Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203453.roa
File: AS203453.roa (raw, json)
Hash identifier: 1oTpT8UTB3+SvueLhO/jAlFc9ZpuYxyLVAUJpY1pIWA=
Subject key identifier: 64:76:A0:DC:7C:41:6A:AE:1C:D5:03:B8:F2:89:82:A8:6C:D3:F6:68
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 28A4C791D8ACD9AE33975FED120087700A876851
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203453.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 203453
IP address blocks: 2a06:a005:108e::/48 maxlen: 48
2a06:a005:150d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:a4:c7:91:d8:ac:d9:ae:33:97:5f:ed:12:00:87:70:0a:87:68:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=6476A0DC7C416AAE1CD503B8F28982A86CD3F668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1d:18:46:78:ac:76:ce:4c:d1:0d:c0:d5:f5:
d6:db:96:ca:03:4c:67:c4:d0:6a:94:42:cd:f9:eb:
b9:64:c8:44:b9:18:a4:92:59:13:8f:f3:3c:a0:ce:
57:bd:8e:0f:0f:ac:1f:18:fa:10:8a:3b:34:6f:a3:
d3:63:cb:c2:99:42:0a:fa:ec:5a:b6:5b:de:a6:54:
2a:d0:a6:60:12:e9:93:29:b8:14:1e:ab:3a:80:8d:
06:a9:54:2c:07:ed:9e:3b:9f:0c:b0:d5:4c:e9:4f:
8d:71:51:ef:b7:41:c1:95:35:65:07:76:b5:71:cc:
13:5e:0e:46:5c:f5:10:f3:b1:2a:f4:1e:f4:7d:28:
ab:15:98:93:45:9e:53:a2:bc:8e:34:ba:d2:9d:3d:
4e:ba:c7:db:a7:a5:35:18:2c:01:03:74:48:1f:fa:
60:ee:96:ca:4d:36:f0:64:66:61:d0:09:83:91:67:
6c:1c:f1:0e:4c:30:4c:f5:d8:48:5a:08:12:ed:36:
a5:5b:3f:07:d2:00:c2:06:ff:bd:36:23:f9:3b:6a:
0a:c7:f7:47:ad:84:15:03:f2:62:f0:dc:3a:d3:1a:
6c:45:88:bb:1f:a2:b6:67:60:a8:f1:69:86:f1:35:
7d:11:9f:e3:40:7d:1f:00:d3:ce:32:bf:bc:00:e2:
ed:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:76:A0:DC:7C:41:6A:AE:1C:D5:03:B8:F2:89:82:A8:6C:D3:F6:68
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203453.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:108e::/48
2a06:a005:150d::/48
Signature Algorithm: sha256WithRSAEncryption
63:70:71:4a:ce:bc:e7:a4:9f:e3:20:b0:2b:18:be:bb:96:6e:
60:19:7f:30:43:eb:ce:6e:1f:da:c8:22:2c:44:f8:1d:6a:9d:
5d:76:d8:b9:46:a7:01:2e:a5:bb:74:3c:c6:53:50:5b:ba:41:
af:66:31:cb:c4:47:f5:39:5e:44:1d:c5:20:40:16:0f:bb:70:
b9:0f:17:81:48:49:31:38:ed:4d:6f:4c:e9:ca:67:84:c9:65:
7a:74:66:d3:b6:e9:ec:d6:6d:fb:34:21:1b:33:3b:67:46:3e:
c1:d1:5b:49:88:78:63:a6:b2:3d:39:30:01:ca:90:6f:24:5d:
79:04:b8:31:2f:97:29:fb:5d:11:9d:a9:e0:e3:a5:e6:4c:38:
eb:fd:b2:1d:6a:8b:7a:dd:a7:85:8b:07:a5:f6:da:0c:0b:89:
70:93:af:31:9b:37:ef:d2:d6:7b:52:06:f1:96:a4:09:5c:79:
44:47:dd:09:53:3e:90:96:85:71:d4:e4:05:2f:0e:cf:7c:3a:
7a:f3:23:7b:fa:27:46:32:c2:cc:48:69:74:2d:9e:66:cb:a4:
5a:bd:3d:26:3c:66:f4:bf:15:12:8c:d1:96:fa:4a:7a:83:e5:
20:68:73:51:ef:13:18:49:1c:0a:f5:f7:6b:9e:f0:30:2c:2e:
8e:a9:bb:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:23 2024 by rpki-client on console-fra.rpki-client.org