Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/e1b87fbb-1a67-33d3-8277-c2a7d0ad4760.roa
File: e1b87fbb-1a67-33d3-8277-c2a7d0ad4760.roa (raw, json)
Hash identifier: 8+qvSynXb6IDxcYHF9vq6oKRu5M+EXgx6xFXTYjXVAA=
Subject key identifier: EB:B1:02:89:7A:64:F9:7F:EE:57:B1:44:CA:BF:F3:1D:79:98:59:06
Certificate issuer: /CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Certificate serial: 010D0C9F43285842659E04B6466DEBCC4A445290
Authority key identifier: A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/e1b87fbb-1a67-33d3-8277-c2a7d0ad4760.roa
Signing time: Sat 01 Jul 2023 01:00:16 +0000
ROA not before: Sat 01 Jul 2023 01:00:16 +0000
ROA not after: Fri 29 Sep 2023 01:00:16 +0000
asID: 997
IP address blocks: 23.249.23.0/24 maxlen: 24
104.143.43.0/24 maxlen: 24
172.81.99.0/24 maxlen: 24
205.210.165.0/24 maxlen: 24
23.249.16.0/24 maxlen: 24
172.81.104.0/24 maxlen: 24
23.186.64.0/24 maxlen: 24
205.210.164.0/24 maxlen: 24
205.210.164.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:42:65:9e:04:b6:46:6d:eb:cc:4a:44:52:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc831f6b-71a6-46bb-9f64-2da80ccc244c
Validity
Not Before: Jul 1 01:00:16 2023 GMT
Not After : Sep 29 01:00:16 2023 GMT
Subject: CN=eb770c4e-3b6f-4005-96c8-ab27cad6c2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:58:8d:b3:77:2f:b4:68:89:a2:6c:7a:e3:3f:
14:fd:d4:b5:cf:e6:30:c7:d3:c6:0d:e7:7b:94:7c:
a6:61:43:e6:1c:85:62:a4:6c:3b:71:16:62:65:65:
d1:de:f0:84:fb:23:62:49:4c:60:02:ce:b2:e0:fe:
0b:03:d5:bc:90:da:29:17:5c:74:c3:16:cd:f9:d0:
fd:10:57:f3:8a:18:30:73:fd:60:c4:ed:2b:35:5c:
4c:ac:ed:77:31:1b:d0:43:a7:36:dd:c9:22:59:91:
09:3b:79:90:21:81:65:ef:56:a1:ad:00:c8:aa:a0:
76:c4:eb:06:07:7d:6d:c4:21:c8:0e:aa:e7:63:05:
dc:59:46:10:c3:3c:52:ef:5e:b9:ad:5d:04:1a:44:
88:34:7b:da:78:13:d8:6a:ac:27:b8:13:fd:2c:74:
64:64:3a:82:de:58:e2:84:1c:fd:45:ef:79:db:4e:
39:53:ce:d9:0f:1c:dd:16:9f:13:d1:87:54:22:3d:
a4:d7:e3:00:65:f8:e9:84:44:bb:39:01:66:f2:a3:
93:8d:32:91:b8:39:be:76:88:8c:2e:ed:69:1e:8e:
e7:d4:86:23:d7:db:b3:a4:b8:21:e6:14:4a:03:c4:
78:28:85:c3:f7:0b:99:85:e7:1d:0b:31:5e:8d:7d:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B1:02:89:7A:64:F9:7F:EE:57:B1:44:CA:BF:F3:1D:79:98:59:06
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/e1b87fbb-1a67-33d3-8277-c2a7d0ad4760.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c/bc831f6b-71a6-46bb-9f64-2da80ccc244c.crl
X509v3 Authority Key Identifier:
keyid:A9:50:46:A5:5A:7E:BB:0F:CE:06:22:BA:A4:AF:11:59:F2:3E:CD:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/bc831f6b-71a6-46bb-9f64-2da80ccc244c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.186.64.0/24
23.249.16.0/24
23.249.23.0/24
104.143.43.0/24
172.81.99.0/24
172.81.104.0/24
205.210.164.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
14:47:59:2b:04:c5:2d:4e:42:81:48:04:fb:b7:04:e2:56:3f:
20:92:fe:a0:ba:7c:f0:54:57:c3:ab:43:33:c9:50:ad:68:f0:
21:78:40:3a:38:ee:86:8c:5a:bb:8a:35:98:ec:93:9e:8e:87:
6e:e1:29:90:f7:34:2a:63:4a:6f:9e:90:d2:d6:b4:94:04:90:
66:85:09:a9:f4:b2:db:95:51:4b:f4:f6:9e:de:c4:ae:af:f8:
5b:0d:d9:56:84:6f:78:d8:5b:38:a1:5f:ae:6c:c2:69:d1:a2:
34:d4:12:de:b4:78:be:e0:5a:4f:bd:a4:d9:81:fe:23:90:26:
63:a3:0b:02:14:8a:fc:97:c3:5d:15:e6:d4:7e:14:eb:01:6b:
14:93:6d:53:b0:7b:00:42:18:4d:b7:ec:ba:62:c9:4d:fe:47:
29:8e:a7:e9:ba:de:b5:ae:28:d8:66:a2:15:4f:27:26:57:35:
af:f6:fe:ff:ec:90:c9:b5:81:9d:0b:df:fa:b2:28:ee:0e:94:
c1:ec:3d:61:02:ed:82:c0:be:75:fe:a4:76:43:41:79:b2:47:
6a:3f:5d:0f:a5:80:ae:2c:52:d4:28:de:1e:59:93:cb:ab:6d:
62:5d:d9:eb:30:6c:e9:c5:07:da:a8:6c:d4:5f:3e:fc:e3:75:
bc:aa:9e:5d
-----BEGIN CERTIFICATE-----
MIIGZzCCBU+gAwIBAgIUAQ0Mn0MoWEJlngS2Rm3rzEpEUpAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkYmM4MzFmNmItNzFhNi00NmJiLTlmNjQtMmRhODBjY2My
NDRjMB4XDTIzMDcwMTAxMDAxNloXDTIzMDkyOTAxMDAxNlowLzEtMCsGA1UEAxMk
ZWI3NzBjNGUtM2I2Zi00MDA1LTk2YzgtYWIyN2NhZDZjMmFkMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1iNs3cvtGiJomx64z8U/dS1z+Ywx9PGDed7
lHymYUPmHIVipGw7cRZiZWXR3vCE+yNiSUxgAs6y4P4LA9W8kNopF1x0wxbN+dD9
EFfzihgwc/1gxO0rNVxMrO13MRvQQ6c23ckiWZEJO3mQIYFl71ahrQDIqqB2xOsG
B31txCHIDqrnYwXcWUYQwzxS7165rV0EGkSINHvaeBPYaqwnuBP9LHRkZDqC3lji
hBz9Re952045U87ZDxzdFp8T0YdUIj2k1+MAZfjphES7OQFm8qOTjTKRuDm+doiM
Lu1pHo7n1IYj19uzpLgh5hRKA8R4KIXD9wuZhecdCzFejX03rQIDAQABo4IDeTCC
A3UwHQYDVR0OBBYEFOuxAol6ZPl/7lexRMq/8x15mFkGMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iYzgz
MWY2Yi03MWE2LTQ2YmItOWY2NC0yZGE4MGNjYzI0NGMvZTFiODdmYmItMWE2Ny0z
M2QzLTgyNzctYzJhN2QwYWQ0NzYwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvYmM4MzFmNmItNzFhNi00NmJiLTlm
NjQtMmRhODBjY2MyNDRjL2JjODMxZjZiLTcxYTYtNDZiYi05ZjY0LTJkYTgwY2Nj
MjQ0Yy5jcmwwHwYDVR0jBBgwFoAUqVBGpVp+uw/OBiK6pK8RWfI+zSQwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS9iYzgzMWY2Yi03MWE2LTQ2YmItOWY2NC0yZGE4
MGNjYzI0NGMuY2VyMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAF7pAAwQA
F/kQAwQAF/kXAwQAaI8rAwQArFFjAwQArFFoAwQBzdKkMFQGA1UdIAEB/wRKMEgw
RgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQv
cmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBABRHWSsE
xS1OQoFIBPu3BOJWPyCS/qC6fPBUV8OrQzPJUK1o8CF4QDo47oaMWruKNZjsk56O
h27hKZD3NCpjSm+ekNLWtJQEkGaFCan0stuVUUv09p7exK6v+FsN2VaEb3jYWzih
X65swmnRojTUEt60eL7gWk+9pNmB/iOQJmOjCwIUivyXw10V5tR+FOsBaxSTbVOw
ewBCGE237LpiyU3+RymOp+m63rWuKNhmohVPJyZXNa/2/v/skMm1gZ0L3/qyKO4O
lMHsPWEC7YLAvnX+pHZDQXmyR2o/XQ+lgK4sUtQo3h5Zk8urbWJd2eswbOnFB9qo
bNRfPvzjdbyqnl0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:47:55 2024 by rpki-client on console-ams.rpki-client.org