Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
File: AS203314.roa (raw, json)
Hash identifier: U0YdBf73087vnn3STY/Rh/SxGcMxhHiG76GeWlhEYRk=
Subject key identifier: 89:6D:AF:B6:D4:BA:B8:4C:DF:37:F5:F8:FD:29:27:E4:58:27:57:1E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 468AE2AA5EEE54C245A278A894C9C50CBA01DDE8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 203314
IP address blocks: 2a06:a005:6f0::/44 maxlen: 48
2a06:a005:18c0::/44 maxlen: 48
2a06:a005:1bf0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:8a:e2:aa:5e:ee:54:c2:45:a2:78:a8:94:c9:c5:0c:ba:01:dd:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=896DAFB6D4BAB84CDF37F5F8FD2927E45827571E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ed:44:8d:49:70:81:c8:c2:c7:47:90:01:99:
65:f2:08:25:d2:5e:2a:05:ce:ac:9a:c5:ac:cd:12:
9c:9b:b4:e3:52:98:00:ce:53:28:fb:e2:bb:95:e7:
b3:cb:78:26:d0:2a:fa:13:41:13:95:c4:4e:38:51:
7d:37:e3:a4:ec:de:e0:67:7a:85:9b:93:54:08:92:
5f:d8:5b:03:2b:0e:49:71:72:ec:fe:c5:49:05:85:
68:1a:22:56:f2:1a:e3:8e:ac:93:5d:38:96:1c:3e:
76:80:7c:ad:5f:98:a3:53:fb:e0:2b:2d:08:42:ae:
cf:04:23:5b:12:71:d4:2f:f0:fa:30:fd:ae:50:f6:
10:7e:af:f4:4c:07:92:5e:33:62:e8:f8:39:59:0f:
96:05:4b:29:ce:8e:8c:f7:44:74:44:5b:17:f2:5c:
9f:00:55:cc:24:04:5d:29:6d:8e:90:e1:40:3c:c8:
95:e9:4d:7d:31:24:f9:69:89:4d:e5:89:57:b7:5d:
be:33:9d:b4:10:3c:0a:5b:5b:24:63:90:2a:9f:c5:
e8:6a:23:7a:d6:29:bf:1e:b7:54:74:53:33:3f:f2:
ef:ab:ab:85:c9:3c:66:a4:e8:f7:d0:3f:e9:52:34:
81:d2:14:b0:fb:65:90:6d:f6:c1:8c:20:aa:7e:d5:
a8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6D:AF:B6:D4:BA:B8:4C:DF:37:F5:F8:FD:29:27:E4:58:27:57:1E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:6f0::/44
2a06:a005:18c0::/44
2a06:a005:1bf0::/44
Signature Algorithm: sha256WithRSAEncryption
a3:45:b1:de:06:8d:67:67:16:2c:5a:cd:e3:45:b0:c3:1d:66:
4e:e4:ac:85:4c:2e:d0:0a:cd:0c:61:57:97:bb:b2:11:b8:e2:
75:69:9e:45:29:08:77:b5:b4:de:a8:93:f6:80:b8:22:12:6c:
e6:ca:2b:de:dc:1d:db:46:2f:99:d4:f7:28:12:92:18:03:97:
fa:ea:a0:6f:9a:58:aa:65:b3:7a:13:4f:dc:0f:64:37:bd:5d:
cf:9c:08:28:55:e4:49:1b:90:5d:8c:17:88:1a:cb:88:b8:99:
13:45:15:e8:43:0d:a6:32:fa:2e:02:1a:f6:f4:85:25:58:cc:
9a:93:ba:f5:eb:59:1a:cb:6d:08:9d:3b:9e:b0:74:b5:23:9e:
99:2d:e2:f6:e2:b6:bd:01:b9:3c:8c:41:f8:64:12:02:e2:b6:
1c:f1:dc:30:93:76:6d:d4:e2:3a:78:ea:5e:90:18:31:65:f6:
e1:20:df:a5:28:59:7a:6e:9d:52:cc:8d:16:4d:92:c3:52:05:
99:c1:6e:73:b2:ea:f4:9b:a1:40:f4:19:f0:91:f0:1b:fb:cc:
8d:f4:c8:72:be:16:e4:ef:88:32:31:cf:b7:34:34:8e:b1:51:
83:98:0f:80:8f:73:b8:76:e8:6a:f5:4f:92:db:e1:6a:f5:36:
85:b8:30:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org