Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203635.roa
File: AS203635.roa (raw, json)
Hash identifier: 2M2kQJeOhDLUS9HpUacyDk/vblMBFjEEa2rwmTfKfX8=
Subject key identifier: 2E:E2:75:3C:B4:39:5A:C9:25:CA:75:0F:38:E4:B9:E3:AA:E7:0B:1E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 01907A527C6BAC3704103A678CD7D2D767C620A4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203635.roa
Signing time: Wed 31 Jan 2024 23:44:24 +0000
ROA not before: Wed 31 Jan 2024 23:39:24 +0000
ROA not after: Wed 29 Jan 2025 23:44:24 +0000
asID: 203635
IP address blocks: 2a06:a005:d41::/48 maxlen: 48
2a06:a005:1040::/44 maxlen: 48
2a06:a005:1050::/44 maxlen: 48
2a06:a005:1490::/44 maxlen: 48
2a06:a005:14a0::/44 maxlen: 48
2a06:a005:14b0::/44 maxlen: 48
2a06:a005:14c0::/44 maxlen: 48
2a06:a005:14d0::/44 maxlen: 48
2a06:a005:1600::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7a:52:7c:6b:ac:37:04:10:3a:67:8c:d7:d2:d7:67:c6:20:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 31 23:39:24 2024 GMT
Not After : Jan 29 23:44:24 2025 GMT
Subject: CN=2EE2753CB4395AC925CA750F38E4B9E3AAE70B1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:87:3b:9d:d1:f5:74:96:b4:f8:5d:1a:fd:8d:
30:a0:ed:43:6f:21:94:1c:2f:14:f7:62:b4:60:64:
8d:6e:a2:94:33:cb:af:7f:f1:5a:75:28:ef:39:8a:
e8:34:74:1b:78:3f:3f:d0:2c:da:5c:0b:78:b3:04:
fa:14:ba:13:66:cb:e6:59:cd:f4:55:c5:40:34:44:
ab:10:64:94:01:28:d5:5d:ff:07:21:5a:44:7f:a5:
c8:3d:4d:3b:53:18:7d:cc:8d:f0:65:0a:56:52:3f:
94:cd:4f:bf:a2:70:2b:4b:43:4d:ba:5a:93:d9:d7:
bc:58:da:5c:de:01:31:27:d8:90:a9:4c:2e:9a:26:
a8:ce:00:c9:7b:98:bb:f8:53:5a:69:8f:da:9b:d1:
15:35:47:7c:bf:6d:ac:22:c7:fc:fa:fc:03:ff:a5:
65:9b:23:0f:63:40:dd:68:b8:55:c3:fb:29:48:6e:
81:37:f1:13:0f:cd:e4:2c:02:8e:11:93:cf:34:99:
3f:cb:dd:86:36:32:9b:db:ee:60:34:98:b6:72:6d:
40:29:89:29:0d:ab:78:c0:94:c2:8a:4a:fc:2d:ec:
04:f4:e7:03:6d:56:c8:cf:2b:08:89:7b:1e:59:68:
76:44:58:9b:71:23:80:62:99:dc:26:19:b4:6a:0f:
b3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E2:75:3C:B4:39:5A:C9:25:CA:75:0F:38:E4:B9:E3:AA:E7:0B:1E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d41::/48
2a06:a005:1040::/43
2a06:a005:1490::-2a06:a005:14df:ffff:ffff:ffff:ffff:ffff
2a06:a005:1600::/44
Signature Algorithm: sha256WithRSAEncryption
76:a5:0d:64:e2:29:06:d3:c3:cd:ca:6e:31:52:cb:9e:71:5e:
92:60:5c:4c:1b:70:a2:2f:2a:4e:49:7e:58:a9:51:13:1f:a7:
da:19:33:6f:b1:ed:a4:3e:b8:dd:69:ba:d3:99:6d:95:83:b1:
32:aa:22:2f:d9:99:ee:59:25:75:a5:26:ec:e9:b1:56:c8:a8:
84:a1:58:c5:f9:f2:d7:50:73:41:a4:a8:72:fe:91:24:55:ae:
51:4b:3e:a9:18:01:71:68:5c:a9:12:56:6f:79:ef:3a:37:cb:
46:36:b7:90:f5:61:29:f6:b4:1a:f5:74:9c:a5:cf:1c:8c:48:
34:61:02:74:ab:0f:e9:f5:35:70:98:d3:a5:c4:af:f6:38:6d:
ba:37:f7:3a:d3:ef:08:8a:e0:c9:c7:cb:ca:5d:97:d0:60:a4:
e4:39:33:a5:b5:78:9a:af:c3:6c:05:d9:af:79:3c:26:74:a3:
13:ea:82:8f:b7:fe:26:d8:e7:25:a1:fc:ea:ec:3d:b3:05:34:
29:07:22:a5:18:da:c5:55:a0:77:b8:76:b3:19:10:ba:55:1d:
b6:cc:34:33:26:68:89:cf:21:77:80:3d:8e:ca:6b:2e:4e:04:
02:b7:61:c0:53:d4:48:2f:51:0a:3d:54:ec:77:ae:02:e5:ac:
15:c1:e1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org