Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS20326.roa
File: AS20326.roa (raw, json)
Hash identifier: h5wjGs9L7XEORTgyPUbJ0827gSPaBlVoitQnqIwRLEs=
Subject key identifier: 60:F6:06:53:B6:C4:C2:75:45:29:9B:5B:47:CF:D8:FC:51:9A:67:F0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1459219CD3979661D3F4AA058B568DCA6838C99F
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS20326.roa
Signing time: Mon 05 Aug 2024 13:39:58 +0000
ROA not before: Mon 05 Aug 2024 13:34:58 +0000
ROA not after: Mon 04 Aug 2025 13:39:58 +0000
asID: 20326
IP address blocks: 103.214.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:59:21:9c:d3:97:96:61:d3:f4:aa:05:8b:56:8d:ca:68:38:c9:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Aug 5 13:34:58 2024 GMT
Not After : Aug 4 13:39:58 2025 GMT
Subject: CN=60F60653B6C4C27545299B5B47CFD8FC519A67F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:31:5c:4d:f8:d8:ba:a2:28:75:49:68:75:2b:
3e:fa:ab:40:b6:69:4c:ba:a5:f6:c4:7f:50:d1:d3:
79:80:46:60:7c:18:aa:2b:42:4b:ae:07:ea:5d:94:
fe:5c:8e:91:d7:b4:12:74:18:4c:b6:02:84:17:3e:
75:27:f9:a1:a6:55:8f:c5:a1:06:2e:d8:d2:96:4c:
a3:68:fa:56:e4:6e:d5:65:6b:d3:22:66:8c:a5:c6:
eb:61:e7:1b:53:4d:59:7b:f5:5a:83:cc:a3:6b:d6:
a3:08:0c:e7:ff:8e:c5:c2:aa:69:7f:08:ab:47:e6:
bc:09:c7:20:ab:3a:0b:2b:9c:c9:11:8d:03:05:4e:
f0:5f:d7:5a:78:16:12:3b:e1:a7:f7:6d:f2:2f:07:
4e:f2:36:03:05:ea:f7:6d:c2:19:b2:f1:98:3a:d5:
38:13:5f:17:bb:3b:e4:9f:2f:68:09:f9:d0:8b:3f:
61:0e:b9:0a:9e:83:67:28:c0:42:c0:51:7c:76:61:
1a:4d:b8:51:45:1c:fb:11:53:f0:6a:ef:34:f9:cf:
47:61:54:ad:a3:5f:40:41:89:e5:1d:5a:01:66:c0:
6d:f1:d0:e3:61:9e:43:63:f2:ab:05:65:e7:0a:07:
f4:f0:e1:5a:1c:cf:4f:03:b3:47:e8:b3:14:32:8f:
8f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F6:06:53:B6:C4:C2:75:45:29:9B:5B:47:CF:D8:FC:51:9A:67:F0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS20326.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.71.0/24
Signature Algorithm: sha256WithRSAEncryption
06:59:d9:98:45:ed:89:a6:6c:3f:6e:9d:c7:78:b2:e1:0a:b2:
03:39:f7:df:a6:0d:cf:79:39:7d:8c:8c:d2:8a:e4:66:d7:86:
ed:37:7a:2b:39:aa:54:e7:72:c2:f2:5b:5f:35:4e:67:82:5e:
dc:da:da:9f:78:73:c2:c1:91:cc:67:4f:d1:1d:a3:0b:3f:4d:
3f:93:8b:82:6f:58:25:b3:da:eb:aa:f3:a7:a6:e3:3a:35:10:
97:6c:ab:7c:9f:6a:e0:c9:de:a7:5e:13:a0:82:3b:76:fe:f6:
8b:14:4f:23:a1:64:11:3d:68:c7:f1:7f:05:2f:27:e6:92:87:
7e:8f:03:06:f7:0f:09:dd:a0:95:3e:06:2a:9a:ad:b8:ab:8d:
78:4b:0f:e6:dd:d8:c7:6e:12:15:e3:59:90:34:d5:f9:f1:c9:
a8:06:22:b5:3b:b9:62:ec:14:f7:e2:51:e4:d0:b2:2c:81:51:
2a:6b:5f:d1:28:94:c3:c3:5a:46:33:79:fc:77:14:14:b6:bb:
d9:04:ee:f5:08:be:99:57:c4:58:32:62:1b:40:d8:cf:71:ea:
48:77:0f:0f:2c:3e:f4:ff:b5:16:3b:3d:db:9f:05:7d:59:fe:
e8:b0:c1:41:96:5a:ff:5d:62:b4:fb:1e:4f:0b:45:24:2d:f3:
de:ee:7e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org