Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
File: AS204375.roa (raw, json)
Hash identifier: TzXiyW/ryY5h3wWUZe35LZxUc6TjJ2erHICR75g6APU=
Subject key identifier: ED:59:34:5A:20:4C:53:2B:59:05:77:A0:90:86:58:EE:88:29:5B:C3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 590E72421ECD919D857CC13A90B4157E8B22FD16
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
Signing time: Tue 05 Dec 2023 02:44:19 +0000
ROA not before: Tue 05 Dec 2023 02:39:19 +0000
ROA not after: Tue 03 Dec 2024 02:44:19 +0000
asID: 204375
IP address blocks: 2a06:a005:2d3::/48 maxlen: 48
2a06:a005:5a0::/48 maxlen: 48
2a06:a005:ad0::/44 maxlen: 48
2a06:a005:2270::/44 maxlen: 48
2a06:a005:2590::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:0e:72:42:1e:cd:91:9d:85:7c:c1:3a:90:b4:15:7e:8b:22:fd:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:19 2023 GMT
Not After : Dec 3 02:44:19 2024 GMT
Subject: CN=ED59345A204C532B590577A0908658EE88295BC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:db:ca:0d:83:ab:14:5f:0f:13:2c:b3:9e:0b:
1f:7e:eb:92:35:c3:5a:50:1c:90:76:9a:3c:22:7a:
b1:b0:0e:65:24:20:9d:4b:b9:07:0d:22:8d:8b:d7:
8e:0a:86:24:bf:78:6a:f8:7b:b4:74:10:96:d3:e8:
d7:e7:0b:8a:1d:36:8a:f7:0e:ac:bb:02:f4:51:fe:
e1:31:f9:65:57:68:5e:7b:ae:7f:74:72:49:4c:fe:
22:c6:8a:66:60:27:8d:8e:5f:b0:f8:ea:c4:55:4b:
ab:ee:18:9b:5c:fe:0f:5e:69:60:f3:72:30:a4:e7:
d4:d3:ff:b5:8c:ea:c6:74:58:f7:9a:b9:be:ab:ff:
8b:c9:2f:60:cf:ef:5c:df:76:47:e5:0d:cf:06:47:
fa:67:66:6f:a8:02:1a:0e:15:ba:56:f5:17:1f:67:
33:d8:50:fc:20:ab:1e:a0:39:eb:c8:de:24:35:7d:
dc:79:ea:23:e0:fc:2b:62:c0:26:a8:57:bc:07:11:
9d:4e:cf:db:cd:bb:2e:6e:bf:17:f0:c7:81:8c:80:
c2:5b:a6:63:02:cc:9d:96:e8:25:8f:5f:b6:6b:1c:
e6:e1:1c:35:ff:0f:15:11:f0:10:a4:29:8f:5c:78:
10:25:12:9e:1e:99:75:ba:3d:f4:db:ec:af:15:3a:
61:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:59:34:5A:20:4C:53:2B:59:05:77:A0:90:86:58:EE:88:29:5B:C3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2d3::/48
2a06:a005:5a0::/48
2a06:a005:ad0::/44
2a06:a005:2270::/44
2a06:a005:2590::/44
Signature Algorithm: sha256WithRSAEncryption
78:9a:e0:64:1d:6c:81:6b:44:2d:c7:cf:eb:dc:96:0c:1d:b1:
15:9d:5a:15:17:fb:d9:33:0a:49:6b:a1:49:0d:d1:6e:9e:04:
0e:21:13:99:26:f9:12:51:f7:82:3f:3e:6b:50:b8:1e:fb:c0:
a7:93:76:9c:06:7e:52:7c:70:61:47:5e:c6:a5:10:79:d8:a0:
fe:af:65:b1:58:e9:7e:40:c0:50:16:ea:7e:c0:24:09:a0:9a:
d5:98:b2:37:69:f5:bc:e6:8a:a9:93:db:a3:2d:57:b4:b3:56:
95:5c:d9:6d:a2:f9:4a:55:e4:2a:3f:62:49:ee:41:10:cd:2e:
71:54:31:fc:90:a3:5a:a9:f3:9c:9a:bc:c3:a9:5d:3b:06:de:
5a:ea:a6:32:b1:68:25:ca:b0:90:9c:d8:fd:87:d1:b9:d3:62:
e7:6e:3d:56:11:45:df:27:b0:7e:1a:eb:de:8d:30:11:db:2a:
f5:03:04:4c:5f:09:02:25:fb:e6:0e:55:7e:0d:4f:e3:6f:47:
03:f7:2e:a4:df:2d:5a:2f:05:82:ba:b1:43:ad:6a:c8:94:e2:
64:39:25:57:c2:3f:f0:49:b7:db:af:d3:11:77:77:b4:fb:11:
58:fe:9f:0e:cf:25:54:1a:e9:7d:5e:bb:70:80:ca:72:03:33:
eb:93:e4:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org