Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203655.roa
File: AS203655.roa (raw, json)
Hash identifier: 3zb49tUFielzSkwOLXKpwaBAbQyivCyFgUSpdrjWNJU=
Subject key identifier: F8:D4:82:94:68:7B:2F:A1:E9:6B:A8:95:B2:BC:BA:78:6F:24:B7:64
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 500E82FC67E541B5425309144EF4B636213A422C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203655.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 203655
IP address blocks: 2a06:a005:13e0::/44 maxlen: 48
2a06:a005:13f0::/44 maxlen: 48
2a06:a005:1400::/44 maxlen: 48
2a06:a005:1470::/44 maxlen: 48
2a06:a005:1480::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:0e:82:fc:67:e5:41:b5:42:53:09:14:4e:f4:b6:36:21:3a:42:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=F8D48294687B2FA1E96BA895B2BCBA786F24B764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:18:51:ee:2f:70:79:45:79:54:9c:d6:ab:57:
50:8f:43:b9:fe:ad:41:e6:e6:72:75:d5:67:29:21:
03:3a:82:7a:99:7d:ee:5d:b0:f5:8e:d1:2a:32:9c:
5a:85:8c:6e:7e:21:95:c4:44:bc:50:c0:1e:e9:eb:
34:fb:dd:c9:cd:bd:87:29:15:0e:57:28:f2:a4:06:
5f:8b:6e:76:4a:6a:26:ea:94:82:bd:45:9b:a0:b0:
46:6d:c5:8d:bd:29:22:27:4d:c0:cd:9b:cb:15:89:
87:ac:1b:49:d0:20:01:dc:b9:b9:6b:69:7e:28:21:
2a:11:84:c5:e8:2a:b2:b7:05:a6:67:d7:58:c0:0d:
78:56:24:cd:f8:39:b5:54:42:3c:42:ac:33:81:48:
89:72:33:18:20:5f:fa:6a:23:a4:7b:3a:9f:74:ad:
c7:17:8f:67:ea:56:4f:a5:fc:75:ee:9b:fa:02:3d:
a0:4a:f4:d5:0e:97:7e:87:22:cf:b0:a5:81:ab:b2:
72:d0:5e:2e:65:30:4f:b1:62:7a:22:b4:b7:d5:4b:
e0:87:18:b9:5f:5d:0f:42:cd:d7:5a:bf:ee:e2:41:
b0:0e:db:5d:19:56:68:21:69:b1:20:f3:e9:1f:a5:
6d:92:df:0d:19:cd:56:87:d0:b2:fb:1c:e5:da:7c:
a4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D4:82:94:68:7B:2F:A1:E9:6B:A8:95:B2:BC:BA:78:6F:24:B7:64
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203655.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:13e0::-2a06:a005:140f:ffff:ffff:ffff:ffff:ffff
2a06:a005:1470::-2a06:a005:148f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
97:21:f1:9b:17:5d:67:c3:38:37:31:64:cf:ec:6e:c2:3d:04:
ba:40:67:63:c8:50:76:23:2d:50:cb:da:16:04:a8:ca:fe:fc:
21:ea:60:af:1a:0a:c8:44:38:a8:a4:b5:85:95:4d:ef:88:e3:
86:76:53:c5:dd:db:9f:53:0a:a4:50:8e:75:36:70:fc:33:76:
b0:39:ed:ad:67:68:85:7c:76:37:82:40:51:60:0b:e1:f9:ed:
37:2b:6e:18:17:b6:2d:98:86:bd:3e:1e:6a:33:d5:a7:89:20:
fd:69:09:59:48:83:f6:54:92:0b:f3:c3:e2:f0:2c:5b:64:8d:
d9:f3:11:3f:bb:9f:92:58:3d:01:e8:d8:a0:73:8a:63:ca:cf:
0b:19:78:35:40:56:7c:5b:c7:1b:8d:e7:dd:f6:f4:f5:65:c3:
de:76:69:f5:87:7f:81:a8:ef:d4:2d:b2:46:ef:20:ae:be:31:
09:f7:53:5c:a6:c1:66:51:49:ad:83:b0:c2:c9:b6:21:6f:e7:
7a:22:55:93:a4:28:64:fc:c1:ab:5d:fb:09:86:fc:be:40:3a:
c8:5c:8d:31:6a:65:e2:29:3d:f6:f7:24:44:a5:05:75:c5:be:
33:4d:f4:c6:37:88:53:36:94:df:cf:71:f8:d3:80:df:b0:3b:
8e:ac:63:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org