Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203899.roa
File: AS203899.roa (raw, json)
Hash identifier: uBbriXg8XdMxUk6b3xsP752MvRHvnXH4DCpRQ3h9o+Y=
Subject key identifier: E2:EE:62:77:19:2D:3B:0C:2C:A6:FA:B0:CC:1A:B0:47:91:3D:0C:AF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5429B020EFE2B6080E03E6077F536A35033E51AC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203899.roa
Signing time: Fri 15 Nov 2024 02:40:12 +0000
ROA not before: Fri 15 Nov 2024 02:35:12 +0000
ROA not after: Fri 14 Nov 2025 02:40:12 +0000
asID: 203899
IP address blocks: 2a06:a005:1200::/44 maxlen: 48
2a06:a005:1210::/44 maxlen: 48
2a06:a005:1220::/44 maxlen: 48
2a06:a005:1230::/44 maxlen: 48
2a06:a005:1240::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:29:b0:20:ef:e2:b6:08:0e:03:e6:07:7f:53:6a:35:03:3e:51:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 15 02:35:12 2024 GMT
Not After : Nov 14 02:40:12 2025 GMT
Subject: CN=E2EE6277192D3B0C2CA6FAB0CC1AB047913D0CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:a0:24:73:83:59:1e:6a:da:c7:b9:7c:d7:
ca:9b:c9:0b:1f:14:51:5b:bf:a9:77:c8:8e:68:1a:
6b:19:98:c3:e9:80:e0:80:bc:0d:d7:e7:a7:a0:db:
84:5f:5e:73:0a:32:f1:a4:01:35:7a:eb:73:f8:30:
3d:aa:23:6b:b8:6b:e5:99:a8:3d:71:ee:43:62:3b:
a6:88:c6:93:08:22:43:f7:4c:38:c0:55:28:1e:86:
dc:98:66:da:38:f1:70:8a:c3:20:79:5f:c9:82:69:
f1:96:29:e6:4c:2b:74:50:b9:b1:e1:03:c1:eb:6f:
96:ea:5b:50:b8:d7:f4:8e:3f:4b:e8:f1:7e:4d:ee:
21:8b:b0:4c:54:7f:52:87:2a:ff:88:d1:9e:42:db:
04:55:43:b6:60:ee:79:c2:60:37:5c:6c:9f:fc:0b:
9d:82:b8:b3:29:11:af:1c:9a:8c:d6:c6:4c:de:13:
d9:86:79:42:e0:b2:da:bc:1a:5e:24:8b:47:fc:fb:
9d:e2:1d:11:94:31:a7:ad:7e:01:81:63:eb:84:e0:
b7:be:ce:53:35:2d:dc:90:a3:08:45:4d:36:08:6d:
4d:a8:88:e0:9c:39:f6:4c:dd:d8:54:0d:08:ed:14:
8c:88:63:a6:9f:15:e4:1d:ca:f4:77:86:09:25:94:
2b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EE:62:77:19:2D:3B:0C:2C:A6:FA:B0:CC:1A:B0:47:91:3D:0C:AF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203899.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1200::-2a06:a005:124f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c3:08:64:82:60:3d:ff:28:75:5a:10:03:1d:f3:5c:74:63:34:
3b:61:3e:5d:a5:89:8a:60:26:55:68:ca:7d:e7:08:ee:61:e2:
45:5e:d6:85:0d:7e:1b:23:0e:98:1f:ac:dc:78:8e:ed:08:b4:
bc:c0:17:06:d9:40:19:2f:70:61:b5:59:b2:2c:68:d2:83:a6:
c2:9e:ab:0a:1c:ed:5c:12:90:62:72:b1:95:01:78:86:95:9b:
17:8f:ca:43:3d:c5:17:ef:95:2b:61:d3:cc:83:0e:8f:07:d5:
dc:fd:eb:aa:8c:5d:b5:94:be:27:81:1b:d3:7c:90:e4:51:06:
fd:d6:bc:14:0d:cf:c8:ef:2d:e4:40:fa:92:93:b1:3f:69:64:
d0:9a:b6:13:c5:7b:ef:46:a6:15:c4:50:ba:2c:37:05:7d:19:
4f:b9:0a:59:82:e1:04:32:4e:a4:70:a7:a1:93:5c:c2:3a:9a:
92:fb:61:62:de:cb:eb:ee:b5:9f:9d:41:cf:47:f2:87:bc:93:
b7:63:ca:ba:ef:b4:9a:74:f8:b1:34:63:d2:ac:80:98:cc:1a:
f1:22:da:99:66:16:82:8f:7b:d5:9d:5c:52:5a:71:75:22:86:
2e:ea:70:84:cf:77:8e:49:93:53:26:1b:18:b5:61:17:93:ed:
7a:5b:ce:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org