Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
File: AS203314.roa (raw, json)
Hash identifier: xPbwMPwkEJmDWgvGdHpowqxpPL1b//g2Uwv5A1vQkjk=
Subject key identifier: 2D:60:5B:50:06:3E:32:E3:A2:13:EF:44:71:B1:6D:18:39:35:E3:C3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2B29E84D39FF60C795EEFA4CBEC9D4DF6E850E8C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 203314
IP address blocks: 2a06:a005:6f0::/44 maxlen: 48
2a06:a005:18c0::/44 maxlen: 48
2a06:a005:1bf0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:29:e8:4d:39:ff:60:c7:95:ee:fa:4c:be:c9:d4:df:6e:85:0e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=2D605B50063E32E3A213EF4471B16D183935E3C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:84:0c:21:3b:ad:af:cb:76:50:e7:33:60:6c:
2c:fe:e4:77:d2:9e:99:5a:ee:65:e2:56:78:e4:1b:
67:bf:38:e5:43:03:a6:ec:b5:1a:f5:3d:59:5e:a9:
7f:2a:c5:bf:1a:8a:ee:08:59:8f:ba:04:ef:64:86:
0d:94:2a:9f:75:3c:c0:39:d6:0c:dd:67:ae:15:11:
04:bf:c8:6d:4a:f6:cc:2d:1c:3c:ec:36:1d:dd:97:
72:a3:fe:18:2d:1e:75:98:bf:ff:e9:ea:95:e6:64:
6d:51:c7:bb:66:6c:4a:6a:af:eb:70:4a:8c:74:8e:
c2:6e:1e:30:51:cf:e6:70:f1:da:16:e8:c5:61:9d:
23:dc:c5:f2:69:32:17:9b:0a:15:b7:55:ba:6c:03:
64:9b:31:58:92:a4:d0:43:d2:08:a1:20:e8:68:90:
32:27:3e:83:f0:93:ad:6e:53:5c:01:4d:ba:0f:07:
63:56:18:e3:b3:fc:76:67:99:c5:5a:68:e0:b5:ed:
d2:82:c5:65:7c:23:b1:b7:32:0e:b0:b1:e6:c0:24:
31:b5:77:2a:b6:c0:bb:b9:24:f4:a3:f5:0f:5c:81:
0e:5b:c6:ff:20:04:91:a5:f6:19:eb:b9:65:24:01:
b0:fb:74:a6:5f:5c:b8:6c:d2:ae:43:2d:a7:35:e2:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:60:5B:50:06:3E:32:E3:A2:13:EF:44:71:B1:6D:18:39:35:E3:C3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203314.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:6f0::/44
2a06:a005:18c0::/44
2a06:a005:1bf0::/44
Signature Algorithm: sha256WithRSAEncryption
bc:87:dd:35:29:26:db:25:d9:0a:3a:4d:9e:73:0b:c5:3d:a2:
c2:f0:59:58:87:5c:49:e5:0b:21:0a:fe:cc:a7:b8:79:d1:64:
f7:a6:02:4c:5e:85:d1:bc:b1:6b:8b:40:4d:c5:81:ff:38:b5:
8c:53:8c:3c:2f:55:76:f5:e4:a2:25:6e:89:4d:49:09:f2:8e:
c5:1c:cb:7f:d3:04:7d:3b:8b:8b:ed:09:29:20:06:b1:d0:9b:
4a:9b:65:41:6d:04:aa:29:56:12:c1:33:46:46:7d:d1:23:03:
50:89:b0:88:69:04:47:ad:3e:30:7a:76:43:61:77:4e:56:96:
ce:7a:15:6c:77:d8:ef:02:6f:df:bc:5c:b7:aa:06:b3:92:c2:
2e:47:21:e5:6c:04:c5:73:8d:8b:cb:bf:b6:e7:1c:17:ce:4b:
05:32:40:ae:00:f9:20:ff:a4:17:2a:38:b2:49:9f:b1:7f:97:
5b:14:a3:b1:ba:65:d4:3a:2e:81:2f:dd:b9:1d:2e:43:b6:f7:
5e:8f:44:fc:a8:29:b8:ef:52:e1:b7:a2:27:3f:36:46:38:35:
2c:4d:5e:c6:90:a4:e8:f1:d5:e7:17:4d:3c:78:2a:b2:e8:77:
00:f0:17:89:ea:5b:0a:01:04:dc:65:c7:27:01:84:86:de:c7:
ff:69:6a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org