Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203005.roa
File: AS203005.roa (raw, json)
Hash identifier: AELtikqeSmRNjhcdqLfQaf0Q56rn/xbOwk2B54zF8FU=
Subject key identifier: 43:97:88:B0:CD:FF:32:5B:4C:61:A8:DE:47:1C:9C:A9:BE:1E:28:6A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 624E54BE95BB03236AF14C6FC2274AE5CC7815BD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203005.roa
Signing time: Tue 05 Dec 2023 02:44:19 +0000
ROA not before: Tue 05 Dec 2023 02:39:19 +0000
ROA not after: Tue 03 Dec 2024 02:44:19 +0000
asID: 203005
IP address blocks: 2a06:a005:d2a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:4e:54:be:95:bb:03:23:6a:f1:4c:6f:c2:27:4a:e5:cc:78:15:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:19 2023 GMT
Not After : Dec 3 02:44:19 2024 GMT
Subject: CN=439788B0CDFF325B4C61A8DE471C9CA9BE1E286A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:d8:4a:54:1c:e9:eb:37:93:02:30:5a:27:
63:6d:cd:14:10:b6:34:9b:ed:d9:fb:f1:18:dd:ad:
51:47:d5:68:82:64:f3:14:2f:50:de:8e:67:1d:5d:
88:3b:2d:02:3c:71:f3:be:43:7d:6e:48:58:02:c6:
c5:e4:4d:f8:cf:e4:c9:92:c8:05:4a:0c:40:50:0d:
d4:1f:6d:48:02:a0:06:36:39:4e:5e:64:2c:7b:62:
48:a6:ad:be:62:6d:cc:2f:2a:de:c1:f3:31:62:4c:
79:96:0c:11:47:bf:f0:89:a9:2b:19:d5:4c:db:e7:
62:6d:ba:24:6c:9a:c1:d6:52:af:4f:49:d1:77:f8:
d3:38:d1:38:dd:e8:0e:b3:6c:51:86:e3:c2:3f:f6:
10:92:11:4b:17:d4:10:d4:77:00:58:e3:9f:56:da:
cc:1e:d2:c6:df:5e:52:d1:e4:19:82:ce:be:a0:3b:
82:19:f6:90:0e:29:65:2b:59:d4:6c:17:7f:60:a8:
22:4c:62:79:83:73:72:d5:fc:c4:e6:6c:4e:1c:09:
ed:17:4a:fa:62:a1:9d:42:7a:d2:19:b9:da:c8:4b:
df:4f:d5:f2:9f:a8:8c:47:39:e0:ca:0b:87:e7:b8:
68:da:b3:02:29:c7:85:9a:8f:dd:67:87:c3:c9:92:
c8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:97:88:B0:CD:FF:32:5B:4C:61:A8:DE:47:1C:9C:A9:BE:1E:28:6A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203005.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d2a::/48
Signature Algorithm: sha256WithRSAEncryption
80:cc:e4:38:ee:45:f6:d3:15:3d:85:53:ed:0d:6e:f9:eb:c4:
67:92:d8:91:bb:93:f6:a6:4c:d5:3c:f7:97:c0:76:5f:9a:b2:
7d:41:45:77:97:6d:3e:df:ca:3b:32:fa:22:88:e6:66:e2:7d:
2a:33:c7:60:4e:34:37:4f:71:91:f2:f4:07:5b:1c:9d:6b:f5:
79:36:c5:33:c4:32:80:d9:17:e6:33:e5:dc:23:e4:35:9d:5d:
58:c6:cb:2c:cf:85:3f:94:2d:97:99:c5:7a:d4:d8:90:7c:75:
93:7d:d8:1c:ae:c1:36:94:51:5f:c2:e1:85:58:fc:71:61:2e:
40:91:a6:2d:8f:33:07:36:9f:4b:53:23:74:74:9e:a7:a3:87:
1a:10:77:95:12:54:c5:98:fc:38:f7:87:9e:44:05:13:1d:5d:
39:2f:74:0d:4e:26:c5:5a:97:78:5f:bd:59:2f:7e:35:12:77:
70:f5:61:6a:08:91:cc:39:09:c1:06:b0:37:63:fc:48:4b:cf:
eb:1a:f4:d7:99:72:bc:e1:3a:b3:db:c1:88:11:96:09:ce:3d:
58:e8:79:38:20:3d:52:b5:47:00:33:6a:cb:47:34:17:be:e0:
37:3e:e6:0c:e0:1f:c2:20:52:1d:1f:1f:aa:0e:de:d1:1d:4a:
45:38:83:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org