Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
File: AS203861.roa (raw, json)
Hash identifier: JqSkJEWz8T1sHqPIPnIEUmnss05/JJzITIJ2T7h5374=
Subject key identifier: FB:CC:94:58:7F:27:AC:C2:FE:F7:94:76:3C:8D:8E:A3:0B:B7:09:F1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0180227E805566AAF38E98A595B226F0BA617A78
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
Signing time: Wed 27 Dec 2023 18:44:21 +0000
ROA not before: Wed 27 Dec 2023 18:39:21 +0000
ROA not after: Wed 25 Dec 2024 18:44:21 +0000
asID: 203861
IP address blocks: 2a06:a005:1d52::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:80:22:7e:80:55:66:aa:f3:8e:98:a5:95:b2:26:f0:ba:61:7a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 27 18:39:21 2023 GMT
Not After : Dec 25 18:44:21 2024 GMT
Subject: CN=FBCC94587F27ACC2FEF794763C8D8EA30BB709F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a7:bb:e3:e3:c7:98:f6:8f:48:ed:f9:9e:bc:
c6:6a:4d:89:ec:26:fb:7b:01:43:9f:55:ec:9e:e2:
fb:3a:27:d5:a5:42:4d:54:5c:b7:cd:0c:89:35:97:
c9:17:0d:bf:8d:4c:9f:5a:28:57:5a:4e:35:71:b1:
39:7c:34:41:3e:e0:28:54:18:4c:fb:37:6d:2c:e3:
aa:8e:e8:35:c9:9e:25:bf:4f:9e:85:75:56:80:ba:
aa:bd:ac:6c:7b:6a:c9:b5:de:8b:c5:e1:a0:b5:bb:
3e:9a:4e:c9:98:ca:bb:e6:e9:aa:f9:ee:33:84:89:
72:0b:ca:b6:83:87:d4:5b:35:db:52:ce:c2:e0:b2:
d2:46:7c:c7:ba:f7:1c:66:40:b7:fc:2c:ea:23:54:
c2:97:83:7a:88:e8:32:10:aa:1e:31:fa:db:23:c1:
1c:c8:59:93:e2:2e:d3:86:7d:65:1f:58:0b:01:3d:
f5:c9:c0:2b:65:21:a8:e7:12:86:80:df:ec:d1:10:
fa:97:11:dd:85:2d:ce:2d:9e:84:78:6d:42:77:c2:
ef:88:74:68:b6:0d:cd:77:5e:95:f2:6f:38:00:9f:
2f:6b:28:e5:21:0a:09:36:fe:8f:3e:a0:d2:c3:57:
97:86:e0:40:e6:06:bf:71:4d:00:53:67:4a:d2:a4:
da:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:CC:94:58:7F:27:AC:C2:FE:F7:94:76:3C:8D:8E:A3:0B:B7:09:F1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d52::/48
Signature Algorithm: sha256WithRSAEncryption
28:5d:29:c8:0b:d9:08:d6:18:9a:88:e0:61:1d:57:3e:a4:79:
b6:0e:44:5d:5f:6d:49:f9:b1:5b:d1:1b:89:4f:98:b2:36:7a:
5a:30:49:9e:0b:fe:e1:fd:f8:2b:28:38:ec:3f:f3:8b:b1:e6:
87:b0:2d:75:b3:f6:7e:7f:66:16:a6:e3:b6:bd:0c:6d:45:be:
94:d2:b6:1f:f6:78:2b:d1:cf:4b:96:96:f4:ff:8d:60:af:19:
d6:6d:fa:df:93:c4:cc:c3:ee:35:46:33:bd:72:69:d5:4e:0a:
02:e5:63:b0:6d:19:e6:ff:96:28:d5:9a:0c:22:18:d5:c0:8c:
07:7e:ff:c8:de:f0:66:3c:51:48:4e:59:67:6d:09:17:4d:cc:
75:dc:d5:ef:cd:32:4b:d7:be:81:00:6a:df:aa:64:88:90:98:
10:cb:eb:b9:4f:55:4a:78:53:7a:48:6d:16:e9:cf:cc:4e:0c:
76:85:33:76:4f:f5:99:f1:f1:94:14:c1:e6:65:de:41:ac:25:
64:5d:98:0f:d1:d1:ad:3a:d9:d0:1a:a3:46:1b:ae:86:b7:28:
b3:af:4b:f3:f0:21:64:26:13:da:4b:9d:f5:9a:45:8c:ad:b0:
bc:8c:ac:ec:4c:42:75:30:19:0c:99:17:fd:e3:f2:c9:a5:f2:
2a:3f:9c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org