Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
File: AS203113.roa (raw, json)
Hash identifier: VqML8muU3RzZ3Mjy1JwAAFDYjJ+3hnkdOrAAuxjMeOk=
Subject key identifier: 50:5C:55:BA:86:D6:0A:CE:0C:FF:55:C0:35:EE:4D:7E:66:9F:E3:24
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 64E89C64D2D1210510D89F09C1F0D0CFD5515A76
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 203113
IP address blocks: 2a06:a005:8c0::/44 maxlen: 48
2a06:a005:2250::/44 maxlen: 48
2a06:a005:2260::/44 maxlen: 48
2a06:a005:22f0::/44 maxlen: 48
2a06:a005:2310::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:e8:9c:64:d2:d1:21:05:10:d8:9f:09:c1:f0:d0:cf:d5:51:5a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=505C55BA86D60ACE0CFF55C035EE4D7E669FE324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2c:c7:e7:22:dc:6c:68:4b:0e:8c:88:34:20:
74:3a:26:e5:ee:d6:fa:1b:1c:f1:36:97:4b:d1:65:
c1:e6:bc:c6:18:a7:8e:45:3f:a8:a2:88:bc:d4:1c:
09:c6:12:7f:bc:ab:54:42:66:49:09:ac:11:5c:61:
91:f1:6f:e5:fe:4f:12:56:2f:12:22:4d:f8:dc:69:
38:6a:c1:8d:1b:8b:73:42:52:14:bd:5f:3f:99:72:
5b:1b:b9:4b:0e:b9:b0:a3:bf:b9:04:bf:38:6e:04:
75:7f:b3:64:67:20:9e:2b:02:25:0f:f4:f3:d1:78:
71:95:b8:75:3e:40:e8:84:6c:70:62:58:0a:be:f4:
78:cc:b7:aa:4f:c8:67:c0:57:61:34:24:4a:0e:d9:
5e:8d:05:b8:a3:06:90:94:2d:37:07:62:d6:ac:35:
9f:3e:d5:82:35:1c:6b:84:a3:05:45:5b:03:9a:4a:
75:4b:97:b8:34:82:fd:b5:59:48:c3:e0:5b:7c:95:
42:ce:10:e0:22:14:2f:26:6b:c9:37:58:60:92:ae:
6b:72:7e:77:76:2e:f9:e5:5b:fa:ff:53:fc:69:00:
87:41:37:32:3f:ae:53:27:5e:67:24:9b:09:eb:c3:
27:89:69:d8:4d:58:75:2f:e3:c5:4b:57:9a:10:8b:
87:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5C:55:BA:86:D6:0A:CE:0C:FF:55:C0:35:EE:4D:7E:66:9F:E3:24
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:8c0::/44
2a06:a005:2250::-2a06:a005:226f:ffff:ffff:ffff:ffff:ffff
2a06:a005:22f0::/44
2a06:a005:2310::/44
Signature Algorithm: sha256WithRSAEncryption
d5:0f:33:8c:8a:77:e0:71:01:f2:6b:e0:a7:ac:e9:4e:c4:b4:
b4:39:fb:ff:0b:36:09:47:56:fd:09:a5:0b:ca:49:0e:49:00:
0c:ca:48:00:8e:87:3d:37:f8:f9:48:6b:e0:4a:fb:9a:1f:01:
f4:04:fe:70:7c:24:23:65:0b:19:95:0a:48:d8:03:85:4a:c0:
30:bd:1c:29:88:ec:99:96:c5:fc:32:fa:20:58:da:18:8a:75:
ea:ce:31:1a:87:b7:4b:ba:f9:8a:e8:a4:36:92:bc:0d:0f:2a:
3d:28:f2:38:30:22:29:ca:ab:d7:bd:bf:01:57:c9:74:c6:77:
46:43:aa:1b:9b:63:b1:89:34:64:7b:51:c6:78:8a:d1:fe:6f:
2b:ca:6b:83:d8:f1:6d:af:3f:04:2d:a1:55:1e:5a:28:32:d7:
5e:db:a7:75:8f:6c:90:b3:4d:36:8f:63:ab:d2:ac:c1:9c:63:
10:1e:8c:8b:27:3a:4c:23:fd:b2:10:11:eb:7b:b0:56:a0:97:
40:89:4e:9b:f8:0a:0a:9e:cf:f3:b7:e9:84:83:fb:b6:1d:b7:
19:cc:c0:8c:96:46:3c:cf:62:de:1a:45:ec:fa:b5:8f:0a:19:
cd:ab:4a:67:1f:ea:de:c9:e2:0d:cd:a9:66:81:ea:fb:97:be:
bf:d6:da:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org