Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
File: AS203113.roa (raw, json)
Hash identifier: DKeJdSm9lNduaoLKa5gdlf7hzC2I2c3HkFZwr5l80C8=
Subject key identifier: E3:B0:82:53:FF:83:2B:D7:FC:EC:D9:F4:04:88:40:D7:FA:35:49:67
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 74A74C14F5C34409571FB360102C2B34A3636875
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
Signing time: Tue 05 Nov 2024 03:40:02 +0000
ROA not before: Tue 05 Nov 2024 03:35:02 +0000
ROA not after: Tue 04 Nov 2025 03:40:02 +0000
asID: 203113
IP address blocks: 2a06:a005:8c0::/44 maxlen: 48
2a06:a005:2250::/44 maxlen: 48
2a06:a005:2260::/44 maxlen: 48
2a06:a005:22f0::/44 maxlen: 48
2a06:a005:2310::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:a7:4c:14:f5:c3:44:09:57:1f:b3:60:10:2c:2b:34:a3:63:68:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:02 2024 GMT
Not After : Nov 4 03:40:02 2025 GMT
Subject: CN=E3B08253FF832BD7FCECD9F4048840D7FA354967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:22:93:0b:cf:48:b8:55:40:51:fa:27:f4:
5d:35:4c:57:b1:70:dd:69:37:31:96:1d:a4:a5:49:
05:3c:67:a0:b4:cb:d8:29:d6:62:89:55:8c:cd:46:
8f:08:d6:73:f8:b6:fb:d6:62:85:e1:21:7a:7b:dd:
87:33:13:fa:3f:3e:45:d0:ae:1e:34:c0:89:e4:da:
d9:2d:24:3c:e8:d6:ba:bb:b3:eb:7a:65:f6:aa:40:
8c:7f:a8:46:e6:75:53:97:8b:68:69:c1:9c:06:b9:
ba:15:8b:81:be:8e:c8:82:d0:8b:40:92:72:e5:6f:
99:e8:8f:cd:70:08:e0:ca:b7:33:47:83:8a:4e:e4:
a0:30:d5:7f:50:c6:ad:5f:e8:3f:3f:4b:7a:36:12:
64:55:42:0c:81:7e:65:d0:cc:96:3b:d9:2d:84:fe:
ba:78:54:26:54:17:44:9f:a2:37:fd:27:d5:b8:4b:
ac:33:c6:08:d1:a5:4f:31:88:06:cb:10:f4:8f:aa:
cf:50:2e:50:b0:10:87:fe:7d:11:35:57:26:df:50:
5e:76:f8:22:36:a3:f1:05:66:1e:1a:78:3e:6b:53:
8a:6c:e3:1c:31:f2:8c:d3:2f:e8:b2:f6:63:d4:1e:
52:ab:bb:27:b0:61:b7:3a:df:4e:16:ff:a9:e9:92:
1a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B0:82:53:FF:83:2B:D7:FC:EC:D9:F4:04:88:40:D7:FA:35:49:67
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203113.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:8c0::/44
2a06:a005:2250::-2a06:a005:226f:ffff:ffff:ffff:ffff:ffff
2a06:a005:22f0::/44
2a06:a005:2310::/44
Signature Algorithm: sha256WithRSAEncryption
a3:36:70:5c:78:30:95:37:1b:85:5b:02:67:1e:81:55:1c:80:
bf:c9:05:b4:ff:49:e1:87:95:62:59:45:e2:df:0c:6f:69:c1:
83:fa:46:e8:6b:77:0a:04:62:34:f4:b0:a8:9a:eb:60:eb:54:
09:97:95:28:1a:c8:3b:a4:5b:25:45:ae:38:1a:40:72:93:6b:
a6:95:7d:53:70:26:93:c0:9e:01:8b:c6:07:09:94:b2:32:50:
b1:2a:ea:59:05:60:22:6a:2f:31:54:9f:27:37:b6:7a:fe:05:
35:6c:05:0a:91:30:c2:73:d1:a8:28:93:d3:44:50:ab:b0:1b:
da:45:e8:ef:5d:0a:13:5f:84:88:62:13:19:53:59:3c:a0:b2:
61:c7:4d:81:25:4c:80:6f:9e:88:d8:11:c4:dc:7a:16:25:d8:
c1:51:20:84:22:a5:02:ec:0b:cb:21:6d:0f:cf:19:58:80:cd:
4f:ab:e0:77:c3:11:a1:43:5e:48:7a:2f:61:01:c2:86:67:2c:
8b:34:b5:de:69:10:fd:7c:f8:03:b0:45:90:ea:44:0e:15:88:
6a:22:54:1c:7f:a1:22:b9:98:08:18:57:0c:91:ff:79:ac:e0:
e7:02:54:78:10:a3:d5:ca:0f:ce:fc:77:da:68:8e:2b:a9:ea:
e5:1b:a9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org