Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203062.roa
File: AS203062.roa (raw, json)
Hash identifier: 9GMW0tfXh0nc6MYiCQyheIh/NPPT6fpwR9aDLJqL7Hk=
Subject key identifier: 9E:06:E7:12:5F:73:E8:35:41:33:4D:91:DD:5E:EF:AC:1A:F9:93:22
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 124B36DD147EEC055BC884691D87722B16B12A06
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203062.roa
Signing time: Fri 09 Feb 2024 10:44:24 +0000
ROA not before: Fri 09 Feb 2024 10:39:24 +0000
ROA not after: Fri 07 Feb 2025 10:44:24 +0000
asID: 203062
IP address blocks: 2a06:a005:1d40::/44 maxlen: 48
2a06:a005:22d0::/44 maxlen: 48
2a06:a005:22e0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:4b:36:dd:14:7e:ec:05:5b:c8:84:69:1d:87:72:2b:16:b1:2a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 9 10:39:24 2024 GMT
Not After : Feb 7 10:44:24 2025 GMT
Subject: CN=9E06E7125F73E83541334D91DD5EEFAC1AF99322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d1:b1:1e:9d:bf:ea:22:bc:92:1a:96:6a:10:
61:3e:ae:0d:21:91:79:10:c0:f1:e0:02:a8:15:8b:
f4:b1:ac:59:9b:c0:46:df:53:5b:ab:56:94:b1:1b:
d9:e6:4e:4b:d9:90:73:88:de:6e:d5:00:1e:af:a7:
a5:d7:45:12:57:2a:2f:5d:97:25:9a:da:be:96:cd:
a8:ea:bd:08:75:ab:0d:d5:48:e6:0a:95:a6:0a:77:
40:a9:00:44:c3:24:d7:30:65:c3:52:1d:28:7b:46:
54:c5:93:2a:46:0d:f8:e8:e8:46:70:6f:f2:94:72:
dc:ac:c2:32:77:3e:c7:5c:5e:c1:07:25:c4:72:98:
80:80:8c:f9:5f:94:29:18:bb:b6:cf:75:55:2f:34:
bb:14:71:70:a1:d6:6a:52:2d:18:83:56:a1:6b:4a:
65:8c:19:a3:88:73:06:e8:93:a6:34:a3:05:ef:b8:
7d:27:f1:87:2f:80:dd:98:d9:3e:5c:09:13:d5:78:
c9:25:c1:e1:68:6d:6e:d7:eb:9a:d0:2b:d3:03:52:
59:31:79:a7:7f:67:cb:6c:46:79:7f:d7:8d:a6:82:
ac:a3:55:fb:4e:d1:fa:43:d2:ac:fc:5e:a4:ed:13:
98:57:ee:36:94:b7:39:91:e2:06:e2:02:85:97:4f:
84:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:06:E7:12:5F:73:E8:35:41:33:4D:91:DD:5E:EF:AC:1A:F9:93:22
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203062.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d40::/44
2a06:a005:22d0::-2a06:a005:22ef:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
cd:0a:29:14:ba:b6:3b:8f:10:33:31:da:a0:99:af:fc:b4:7e:
ec:f6:65:92:7d:4a:3c:a4:dd:5a:7e:aa:52:4d:9d:c4:b3:6d:
bf:bf:83:bf:75:58:88:09:df:11:30:df:b6:13:e0:a6:54:9b:
2c:91:fd:61:36:3a:d1:dd:9b:3b:94:2b:0a:08:dc:17:97:f2:
45:e0:fd:3c:aa:7d:c3:a7:21:3e:38:2a:f1:18:17:1c:d5:d1:
08:c3:62:7d:d5:ed:87:2b:2f:20:3e:87:ff:b4:cc:c3:ee:4b:
d9:bc:6f:2c:8a:56:f7:ca:61:fd:47:43:f6:07:af:45:3c:3d:
1d:8b:8d:58:a5:fa:e8:18:90:e5:24:2d:8b:9d:bb:0e:b0:3f:
e0:12:47:c6:c2:38:2c:b8:2d:d9:24:06:59:aa:c0:da:93:2d:
86:b0:66:b4:b2:3d:46:f5:c0:f6:0b:a2:fc:52:b8:e6:12:42:
41:3d:92:91:20:f0:26:f0:45:bc:24:3c:fa:ed:df:03:8d:1e:
47:35:19:bd:e3:dd:25:f4:f4:4a:d2:cc:60:9e:c4:24:01:9a:
4a:84:12:9e:43:6b:b3:19:af:a5:10:21:4a:14:ff:f9:cd:a4:
1e:00:2f:13:a9:01:6b:dd:f4:a8:99:02:dd:78:3b:07:a2:17:
30:d8:b1:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org