Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
File: AS203472.roa (raw, json)
Hash identifier: QX6hT1kw763lsJzd/khv9IkVFa1SJCbcQviHy8XaljU=
Subject key identifier: 07:C2:1B:9D:14:C5:22:59:A4:9E:60:F8:67:1F:00:A5:C6:2A:CC:66
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 34EC38F3BBAE72AF8DED7837B6ECFCF86ADFC407
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 203472
IP address blocks: 2a06:a005:600::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ec:38:f3:bb:ae:72:af:8d:ed:78:37:b6:ec:fc:f8:6a:df:c4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=07C21B9D14C52259A49E60F8671F00A5C62ACC66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:88:0a:9c:0a:4d:c0:5e:9f:b1:a4:0a:4d:bd:
d8:29:12:45:af:09:e2:33:c9:bf:4e:7a:2f:6b:d4:
78:3a:6c:60:f6:b4:ef:90:70:0d:50:ec:1f:46:0f:
23:a7:f3:90:2a:3f:15:e3:00:e1:f2:81:78:65:01:
79:1c:2d:c0:66:76:71:38:eb:37:76:c5:8e:92:50:
08:e1:7f:78:a3:76:e4:69:c6:14:cd:9d:d3:5f:64:
34:64:2b:2a:4c:37:df:78:53:ab:16:d8:2e:ef:f1:
73:cf:36:57:f4:0e:ee:40:c7:2b:29:7a:2f:c9:df:
87:3f:a1:ee:d7:17:e8:0a:5b:87:72:2d:9a:0d:f0:
13:d5:95:5f:8f:29:49:b7:79:72:22:3d:a9:80:8b:
dc:f3:e1:f9:3b:fa:86:61:fd:cb:c3:24:a1:0c:31:
73:ea:d1:56:83:57:e1:c8:ed:16:b2:e9:44:45:92:
9d:6f:c9:a8:5c:5f:2b:40:bb:eb:c7:2e:87:5a:e8:
17:b7:cf:38:8c:ad:68:fc:9f:9f:fe:ae:68:dd:70:
53:46:eb:82:fc:da:68:fd:10:32:0a:f9:f5:0a:ef:
21:0b:11:67:f8:58:dd:3b:87:4c:e8:de:ba:6a:af:
c2:81:4b:cc:c6:bd:c6:dd:b4:87:58:90:69:97:26:
09:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C2:1B:9D:14:C5:22:59:A4:9E:60:F8:67:1F:00:A5:C6:2A:CC:66
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:600::/44
Signature Algorithm: sha256WithRSAEncryption
07:98:03:ea:fc:d8:83:6d:fa:ec:4e:3a:30:c2:ac:21:ed:f2:
c8:e5:0c:cf:87:8d:8d:de:fc:b9:64:ad:97:ea:8d:39:c9:97:
9a:f5:ba:78:59:e4:f5:bd:fc:63:19:fa:bd:ce:5d:0c:88:12:
31:4a:ae:ad:cd:eb:73:7a:09:0e:6f:b7:67:86:e0:b2:f6:77:
6a:32:17:60:78:aa:c9:0e:85:9d:3d:ad:65:7b:20:bf:48:d5:
f7:d0:51:1b:3c:c0:f5:58:86:3d:49:41:ff:54:67:30:71:69:
f3:4e:2b:0a:3e:ab:d8:e8:4f:76:22:84:8a:b0:fb:43:74:22:
83:a2:1b:2b:3b:cd:46:0d:8b:0a:18:4a:02:e1:f2:a3:1d:9a:
d5:d0:5e:31:97:bb:35:41:a1:98:0e:ab:04:c7:76:66:bc:75:
a8:99:86:7c:95:2b:74:55:7c:49:14:14:1b:94:3a:ff:9e:f8:
f8:07:d5:ac:0f:45:9d:04:a9:ae:cc:ab:71:3e:88:2f:57:1d:
12:d8:8e:38:d6:78:2c:f4:ad:fc:7a:27:13:db:93:d7:11:bb:
78:04:9f:45:dd:30:b2:9e:5d:1a:fe:73:78:62:59:ce:bc:e1:
a6:0f:e0:b0:ee:c6:ab:6b:d1:55:37:72:ba:51:a0:70:b7:98:
a6:7b:d3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:10 2024 by rpki-client on console-ams.rpki-client.org