Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
File: AS133448.roa (raw, json)
Hash identifier: JmjCh+XFG4lfoN7ptWGTdq0S4Sfd+vYDkAy7ZKk6kVI=
Subject key identifier: 9D:A2:82:32:4B:3F:F5:A2:29:55:40:B2:1A:FA:30:44:78:8F:E5:25
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2B13B8948CC9E96211893795553C3BFE2F759738
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
Signing time: Fri 11 Oct 2024 03:39:59 +0000
ROA not before: Fri 11 Oct 2024 03:34:59 +0000
ROA not after: Fri 10 Oct 2025 03:39:59 +0000
asID: 133448
IP address blocks: 5.253.85.0/24 maxlen: 24
103.214.69.0/24 maxlen: 24
185.90.62.0/24 maxlen: 24
185.99.134.0/24 maxlen: 24
185.121.162.0/24 maxlen: 24
185.121.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:13:b8:94:8c:c9:e9:62:11:89:37:95:55:3c:3b:fe:2f:75:97:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Oct 11 03:34:59 2024 GMT
Not After : Oct 10 03:39:59 2025 GMT
Subject: CN=9DA282324B3FF5A2295540B21AFA3044788FE525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d3:9d:ed:71:59:02:60:a1:62:26:52:1e:5f:
ea:99:c2:b8:cb:ed:a3:a1:64:2f:1d:14:58:62:e5:
63:f5:a4:b2:5f:14:a5:a0:f2:3a:5c:c7:dc:fa:80:
9b:20:3a:9a:8d:80:6a:54:3b:f6:d8:c7:bc:ca:31:
fe:5e:39:ea:32:4a:2a:a2:fa:a9:1a:01:16:a0:cc:
96:af:c9:26:52:b4:09:14:5a:6b:ea:c5:d0:f5:de:
b3:ac:2a:ff:fb:a1:58:c9:d0:8c:85:d4:73:28:c3:
c9:3d:e8:de:92:9c:5b:94:55:b1:40:dc:80:c7:6c:
8c:37:f4:d5:79:54:a5:86:5b:88:d2:56:21:63:0f:
a7:49:c3:89:ff:d6:f2:0b:b4:e5:ca:b8:f3:c0:90:
d6:cc:1f:6d:ed:e0:9e:46:19:f1:24:52:5c:1c:bc:
20:25:27:4d:d9:2a:d6:80:63:70:01:be:3e:3b:57:
59:59:56:5f:f2:90:3e:36:bf:35:b5:cd:6a:5b:25:
65:2c:7d:0c:ca:af:f6:de:c4:0f:eb:5f:5f:f4:f4:
07:cf:d2:52:10:e5:ac:9b:c3:fe:f5:22:2f:77:5e:
de:19:55:15:e7:3d:66:2b:43:88:3c:93:01:bc:2d:
a5:51:e3:39:55:60:a1:7c:e7:d5:84:ba:c1:f8:4d:
0d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A2:82:32:4B:3F:F5:A2:29:55:40:B2:1A:FA:30:44:78:8F:E5:25
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.85.0/24
103.214.69.0/24
185.90.62.0/24
185.99.134.0/24
185.121.162.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:27:7d:9e:50:50:24:4d:48:25:af:76:82:dd:e8:7d:c6:a9:
4b:34:e6:0e:9a:5f:36:43:dd:bd:80:49:95:50:f0:4b:ab:7b:
ca:d3:7b:32:22:8a:5a:bd:44:5a:07:ef:5c:f9:8e:a3:dc:1e:
86:c3:6d:0a:4e:a4:fe:0d:24:4c:96:d0:c5:61:a5:f4:c9:c4:
71:1d:5d:10:e0:c8:bb:6f:f8:f6:d0:d2:1e:af:93:f7:21:55:
43:6a:a8:36:1f:fe:62:57:05:d3:ae:13:50:7c:54:ec:5d:f4:
c4:a1:4b:bb:43:19:ec:03:d9:fc:2e:b3:5f:6a:fd:fd:be:f6:
82:c6:14:c9:31:51:04:84:63:2a:e2:e8:e1:42:0d:97:4c:07:
f7:fd:9c:ab:61:5c:8a:51:37:c9:91:2e:ed:da:39:e9:a3:6d:
54:f9:6a:2b:e2:67:ac:a6:a4:62:00:90:17:64:f2:0b:44:a2:
a9:66:bd:51:ab:a4:98:12:d1:11:88:f6:2e:53:93:c2:07:b2:
22:2e:b7:bb:b5:96:09:c0:b7:4c:9c:0d:d8:d0:c6:e6:0c:6a:
d8:4d:6f:ed:4e:2e:cf:1a:e0:de:4a:bc:4a:0e:94:7e:46:dc:
1f:15:87:43:df:14:c9:18:ff:9d:fa:35:c7:21:16:67:19:fd:
08:fa:00:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:46:00 2025 by rpki-client