Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203040.roa
File: AS203040.roa (raw, json)
Hash identifier: yQxZevgx90hDoB+DSv7uk7m8eN9l449dhtWtUIARJ7k=
Subject key identifier: E8:3C:98:68:C6:BE:28:D8:0B:E4:77:43:48:5B:25:5F:24:31:FF:E0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7C112EDA735299010E380776433180570B3A2ECC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203040.roa
Signing time: Fri 29 Dec 2023 01:44:21 +0000
ROA not before: Fri 29 Dec 2023 01:39:21 +0000
ROA not after: Fri 27 Dec 2024 01:44:21 +0000
asID: 203040
IP address blocks: 2a06:a005:5bb::/48 maxlen: 48
2a06:a005:5e0::/48 maxlen: 48
2a06:a005:ba0::/48 maxlen: 48
2a06:a005:ba1::/48 maxlen: 48
2a06:a005:ba2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:11:2e:da:73:52:99:01:0e:38:07:76:43:31:80:57:0b:3a:2e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 29 01:39:21 2023 GMT
Not After : Dec 27 01:44:21 2024 GMT
Subject: CN=E83C9868C6BE28D80BE47743485B255F2431FFE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:49:46:aa:39:36:4e:f1:9d:c9:98:07:21:
a7:e2:60:c5:6a:81:fc:18:82:95:00:4c:e5:91:55:
80:c2:72:a6:b4:f4:41:69:a8:90:15:76:15:9b:32:
b4:0d:5c:ca:c7:87:75:d5:c6:cf:ec:09:33:a4:42:
17:9c:a0:c1:5a:2c:0f:59:2c:0a:18:99:4e:4a:59:
9e:8a:49:2d:01:c5:3a:57:4a:aa:f7:1c:3f:ad:3a:
08:76:1a:6e:84:57:10:27:06:2c:f5:d7:5e:5f:ee:
2d:a3:3a:86:f7:65:3e:09:dc:a1:ad:fd:71:6d:97:
0b:4f:b3:04:9f:3a:42:84:6e:1b:74:bd:e3:95:b5:
1b:6f:f0:c5:63:ed:e5:08:06:48:e8:e2:61:7d:d8:
00:8d:c0:ba:c4:78:ac:7b:ed:6f:3f:c2:bf:68:fb:
d5:42:04:9a:52:81:00:cc:3a:e2:d2:0a:74:57:4b:
65:82:25:d4:63:6f:cc:1d:6f:90:ce:1b:26:5f:ac:
54:55:fb:22:f1:aa:3a:b0:05:80:ab:72:76:53:b7:
cb:c9:9d:e4:be:fa:a9:ed:a9:25:d4:19:72:d3:1d:
45:1c:bc:d8:41:dd:d0:fe:e3:a5:f7:7b:c1:b9:61:
0f:46:98:5d:5d:a3:33:a8:62:98:b6:42:db:b5:3b:
81:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3C:98:68:C6:BE:28:D8:0B:E4:77:43:48:5B:25:5F:24:31:FF:E0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203040.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5bb::/48
2a06:a005:5e0::/48
2a06:a005:ba0::-2a06:a005:ba2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7c:38:9b:4a:cf:cd:60:53:b0:a9:07:f3:27:9a:46:6d:96:7f:
01:59:2b:f0:da:ee:1e:ca:cb:96:a9:c2:0f:ed:06:3a:e9:3a:
56:ff:71:7f:e9:69:a5:8d:a4:48:f0:39:38:f5:c7:1c:21:b4:
8e:9e:8a:13:61:e0:83:22:c2:53:16:97:ac:bd:61:03:99:7d:
ec:98:03:af:ea:55:fc:65:bf:c3:6e:78:86:7b:34:38:b0:09:
13:62:7d:24:2b:db:ee:85:b7:e6:b2:a1:79:21:ae:c6:13:54:
4d:8e:48:10:3e:97:ed:93:68:e3:e9:42:7d:b0:56:a4:26:64:
03:cd:0c:50:7e:04:e5:e4:50:db:2e:03:c9:d9:82:5d:3b:c7:
54:6d:fc:c5:d2:85:39:19:79:d5:31:87:5c:f7:0a:11:b1:1d:
31:14:82:54:2b:c3:bb:5f:f7:04:12:ed:ce:3e:70:2a:5b:01:
ce:7a:22:d0:0c:b9:e9:09:77:ff:9d:06:d1:da:ac:8a:ad:b5:
e4:1c:03:1d:0b:db:23:f7:29:65:d0:92:99:c7:86:d4:64:13:
ea:9a:c5:44:ea:a0:12:56:53:bd:bc:fe:38:b0:b2:67:bd:b7:
b2:59:c8:52:9c:23:e2:4c:5a:38:f7:a1:57:48:9e:be:61:c9:
63:31:26:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org