Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
File: AS203061.roa (raw, json)
Hash identifier: F5rLyOjBpvvA9swOoEQxnZQC16R3vWAWWS2vFPwWi58=
Subject key identifier: AD:47:84:4A:54:87:FD:57:41:ED:1D:AC:57:75:9C:EB:83:02:63:A0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 30837DC67B4BFC2AC15421F6649B13110D9C124B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
Signing time: Mon 05 Aug 2024 13:39:58 +0000
ROA not before: Mon 05 Aug 2024 13:34:58 +0000
ROA not after: Mon 04 Aug 2025 13:39:58 +0000
asID: 203061
IP address blocks: 144.48.82.0/24 maxlen: 24
185.121.171.0/24 maxlen: 24
185.147.32.0/24 maxlen: 24
185.147.33.0/24 maxlen: 24
185.214.172.0/24 maxlen: 24
185.214.173.0/24 maxlen: 24
185.214.174.0/24 maxlen: 24
185.214.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:83:7d:c6:7b:4b:fc:2a:c1:54:21:f6:64:9b:13:11:0d:9c:12:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Aug 5 13:34:58 2024 GMT
Not After : Aug 4 13:39:58 2025 GMT
Subject: CN=AD47844A5487FD5741ED1DAC57759CEB830263A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:84:f2:4c:dd:52:f7:86:b4:2d:8d:51:45:da:
04:ed:dc:3a:10:a3:c2:36:35:23:83:3b:41:fa:62:
2f:90:ec:70:54:da:f1:b9:83:8b:c0:b7:16:f8:ba:
77:e5:60:bd:3a:e6:76:91:89:65:a9:e0:7b:58:80:
4e:35:97:e1:84:34:98:34:50:0e:ee:b8:b6:ff:27:
34:4d:52:59:78:ef:e4:b5:ec:fe:05:0c:a3:67:6b:
f7:63:57:f8:fb:0d:74:71:3d:32:f3:f9:7e:fc:e2:
74:d8:a9:0a:25:27:80:55:4b:a0:7f:c3:8d:11:81:
b2:47:d2:b4:72:74:e9:4a:4e:bc:ce:9b:77:8b:8b:
9c:1c:51:47:75:a2:dc:0f:b5:2d:f6:3d:39:6e:24:
a4:f3:7a:6e:68:03:28:89:fc:95:21:a5:4f:45:9a:
46:44:89:5e:6a:f3:a8:f5:5e:a5:4f:6d:7e:a9:31:
64:c5:89:43:75:ec:d7:c7:11:98:08:22:51:79:a5:
e3:6b:e3:14:4c:99:16:f2:a0:63:0c:e3:d6:e0:2f:
20:26:4f:87:fd:a2:67:f3:84:3a:9b:1b:ee:3f:e1:
f2:59:13:f3:29:36:09:b7:99:49:67:c8:fc:b7:b0:
ea:ec:df:d0:87:a6:5d:5f:36:66:d4:b5:d5:c0:ec:
b0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:47:84:4A:54:87:FD:57:41:ED:1D:AC:57:75:9C:EB:83:02:63:A0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203061.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.82.0/24
185.121.171.0/24
185.147.32.0/23
185.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:2b:f4:5c:cd:a8:ce:18:2a:9e:40:fe:15:22:b7:d4:08:8f:
57:1a:71:29:bc:af:3c:39:ab:b8:aa:48:21:19:8d:ca:1a:62:
7b:19:39:47:a8:c1:bb:f1:32:4c:12:ab:ec:4c:26:93:c2:bb:
b0:fa:09:9a:87:7d:5b:d4:34:8f:b0:78:17:cb:10:92:02:c0:
73:fd:cf:36:55:ec:02:3a:28:60:f0:05:0b:b5:fb:8c:32:76:
ac:01:99:62:93:5e:7f:db:93:83:1f:9d:36:d4:0d:ef:60:9b:
0f:34:66:5b:ac:ed:27:04:40:40:d1:1f:32:f1:b9:22:a8:ef:
9d:2a:f9:dc:a4:74:d8:2f:ec:e7:36:0f:c9:1c:c0:6f:db:52:
51:3e:9e:90:f3:29:13:13:13:ad:a2:16:b9:36:cb:58:83:30:
2d:37:0e:75:9a:12:90:d9:ec:ae:a6:ab:a9:11:ab:25:cf:d4:
6a:74:ef:4a:96:a2:93:22:39:41:2b:28:d8:26:aa:00:04:5f:
ee:f8:61:f8:11:95:4c:dd:82:1c:07:73:11:30:49:66:37:b0:
08:48:6e:7e:b7:e6:fa:71:d6:e9:90:0d:67:d8:aa:c5:9f:ee:
09:f7:19:e4:bb:bc:60:75:0a:fa:66:ec:1d:52:21:78:06:f6:
59:f0:5a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:45:54 2024 by rpki-client on console-ams.rpki-client.org