Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
File: AS203472.roa (raw, json)
Hash identifier: Rs70IVQo4PaiOuuwwMz5s4LeXGxBCaa2xXwvn9EFcQE=
Subject key identifier: 0C:18:62:DA:56:C0:CF:A9:85:10:E5:D9:4C:87:4B:5C:BC:74:B0:E7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2EAC0D79982E20BCAA77D923428D0A6B38E215D7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 203472
IP address blocks: 2a06:a005:600::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:ac:0d:79:98:2e:20:bc:aa:77:d9:23:42:8d:0a:6b:38:e2:15:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=0C1862DA56C0CFA98510E5D94C874B5CBC74B0E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:38:56:b5:c8:8c:58:97:0d:ca:3b:ac:13:3b:
15:19:58:c8:93:37:b1:99:9f:b4:96:20:30:01:a3:
d6:d3:32:02:8b:b6:22:77:1e:20:ee:28:0c:eb:69:
4c:f9:e7:0a:b0:f9:3f:5f:72:44:c6:43:ad:a8:cb:
99:dd:fc:94:6d:88:28:e1:7c:2c:08:d7:de:8b:45:
d9:4f:a9:cb:30:59:c7:99:bd:cf:b7:11:c9:b7:93:
d2:7c:01:76:44:d1:39:ab:f4:14:e6:d0:36:02:9c:
56:98:33:7e:1c:00:73:4d:40:0b:ee:cf:72:6e:5e:
32:c9:b7:47:97:c0:99:67:77:aa:44:62:a0:9e:db:
ad:1c:a8:ea:e8:02:b0:3f:f5:44:3b:c8:c6:7d:0c:
8c:d2:42:7d:14:c0:4c:37:ec:ef:d7:58:df:1d:90:
81:23:aa:bc:01:85:fc:6c:44:ef:25:f6:a9:ed:a4:
cb:68:fb:f7:bd:3d:06:98:42:ab:bf:ea:e3:59:88:
60:d4:12:7e:1c:50:33:8e:3d:3b:62:b6:f4:04:c7:
c8:cd:84:51:54:28:3e:91:76:6b:e7:fc:05:1a:53:
47:96:93:a3:98:cd:59:98:cf:37:4c:c8:90:4d:22:
dd:e1:24:0e:cc:06:da:fc:2c:5b:9f:8e:5a:ca:81:
bd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:18:62:DA:56:C0:CF:A9:85:10:E5:D9:4C:87:4B:5C:BC:74:B0:E7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203472.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:600::/44
Signature Algorithm: sha256WithRSAEncryption
56:ae:d2:f0:bd:78:58:58:04:9a:7c:a6:b6:eb:b2:ab:44:8a:
03:81:bc:6e:9f:d1:1b:8a:16:16:ce:47:4b:c5:5e:a6:b2:90:
ab:84:1a:42:4e:04:cb:53:99:15:81:bd:c2:4e:26:95:1a:b7:
56:a1:9c:eb:63:53:fe:e9:8e:45:9d:10:00:4b:21:77:cf:c7:
e3:22:48:e5:64:73:1a:78:4b:fc:5d:ed:4a:a1:f6:ba:a4:4d:
b9:9a:f9:d1:24:3e:84:b1:95:0c:f1:b8:59:02:a8:7a:03:ed:
a2:fa:97:09:94:cb:a6:23:1e:71:a1:b6:5b:bd:05:2e:c2:dc:
77:46:37:c2:3c:bc:49:96:8c:25:27:3a:a9:1e:7a:dd:36:af:
fb:13:1b:04:d3:02:c7:18:43:69:6f:22:42:55:8d:04:df:f6:
69:7c:de:90:cb:dd:c3:81:05:03:0e:1c:e1:d0:7d:bc:52:59:
39:71:6f:e8:7d:dc:3c:75:3e:23:e7:10:a9:82:a7:15:d6:fa:
e9:27:4f:a1:b2:cf:89:39:84:45:fc:2d:5c:9e:9d:a1:c1:b7:
a1:af:35:8e:42:1e:5d:5e:c5:a7:22:cb:fa:ef:6d:6f:a0:97:
01:0c:28:55:9b:00:8f:cc:ed:ef:a1:29:17:ed:0e:d0:2b:b1:
20:6f:86:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org