Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/467c4cac-35f0-3c6a-ac5e-8ad8a3e86190.roa
File: 467c4cac-35f0-3c6a-ac5e-8ad8a3e86190.roa (raw, json)
Hash identifier: WgML8Irqso6yJ9mXp9kA/C9NU4//267bXHlYDMShALw=
Subject key identifier: CC:59:89:6F:17:F3:E7:85:FC:17:DD:AF:87:2D:4C:17:43:50:07:DF
Certificate issuer: /CN=6876d5a8-5dd6-440a-97e2-5e20b9e00f5c
Certificate serial: 010D0C9F432858483F3A5596BB8D344D4F8C7480
Authority key identifier: A1:27:6E:C4:CF:90:E9:A7:8A:38:DD:8C:B9:B8:D1:1C:F0:17:9A:B3
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/467c4cac-35f0-3c6a-ac5e-8ad8a3e86190.roa
Signing time: Wed 18 Dec 2024 11:40:21 +0000
ROA not before: Wed 18 Dec 2024 11:40:21 +0000
ROA not after: Tue 18 Mar 2025 10:40:21 +0000
asID: 30860
IP address blocks: 66.63.180.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:3f:3a:55:96:bb:8d:34:4d:4f:8c:74:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6876d5a8-5dd6-440a-97e2-5e20b9e00f5c
Validity
Not Before: Dec 18 11:40:21 2024 GMT
Not After : Mar 18 10:40:21 2025 GMT
Subject: CN=b9f525f8-278d-42d3-a304-d887b1ec9bcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6a:14:f6:92:94:6a:e2:f4:a0:74:4c:88:a0:
51:af:a8:e2:b0:94:44:54:08:14:f8:26:e1:84:07:
fe:f8:c6:32:2c:60:c6:30:2a:dc:72:12:8c:4e:13:
8c:41:71:33:5b:a9:33:5c:17:d5:a2:17:0a:eb:5b:
99:60:77:bb:66:fd:e0:2e:94:80:35:ea:48:60:68:
af:b6:79:a8:ae:57:45:99:73:61:0e:10:c3:f7:e2:
70:47:a5:79:18:3b:62:5d:6a:aa:e2:af:e7:e0:b9:
14:a3:28:79:fe:04:4d:ba:e9:0d:eb:f0:25:59:98:
ea:80:1e:18:2d:93:56:d7:fa:9b:e0:e2:a4:ad:81:
98:3a:2c:aa:da:1f:a8:0f:fb:a6:cb:93:8a:d6:58:
06:e0:c9:38:ad:99:21:8e:00:04:9c:04:34:42:f2:
0f:7c:b2:e7:05:75:c0:5e:25:50:52:98:4e:88:0d:
5a:71:e2:03:b7:26:b3:aa:fd:e1:27:62:43:f7:ee:
78:75:0d:e0:89:65:aa:9d:2f:9d:b4:b5:b6:58:6d:
89:67:ae:35:6c:e3:35:c9:66:b5:3c:62:49:8a:aa:
48:e4:de:3d:5d:23:69:37:f6:0f:cf:8c:4d:d4:50:
86:74:eb:69:66:0a:21:ac:5c:c6:e8:14:b0:a9:af:
47:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:59:89:6F:17:F3:E7:85:FC:17:DD:AF:87:2D:4C:17:43:50:07:DF
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/467c4cac-35f0-3c6a-ac5e-8ad8a3e86190.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.crl
X509v3 Authority Key Identifier:
keyid:A1:27:6E:C4:CF:90:E9:A7:8A:38:DD:8C:B9:B8:D1:1C:F0:17:9A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/6876d5a8-5dd6-440a-97e2-5e20b9e00f5c.cer
sbgp-ipAddrBlock: critical
IPv4:
66.63.180.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
72:37:ac:40:21:4b:57:b5:46:3c:ec:87:c0:37:ea:a9:c8:c6:
6b:d5:20:d5:8a:c1:ae:00:ca:76:fd:ec:9e:d7:ab:a7:5f:de:
17:13:46:d5:3c:29:18:77:c9:54:33:7d:54:a4:5b:15:9b:d5:
aa:d2:b9:55:cc:d9:0f:2a:55:65:d6:36:ad:35:6e:7b:7f:58:
0a:a8:e1:0a:b9:53:dc:cf:a6:7f:e1:c4:b9:55:9f:81:7d:7d:
39:50:69:5c:6d:89:f4:fb:c6:39:0c:bc:30:a3:70:72:d0:6b:
39:12:02:b9:73:cb:bd:04:15:9f:90:ae:68:82:c6:3a:db:10:
d8:e5:1c:42:ea:a0:40:8d:f6:11:93:5a:29:99:15:e7:59:45:
7e:ef:d4:be:ab:71:7c:2d:d7:f0:8e:a8:9b:9b:07:3f:ec:e2:
d2:0e:9a:0e:5b:c1:3f:04:27:c1:2a:9c:0a:a1:c7:8a:0a:1c:
e6:33:eb:03:31:02:07:9e:47:d9:6f:53:62:e5:9a:a7:2d:cc:
7f:a4:b7:00:4f:0d:73:27:ba:98:5c:82:b3:ad:a2:21:99:4d:
d9:ea:9c:0f:45:81:88:21:22:86:15:bb:b4:25:ea:11:1b:db:
ac:ee:64:48:47:3f:f0:79:e8:2f:35:78:3d:1f:7c:db:51:b2:
9e:20:c5:76
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEg/OlWWu400TU+MdIAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNjg3NmQ1YTgtNWRkNi00NDBhLTk3ZTItNWUyMGI5ZTAw
ZjVjMB4XDTI0MTIxODExNDAyMVoXDTI1MDMxODEwNDAyMVowLzEtMCsGA1UEAxMk
YjlmNTI1ZjgtMjc4ZC00MmQzLWEzMDQtZDg4N2IxZWM5YmNiMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhGoU9pKUauL0oHRMiKBRr6jisJREVAgU+Cbh
hAf++MYyLGDGMCrcchKMThOMQXEzW6kzXBfVohcK61uZYHe7Zv3gLpSANepIYGiv
tnmorldFmXNhDhDD9+JwR6V5GDtiXWqq4q/n4LkUoyh5/gRNuukN6/AlWZjqgB4Y
LZNW1/qb4OKkrYGYOiyq2h+oD/umy5OK1lgG4Mk4rZkhjgAEnAQ0QvIPfLLnBXXA
XiVQUphOiA1aceIDtyazqv3hJ2JD9+54dQ3giWWqnS+dtLW2WG2JZ641bOM1yWa1
PGJJiqpI5N49XSNpN/YPz4xN1FCGdOtpZgohrFzG6BSwqa9HgwIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFMxZiW8X8+eF/Bfdr4ctTBdDUAffMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS82ODc2
ZDVhOC01ZGQ2LTQ0MGEtOTdlMi01ZTIwYjllMDBmNWMvNDY3YzRjYWMtMzVmMC0z
YzZhLWFjNWUtOGFkOGEzZTg2MTkwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k
MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvNjg3NmQ1YTgtNWRkNi00NDBhLTk3
ZTItNWUyMGI5ZTAwZjVjLzY4NzZkNWE4LTVkZDYtNDQwYS05N2UyLTVlMjBiOWUw
MGY1Yy5jcmwwHwYDVR0jBBgwFoAUoSduxM+Q6aeKON2MubjRHPAXmrMwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5
NC04ZjZjLWQ2YzkxYjBiODQxNS82ODc2ZDVhOC01ZGQ2LTQ0MGEtOTdlMi01ZTIw
YjllMDBmNWMuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAQj+0MFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBAHI3rEAhS1e1Rjzsh8A36qnIxmvVINWKwa4Aynb97J7Xq6df3hcTRtU8
KRh3yVQzfVSkWxWb1arSuVXM2Q8qVWXWNq01bnt/WAqo4Qq5U9zPpn/hxLlVn4F9
fTlQaVxtifT7xjkMvDCjcHLQazkSArlzy70EFZ+QrmiCxjrbENjlHELqoECN9hGT
WimZFedZRX7v1L6rcXwt1/COqJubBz/s4tIOmg5bwT8EJ8EqnAqhx4oKHOYz6wMx
AgeeR9lvU2LlmqctzH+ktwBPDXMnuphcgrOtoiGZTdnqnA9FgYghIoYVu7Ql6hEb
26zuZEhHP/B56C81eD0ffNtRsp4gxXY=
-----END CERTIFICATE-----
Generated at Mon Apr 28 13:40:40 2025 by rpki-client