Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
File: AS133448.roa (raw, json)
Hash identifier: RYiVI2boH4zNWwudtfgDvk7xdK/O23gM4P5pFGUT2EU=
Subject key identifier: 18:84:48:87:48:23:81:05:3E:5E:20:84:80:63:FE:ED:85:9A:F4:3C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 41EB9004259880F90298D97E9AB0BF7415F4BC34
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
Signing time: Fri 10 Nov 2023 03:00:53 +0000
ROA not before: Fri 10 Nov 2023 02:55:53 +0000
ROA not after: Fri 08 Nov 2024 03:00:53 +0000
asID: 133448
IP address blocks: 5.253.85.0/24 maxlen: 24
103.214.69.0/24 maxlen: 24
185.90.62.0/24 maxlen: 24
185.99.134.0/24 maxlen: 24
185.121.162.0/24 maxlen: 24
185.121.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 16:59:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:eb:90:04:25:98:80:f9:02:98:d9:7e:9a:b0:bf:74:15:f4:bc:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 10 02:55:53 2023 GMT
Not After : Nov 8 03:00:53 2024 GMT
Subject: CN=18844887482381053E5E20848063FEED859AF43C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:70:7b:3f:2f:86:7f:7b:be:0e:7b:e9:c7:
7c:42:ca:82:6d:61:51:a1:a8:aa:9a:b7:a6:2a:92:
b0:a0:99:3c:35:92:0f:b4:a8:7d:ad:d4:f1:d9:4b:
eb:3c:3d:a1:0c:40:4e:7a:17:35:4c:28:84:4b:f0:
f3:72:61:ca:a5:cb:27:03:4d:0b:02:d5:7f:39:26:
11:2e:71:81:6b:73:5f:fd:19:f9:a4:c3:66:64:41:
4c:4b:11:ea:18:80:c6:ec:a7:01:6e:d5:ff:bc:e8:
d4:dd:af:43:70:54:af:1d:53:a0:b6:e7:cf:21:df:
73:8c:de:58:72:13:43:15:65:4d:b0:17:f6:e0:3c:
2d:74:6a:8c:33:bd:7e:8b:30:c3:d8:3e:a2:ae:3f:
71:14:ef:33:bd:cb:82:04:28:fc:1b:83:e0:b1:b7:
23:c5:fb:c9:78:1f:4a:59:da:42:92:a7:f1:8c:c0:
ec:88:45:b5:b2:53:4f:33:9d:3a:e5:c7:e9:59:cc:
d0:93:d1:a0:47:15:ad:b7:8e:e7:37:92:1b:ca:cb:
9f:07:b6:fb:46:99:94:0d:4b:ad:f3:86:30:70:77:
4f:fa:d4:2c:75:e2:b3:03:d6:14:2b:ad:be:06:1f:
36:a4:32:89:79:f4:7d:16:28:8d:5f:5b:2e:cf:61:
ca:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:84:48:87:48:23:81:05:3E:5E:20:84:80:63:FE:ED:85:9A:F4:3C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133448.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.85.0/24
103.214.69.0/24
185.90.62.0/24
185.99.134.0/24
185.121.162.0/23
Signature Algorithm: sha256WithRSAEncryption
be:27:01:58:ca:d4:c2:d9:d4:19:90:d6:df:f1:19:e2:6f:3b:
b2:cb:d7:4d:42:77:2e:5d:e5:22:10:05:48:25:29:65:20:19:
b3:33:fd:54:a9:44:2f:1f:de:d1:f6:d2:de:c3:b5:31:96:95:
1a:86:ce:64:5c:89:84:20:a6:4c:67:dc:b4:52:4a:11:0a:a5:
1e:5a:2f:36:46:67:58:fe:43:37:7d:89:98:4b:98:ca:b1:4d:
06:27:18:fd:32:02:2c:5f:f1:5a:b9:94:6f:2f:f2:02:dd:f2:
f9:f1:31:86:b1:f3:73:da:00:8b:4b:cf:90:74:e2:cb:27:fa:
44:ef:ba:1b:87:8f:a7:58:d6:cd:8f:38:b4:ed:ac:80:79:ca:
44:05:e7:45:4c:b7:66:60:9e:07:c6:db:27:a6:46:1b:43:a8:
da:db:79:3f:f2:9f:64:e5:95:6e:6e:6a:76:48:47:2c:e2:81:
36:86:c1:79:92:aa:f7:c3:ba:50:78:9f:ff:c1:2b:14:c6:9e:
14:de:66:0e:ff:33:09:c2:b6:ef:fb:4c:db:49:03:83:1b:b6:
1f:f0:46:97:0d:55:4f:0b:37:46:3a:09:1a:23:b4:92:14:5d:
ea:4f:0d:70:53:74:ec:22:60:d7:f9:a8:e3:a8:29:23:df:2c:
24:0b:9e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 22:11:55 2024 by rpki-client on console-fra.rpki-client.org