Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
File: AS203577.roa (raw, json)
Hash identifier: 1y/7LjTjLTU1lm+gPVO8z2/ZxWe+VXdxZHn3cs3mp3M=
Subject key identifier: 5E:31:B0:6E:15:45:C2:A3:B5:AA:C2:4C:9C:EA:B4:27:49:9F:C2:DE
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7B36D562895614F59B8B15D8DF066AAC777E50C7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
Signing time: Fri 13 Dec 2024 02:56:29 +0000
ROA not before: Fri 13 Dec 2024 02:51:29 +0000
ROA not after: Fri 12 Dec 2025 02:56:29 +0000
asID: 203577
IP address blocks: 2a06:a005:1f50::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:36:d5:62:89:56:14:f5:9b:8b:15:d8:df:06:6a:ac:77:7e:50:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:29 2024 GMT
Not After : Dec 12 02:56:29 2025 GMT
Subject: CN=5E31B06E1545C2A3B5AAC24C9CEAB427499FC2DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b8:35:14:66:ce:ff:df:89:4f:ac:01:e3:ae:
0c:c2:0a:59:3a:1e:0f:ea:7d:8a:9f:bf:83:d7:3c:
89:8e:d4:89:9d:bd:66:c5:e8:2c:3d:37:53:3a:a6:
5e:0c:73:84:38:e5:25:0f:43:dd:aa:23:72:93:0a:
b7:17:27:be:a2:0c:42:72:46:e3:c6:bd:8d:7e:ca:
1e:ff:6c:d3:20:cf:4d:03:77:c8:aa:1f:cf:bc:ef:
75:ae:99:48:50:4d:f8:66:9c:b3:60:54:44:44:22:
6e:47:c6:04:43:17:c4:ba:ae:bf:b3:4f:40:57:64:
84:56:14:c6:2c:d9:cc:18:33:0a:cc:b6:20:42:dc:
b5:f3:a6:92:c8:18:18:a7:76:b3:37:f6:75:34:55:
c9:51:df:88:94:7e:cc:ea:89:7a:50:4b:6f:17:1e:
aa:68:01:39:26:86:a6:4c:98:e7:5a:f8:07:4b:a8:
87:56:07:1b:d9:27:0e:e9:5d:f2:b5:ef:3a:f0:4f:
4d:d2:01:1c:bb:86:cb:a7:69:83:0c:d1:cd:a9:44:
56:18:db:16:59:08:51:62:ef:29:2c:c1:9c:06:88:
1f:8d:3b:e8:0c:d0:68:e7:7a:08:a0:04:75:b6:2d:
91:42:0c:bc:35:28:07:5a:d5:28:bf:62:44:23:03:
9e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:31:B0:6E:15:45:C2:A3:B5:AA:C2:4C:9C:EA:B4:27:49:9F:C2:DE
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1f50::/44
Signature Algorithm: sha256WithRSAEncryption
3d:90:b2:cd:d8:45:48:0b:0f:1e:01:5a:eb:bd:e3:87:62:ef:
19:43:0b:c6:e1:16:ad:33:6a:39:9b:c0:9e:c3:e8:0f:d7:25:
a5:03:88:8d:95:89:06:8d:56:0d:e9:c4:6a:ee:97:fb:0a:a5:
17:34:a8:e9:43:5d:5a:25:1d:b0:10:5c:bd:02:dc:6f:e5:df:
ba:09:5e:13:bf:8e:70:cc:94:07:9f:bb:19:0b:de:79:09:a5:
29:35:3d:ba:60:d1:42:3d:2e:3b:93:e2:47:a0:83:09:fb:11:
8e:f4:66:24:99:24:ab:05:34:ee:4d:d7:60:72:0d:8a:40:a9:
98:be:b2:fe:f1:e6:08:f6:cf:9e:1d:c5:e4:0d:a8:0e:81:40:
6d:ec:0f:41:b0:b6:1b:88:62:61:d7:05:5d:8f:ce:ef:4e:ff:
27:e3:1b:7c:6f:76:9e:f5:d4:0f:bb:69:22:b4:25:77:13:08:
84:f0:6a:09:00:f8:4d:34:4e:5c:4a:32:61:cd:99:9a:e9:87:
12:d0:7c:b6:9f:74:6e:ca:73:cd:89:c0:81:1d:15:3a:5c:19:
b2:c5:bb:e6:68:f9:4c:2f:96:2c:5e:41:98:2b:98:0e:5b:a5:
e1:c9:c8:f4:ad:b8:5e:38:cc:82:96:95:f0:33:7e:98:16:56:
8a:56:0c:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:03 2025 by rpki-client