d:84:87:e1:c5:86:89:31:fc:6a:fc:
94:c3:14:ee:5f:1d:2c:4e:17:d3:37:2b:fd:67:52:
7c:b9:8a:04:25:ca:92:e9:29:17:7b:8a:0a:8c:de:
b8:42:e8:ee:38:c4:b0:88:f3:ae:61:f5:2d:ed:7a:
32:cd:88:ac:72:a7:75:92:a3:4a:12:79:60:4c:7f:
b0:08:eb:38:f5:85:b1:3e:ee:a6:8c:fc:86:8b:aa:
9f:f7:4f:97:b6:93:9e:2b:2e:99:12:3a:82:82:0b:
00:f2:96:41:2f:a2:68:69:1c:5d:c2:91:02:c0:71:
85:8c:b2:b6:54:53:f2:4c:ef:02:63:51:e3:c4:32:
d2:6a:6e:26:b3:cc:f7:ff:1b:95:8d:00:d4:8c:da:
86:5a:40:2b:4e:e3:db:ba:10:79:48:ec:f0:4a:4f:
89:50:27:89:31:69:cf:63:be:56:44:90:3d:50:cd:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:FE:FD:81:AA:03:5E:B3:C7:6F:6A:FD:40:CF:FD:D6:3A:37:87:CD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/ccdb6fe7-ea48-384e-bf03-0c78453e8a4f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/bc831f6b-71a6-46bb-9f64-2da80ccc244c.crl
X509v3 Authority Key Identifier:
keyid:A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
sbgp-ipAddrBlock: critical
IPv4:
104.143.32.0-104.143.42.255
104.143.44.0/22
104.251.224.0/24
104.251.227.0-104.251.228.255
104.251.230.0/24
104.251.232.0-104.251.238.255
172.81.96.0-172.81.98.255
172.81.100.0/23
172.81.103.0/24
172.81.105.0-172.81.108.255
172.81.110.0/24
198.176.48.0/20
205.210.166.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
66:81:2d:cf:ab:77:6d:bb:23:aa:45:ca:c9:ee:00:03:84:38:
2f:7e:86:84:ba:a0:4c:f8:3e:e3:cf:d9:b1:9f:37:44:72:b7:
59:d6:c2:af:4b:2a:11:e1:60:6c:dd:b5:c6:75:45:31:b0:87:
c1:4a:d0:18:79:f6:f3:eb:a8:37:e0:96:74:49:59:e1:9b:f4:
50:ed:f9:36:72:b7:92:3d:89:f0:41:99:f0:ff:1d:35:f9:c2:
33:b7:ce:a3:1f:4f:5d:89:a2:bb:a7:f3:2d:79:d0:69:74:a1:
a9:b1:97:14:e9:a4:ab:bf:63:82:84:8b:94:40:f1:45:df:cd:
00:a7:f7:ef:dd:54:b6:8c:9e:73:51:78:72:71:97:50:20:20:
a2:5b:05:b4:d7:31:53:e5:0c:36:bb:90:86:28:89:b2:c7:df:
bf:86:a2:f5:18:b0:4f:40:29:e8:8b:94:eb:5f:a3:e0:f3:46:
cd:10:5a:24:87:eb:bb:ef:5c:9e:42:7e:ad:9d:50:e7:8a:e1:
08:dd:13:14:44:76:b7:83:41:04:6a:bb:85:a9:da:86:da:a3:
fc:97:f2:df:13:30:c7:28:8b:4b:56:13:b3:5c:55:d7:e7:41:
cc:17:b7:0a:84:90:77:0c:bf:aa:69:42:cb:3d:ad:34:24:5a:
ca:a6:8b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:14:54 2024 by rpki-client on console-fra.rpki-client.org