Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
File: AS203857.roa (raw, json)
Hash identifier: bP5E5JAsOgeBorrbPnB/bcsjF3PWe018L59isOOZJAI=
Subject key identifier: 87:6F:69:13:CE:37:4D:6A:5C:E0:87:E0:09:C6:C1:E7:06:41:6C:45
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 43263E64C465674A8CB67E91B50A1BDA5EDE8D42
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
Signing time: Fri 15 Dec 2023 06:44:21 +0000
ROA not before: Fri 15 Dec 2023 06:39:21 +0000
ROA not after: Fri 13 Dec 2024 06:44:21 +0000
asID: 203857
IP address blocks: 2a06:a005:10::/48 maxlen: 48
2a06:a005:11::/48 maxlen: 48
2a06:a005:12::/48 maxlen: 48
2a06:a005:2d4::/48 maxlen: 48
2a06:a005:2df::/48 maxlen: 48
2a06:a005:432::/48 maxlen: 48
2a06:a005:456::/48 maxlen: 48
2a06:a005:481::/48 maxlen: 48
2a06:a005:4d2::/48 maxlen: 48
2a06:a005:4d3::/48 maxlen: 48
2a06:a005:4d4::/48 maxlen: 48
2a06:a005:4d5::/48 maxlen: 48
2a06:a005:4d6::/48 maxlen: 48
2a06:a005:4d7::/48 maxlen: 48
2a06:a005:5e3::/48 maxlen: 48
2a06:a005:5e4::/48 maxlen: 48
2a06:a005:5e8::/48 maxlen: 48
2a06:a005:5e9::/48 maxlen: 48
2a06:a005:5ea::/48 maxlen: 48
2a06:a005:5eb::/48 maxlen: 48
2a06:a005:5ec::/48 maxlen: 48
2a06:a005:5ed::/48 maxlen: 48
2a06:a005:5ee::/48 maxlen: 48
2a06:a005:5ef::/48 maxlen: 48
2a06:a005:850::/48 maxlen: 48
2a06:a005:851::/48 maxlen: 48
2a06:a005:856::/48 maxlen: 48
2a06:a005:a01::/48 maxlen: 48
2a06:a005:a02::/48 maxlen: 48
2a06:a005:a08::/48 maxlen: 48
2a06:a005:b68::/48 maxlen: 48
2a06:a005:d4d::/48 maxlen: 48
2a06:a005:1160::/48 maxlen: 48
2a06:a005:1270::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:26:3e:64:c4:65:67:4a:8c:b6:7e:91:b5:0a:1b:da:5e:de:8d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 15 06:39:21 2023 GMT
Not After : Dec 13 06:44:21 2024 GMT
Subject: CN=876F6913CE374D6A5CE087E009C6C1E706416C45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3e:54:54:70:48:38:42:71:a4:a9:19:0d:4d:
be:67:73:a5:bd:b3:4f:b3:18:76:17:d5:13:5c:92:
82:f0:b6:ec:e2:c0:e5:fd:91:23:f5:cf:75:36:7c:
ab:0b:01:40:b3:db:0e:52:8d:ac:2b:bd:7a:e4:25:
01:8e:d4:4f:ff:90:12:30:71:c1:d3:f4:d2:a2:d6:
fb:29:66:51:fa:51:19:f6:fa:41:56:bb:d5:ad:58:
99:78:7a:b1:86:31:e0:d6:9f:46:cd:bc:99:65:89:
94:a6:f0:56:80:83:14:f6:e8:be:77:cc:18:05:56:
cd:3f:bd:c7:f7:83:20:c0:fb:a8:fa:92:91:70:93:
6d:88:9d:48:34:d1:48:79:6c:c8:cf:43:5b:2c:4f:
96:2b:9c:0e:d2:c5:b3:30:91:04:58:85:61:d1:9e:
2b:ed:51:37:ad:ea:a1:43:6f:d2:28:f3:3a:c0:2b:
8e:ae:d6:5b:a1:51:4a:df:a8:bc:ef:5f:9e:51:57:
d2:4a:52:1a:e0:1b:cb:b4:f5:99:c1:dd:90:f5:13:
68:6c:77:f5:10:6f:02:d8:8f:83:ce:73:85:4f:2e:
f9:56:a8:04:d7:c7:fe:23:fc:cf:ef:dd:c0:bf:c1:
0f:cf:58:95:38:18:eb:41:83:c6:64:d2:f4:c6:3a:
04:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6F:69:13:CE:37:4D:6A:5C:E0:87:E0:09:C6:C1:E7:06:41:6C:45
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:10::-2a06:a005:12:ffff:ffff:ffff:ffff:ffff
2a06:a005:2d4::/48
2a06:a005:2df::/48
2a06:a005:432::/48
2a06:a005:456::/48
2a06:a005:481::/48
2a06:a005:4d2::-2a06:a005:4d7:ffff:ffff:ffff:ffff:ffff
2a06:a005:5e3::-2a06:a005:5e4:ffff:ffff:ffff:ffff:ffff
2a06:a005:5e8::/45
2a06:a005:850::/47
2a06:a005:856::/48
2a06:a005:a01::-2a06:a005:a02:ffff:ffff:ffff:ffff:ffff
2a06:a005:a08::/48
2a06:a005:b68::/48
2a06:a005:d4d::/48
2a06:a005:1160::/48
2a06:a005:1270::/48
Signature Algorithm: sha256WithRSAEncryption
1c:34:90:0a:26:12:37:de:29:b6:8a:77:be:a0:27:fb:b6:b9:
66:f1:70:4e:69:5d:fa:67:72:9a:f3:5e:52:38:12:bd:4a:1a:
b3:39:8e:a4:be:c1:c1:0d:12:69:2c:06:5d:f8:f7:ab:d3:90:
92:5e:74:30:7e:c1:0c:89:bc:52:03:88:dd:2a:3b:cc:70:7e:
28:73:ea:ee:c3:9a:49:67:17:b8:d2:97:83:6f:84:17:31:75:
63:81:70:c5:20:f5:94:19:fb:ef:df:f7:68:20:e2:ce:b7:06:
09:5d:ba:a7:10:25:2c:e5:9e:01:31:34:e4:eb:67:f4:ec:f6:
c7:c4:66:13:41:6f:b3:3b:1b:05:90:9b:73:6a:b1:43:87:f9:
c0:78:6c:49:12:89:b7:72:cf:5d:44:55:4b:33:94:7a:39:27:
d6:7d:6e:ba:f2:9a:bf:01:e8:07:a9:d1:79:4b:53:2f:63:68:
43:6e:96:66:75:f0:d4:ac:f6:1f:c1:b3:f3:e6:54:c1:05:04:
50:82:59:ed:c3:59:fe:38:7e:03:44:89:8c:e2:9a:ef:16:8f:
ad:d3:39:40:28:8b:f0:c2:b2:f1:f7:fc:13:13:24:9f:95:7a:
b3:f7:0c:2d:f7:87:2e:2f:56:e3:ed:33:1c:ad:93:1f:4f:f5:
af:50:7b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org