Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
File: AS203577.roa (raw, json)
Hash identifier: WvZfurULCh0EeXorhI5yxA5oyjj9E35c8vaLZ8Sdmt8=
Subject key identifier: EF:38:0F:B7:75:C3:67:5C:3F:BD:09:86:AA:71:C1:73:8C:18:3F:B0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 61E3279DC21815F1E251C14B28D4F7E041FB12F8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
Signing time: Fri 12 Jan 2024 02:44:21 +0000
ROA not before: Fri 12 Jan 2024 02:39:21 +0000
ROA not after: Fri 10 Jan 2025 02:44:21 +0000
asID: 203577
IP address blocks: 2a06:a005:1f50::/44 maxlen: 48
2a06:a005:2020::/44 maxlen: 48
2a06:a005:2030::/44 maxlen: 48
2a06:a005:22c0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:e3:27:9d:c2:18:15:f1:e2:51:c1:4b:28:d4:f7:e0:41:fb:12:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 12 02:39:21 2024 GMT
Not After : Jan 10 02:44:21 2025 GMT
Subject: CN=EF380FB775C3675C3FBD0986AA71C1738C183FB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9f:c5:98:9c:09:67:bd:79:cf:81:de:49:58:
07:c8:1e:2d:f0:80:23:5f:b7:ec:7f:6e:6a:6c:9f:
89:ad:61:21:ca:f6:ea:86:53:21:b3:98:84:1a:6b:
5f:a6:e9:97:83:11:5e:01:bc:9e:1b:7d:3e:5b:5a:
10:86:f6:1d:48:36:63:69:a2:f9:7f:54:ec:13:bd:
62:b2:c4:3d:1b:69:d0:83:8f:b6:96:05:07:2a:c3:
4d:72:e4:a1:22:5b:bc:3e:be:5f:25:4a:e6:4d:8b:
ff:0d:60:90:62:63:40:82:58:0b:f7:72:26:72:bc:
89:c4:ac:c9:d8:e9:8d:e9:f8:2d:69:66:47:98:fd:
07:2c:73:b6:41:62:38:85:32:53:b9:6b:88:5f:06:
09:3f:5b:00:28:46:c4:01:d7:5a:3d:8e:da:b8:e7:
51:41:74:2a:67:f7:42:fd:10:50:40:6a:f5:b4:aa:
1a:2e:4d:51:d9:76:60:e8:5f:3f:6c:65:70:30:7d:
b5:13:e4:7d:2d:6c:d0:b4:4e:f8:3e:86:b1:91:70:
44:37:79:f2:c5:ef:50:d2:a4:04:9f:10:e4:73:7a:
43:c5:68:8d:87:97:3f:79:dd:53:83:01:09:02:2e:
65:ef:9c:4f:dd:3a:5c:e1:bb:03:72:e1:05:48:9b:
11:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:38:0F:B7:75:C3:67:5C:3F:BD:09:86:AA:71:C1:73:8C:18:3F:B0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203577.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1f50::/44
2a06:a005:2020::/43
2a06:a005:22c0::/44
Signature Algorithm: sha256WithRSAEncryption
10:fe:2e:26:cb:e8:e2:89:76:6f:e8:65:8f:05:b5:95:f1:69:
25:3c:8f:ca:7a:04:24:22:7d:5b:e2:e4:b5:ed:79:64:72:0a:
b2:81:41:db:94:d4:e5:86:a0:35:95:d8:32:5f:03:87:1e:95:
ef:ba:a5:bf:6c:a1:25:b6:71:f7:9d:da:2b:c9:82:c5:d5:45:
79:36:0c:55:ae:c3:c4:c3:9c:5e:08:e7:0d:14:cb:4f:77:df:
b4:1f:4c:4c:7f:e0:a7:4e:95:3e:3c:1d:16:0a:5e:e7:46:4e:
c7:38:66:63:aa:e6:2f:9d:a3:b1:99:8f:a0:34:c4:e1:bf:73:
0c:b6:a1:b6:cf:13:3b:27:c7:17:d5:7b:38:2a:42:5a:71:64:
c4:c8:5a:dc:a3:c4:f0:37:21:8a:c8:bc:22:a9:c3:ad:4a:73:
15:56:54:6c:00:fa:1d:a8:93:80:ea:7a:48:02:c7:c9:8f:16:
98:83:ce:ab:0e:fa:6d:3a:96:01:91:7e:1c:bb:12:45:63:ca:
85:b9:01:84:34:05:86:74:5e:c4:91:3e:6d:b7:2f:df:aa:0f:
a1:4e:e7:b4:4b:28:3a:3e:35:9b:ae:c5:85:d6:e7:85:97:50:
d7:3c:ff:5b:30:2b:0d:77:90:17:cf:f0:9a:bc:9b:77:54:40:
e9:84:1a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org