Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203873.roa
File: AS203873.roa (raw, json)
Hash identifier: 383CkNlhKz0r7DjouRs3q6diL485T7U5bqUqo+1uPsE=
Subject key identifier: 26:1F:6F:61:88:93:AA:B4:F2:80:FA:48:54:AF:D9:02:24:11:9D:61
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 492BB42DF4672A872CF4FA792509D4696E854828
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203873.roa
Signing time: Tue 05 Dec 2023 02:44:19 +0000
ROA not before: Tue 05 Dec 2023 02:39:19 +0000
ROA not after: Tue 03 Dec 2024 02:44:19 +0000
asID: 203873
IP address blocks: 2a06:a005:1280::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:2b:b4:2d:f4:67:2a:87:2c:f4:fa:79:25:09:d4:69:6e:85:48:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:19 2023 GMT
Not After : Dec 3 02:44:19 2024 GMT
Subject: CN=261F6F618893AAB4F280FA4854AFD90224119D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6c:e6:e2:65:59:e4:f4:7e:67:af:dc:51:e2:
3e:b0:a8:c8:00:d2:fd:f9:26:f1:33:87:8e:c9:bc:
0d:59:48:b9:f1:03:87:a4:af:af:38:91:f0:11:55:
fa:33:e7:2a:7d:2c:79:13:b8:d8:d3:10:e5:44:c1:
bf:75:fb:16:2f:8e:5c:5e:95:6c:7f:51:47:19:75:
1c:58:dc:39:02:d5:12:14:45:3b:b3:a5:ac:68:93:
31:a4:8e:c2:1a:5f:db:47:a3:46:e7:17:4c:03:6d:
9d:72:f3:12:e7:68:ea:36:67:6f:ac:d4:1f:5a:f7:
fb:b9:5c:a4:25:39:39:d0:20:b3:92:f3:16:5f:30:
f1:23:52:6e:ec:2c:c4:c9:0f:b7:ab:32:82:fa:b4:
71:30:56:46:06:ab:99:41:5f:48:26:56:f9:c9:25:
96:75:45:f5:80:97:38:36:e0:44:5f:15:a7:ee:2f:
1e:de:ab:4a:ee:b8:f9:de:03:86:14:f4:52:90:a4:
dd:59:3f:2c:1e:78:ea:41:53:6a:3e:a9:04:93:4c:
06:6f:d2:9f:60:fe:dc:21:ea:7f:6e:43:10:51:2f:
12:b5:17:dc:ba:56:61:0b:a1:46:b5:c2:9b:d8:87:
80:24:ab:0d:5f:4c:df:54:c3:50:39:79:1f:e4:3b:
68:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1F:6F:61:88:93:AA:B4:F2:80:FA:48:54:AF:D9:02:24:11:9D:61
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203873.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1280::/44
Signature Algorithm: sha256WithRSAEncryption
14:dc:21:7c:34:c0:8f:24:24:3e:25:30:a4:bb:25:90:46:3f:
ac:df:7b:44:80:e0:94:e0:82:64:ea:29:5d:11:a0:f6:d3:2f:
73:e4:8e:69:f7:d4:dd:54:1d:95:ed:b5:54:6d:ab:ad:5b:20:
ea:c0:f8:37:be:84:47:34:b3:fd:ce:77:47:c7:60:07:b1:cd:
5b:42:61:a2:12:64:38:68:06:9e:34:29:aa:35:17:18:3d:6b:
24:0e:06:1a:04:99:9d:9f:bd:3f:34:ab:40:2c:cb:59:d2:1c:
cf:fd:8b:cf:9a:e2:2c:4b:1a:7e:10:21:8f:93:83:9e:45:8d:
ca:33:ee:38:7b:0e:7f:be:46:e4:f5:e9:02:36:d7:95:a8:b7:
67:bc:ae:fb:ba:56:b5:20:2b:72:7b:26:51:a7:f8:96:ae:1b:
20:0f:19:c6:9e:69:52:c3:10:76:84:aa:80:99:c2:09:19:ee:
77:fc:83:0e:3f:d4:97:d9:6c:fa:72:21:0d:51:8a:0b:c4:b7:
07:d9:62:80:fa:0d:da:8c:43:d8:42:ea:ad:01:1d:8f:96:9b:
6d:f4:5d:6f:0a:a5:48:a6:d5:b7:15:21:9d:9e:dc:53:f2:12:
f1:36:7b:13:e7:7d:4c:37:83:81:fd:32:76:68:ef:ab:b8:85:
6c:82:8b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org