Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
File: AS203061.roa (raw, json)
Hash identifier: yjPKL2U/EKU5Bb1pIpCiuAsQudbAZqiioZxWom8qN1k=
Subject key identifier: 97:EA:8A:29:80:B3:72:FE:DF:2E:94:44:58:F1:06:B0:9A:0F:3F:1B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4A633E8F321F68BC278D32E10B97EA2F360CBF2A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
Signing time: Mon 04 Sep 2023 13:21:15 +0000
ROA not before: Mon 04 Sep 2023 13:16:15 +0000
ROA not after: Mon 02 Sep 2024 13:21:15 +0000
asID: 203061
IP address blocks: 144.48.82.0/24 maxlen: 24
185.121.171.0/24 maxlen: 24
185.147.32.0/24 maxlen: 24
185.147.33.0/24 maxlen: 24
185.214.172.0/24 maxlen: 24
185.214.173.0/24 maxlen: 24
185.214.174.0/24 maxlen: 24
185.214.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:63:3e:8f:32:1f:68:bc:27:8d:32:e1:0b:97:ea:2f:36:0c:bf:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Sep 4 13:16:15 2023 GMT
Not After : Sep 2 13:21:15 2024 GMT
Subject: CN=97EA8A2980B372FEDF2E944458F106B09A0F3F1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0c:c8:1b:8b:c7:2e:f6:28:a8:a5:28:9c:29:
9e:39:a9:79:28:eb:27:52:a8:0b:a5:ce:db:b3:59:
04:2e:e2:fa:fc:3d:02:75:df:e2:c0:c2:8e:5c:d3:
5e:47:d9:2c:b1:85:8b:fb:77:31:49:1f:11:b2:70:
3d:66:48:e6:89:1e:02:ac:7c:8a:26:b0:9c:59:c5:
f6:a5:51:d0:01:02:ec:6f:e6:98:c2:cd:d7:9e:ed:
73:3d:32:57:ae:95:a9:ca:6b:37:a1:95:95:7f:51:
bf:07:5f:fa:99:2d:3b:8b:6b:5b:2c:64:39:b7:6c:
5d:e2:86:28:dd:18:80:e0:5d:71:fe:ab:28:16:a5:
bd:96:f5:48:78:da:c9:d0:24:a9:bd:1f:16:42:8c:
18:98:9c:ec:e0:28:2c:50:60:a8:e0:1a:b8:24:63:
27:f8:38:a3:5a:15:a5:ed:76:8f:30:3f:09:28:b9:
86:2b:00:91:29:33:2e:96:46:c3:cc:93:16:f0:5c:
0d:8b:b1:8a:92:a4:ff:12:42:67:7e:8b:4f:6c:1a:
0c:ce:ee:16:f2:89:f0:d9:3b:66:e9:f0:56:92:83:
95:5f:49:07:7b:d8:d5:f9:ee:a6:c9:d3:e1:76:01:
3b:e4:75:33:4d:6b:4a:59:d8:07:24:b9:b6:24:ea:
55:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EA:8A:29:80:B3:72:FE:DF:2E:94:44:58:F1:06:B0:9A:0F:3F:1B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.82.0/24
185.121.171.0/24
185.147.32.0/23
185.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:3c:36:37:23:1b:ad:e2:35:f2:e6:d4:87:0d:e5:c2:c0:e5:
85:ab:8c:86:90:46:a0:9d:01:65:a3:e0:74:a9:b0:5d:29:fc:
43:a4:2f:5f:75:0a:7a:a1:b1:27:5c:6b:79:aa:0c:67:ea:a3:
56:dc:c7:f6:ab:f0:93:fc:df:76:a7:b8:19:b6:7d:d7:ee:33:
31:02:11:19:2a:35:2e:13:29:ea:3e:5b:47:d6:64:13:31:fb:
4a:83:59:08:26:58:d7:af:81:f2:42:2c:9d:7a:90:2a:d9:cd:
72:12:a9:44:bc:72:ad:fd:0c:de:09:d7:44:8e:9b:34:5d:a5:
21:8c:d2:26:4b:30:72:92:56:0e:42:d7:ce:40:c5:25:cb:d5:
25:50:c3:ed:5c:40:df:d9:cf:4f:40:59:8d:aa:5c:ac:dc:ad:
9c:2a:29:b3:6c:23:88:31:24:9d:af:7c:b9:5c:41:c6:80:17:
8a:66:f6:dd:39:0e:26:f0:cc:8a:ac:49:df:c5:50:59:8c:a0:
48:6c:f2:de:64:f8:d0:52:62:8f:b9:7b:26:c2:10:1f:2c:41:
2f:7d:90:e7:1c:48:db:54:c5:dc:7f:1f:1e:fa:e6:7c:89:8c:
a8:dc:d7:a1:0b:f7:d1:22:74:b1:65:0d:4c:27:02:9d:18:ba:
c6:68:5f:e5
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIUSmM+jzIfaLwnjTLhC5fqLzYMvyowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzA5MDQxMzE2MTVaFw0yNDA5MDIxMzIxMTVaMDMxMTAvBgNV
BAMTKDk3RUE4QTI5ODBCMzcyRkVERjJFOTQ0NDU4RjEwNkIwOUEwRjNGMUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVDMgbi8cu9iiopSicKZ45qXko
6ydSqAulztuzWQQu4vr8PQJ13+LAwo5c015H2SyxhYv7dzFJHxGycD1mSOaJHgKs
fIomsJxZxfalUdABAuxv5pjCzdee7XM9MleulanKazehlZV/Ub8HX/qZLTuLa1ss
ZDm3bF3ihijdGIDgXXH+qygWpb2W9Uh42snQJKm9HxZCjBiYnOzgKCxQYKjgGrgk
Yyf4OKNaFaXtdo8wPwkouYYrAJEpMy6WRsPMkxbwXA2LsYqSpP8SQmd+i09sGgzO
7hbyifDZO2bp8FaSg5VfSQd72NX57qbJ0+F2ATvkdTNNa0pZ2AckubYk6lVBAgMB
AAGjggIBMIIB/TAdBgNVHQ4EFgQUl+qKKYCzcv7fLpREWPEGsJoPPxswHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAzMDYxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEH
AQH/BCIwIDAeBAIAATAYAwQAkDBSAwQAuXmrAwQBuZMgAwQCudasMA0GCSqGSIb3
DQEBCwUAA4IBAQBNPDY3Ixut4jXy5tSHDeXCwOWFq4yGkEagnQFlo+B0qbBdKfxD
pC9fdQp6obEnXGt5qgxn6qNW3Mf2q/CT/N92p7gZtn3X7jMxAhEZKjUuEynqPltH
1mQTMftKg1kIJljXr4HyQiydepAq2c1yEqlEvHKt/QzeCddEjps0XaUhjNImSzBy
klYOQtfOQMUly9UlUMPtXEDf2c9PQFmNqlys3K2cKimzbCOIMSSdr3y5XEHGgBeK
ZvbdOQ4m8MyKrEnfxVBZjKBIbPLeZPjQUmKPuXsmwhAfLEEvfZDnHEjbVMXcfx8e
+uZ8iYyo3NehC/fRInSxZQ1MJwKdGLrGaF/l
-----END CERTIFICATE-----
Generated at Fri May 3 20:12:30 2024 by rpki-client on console-ams.rpki-client.org