Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
File: AS214456.roa (raw, json)
Hash identifier: b4L/PLIOYbh2nfO+BWL1PLUmJb/lfuqVO533vxRQBBE=
Subject key identifier: B5:53:A9:DD:4A:4C:1D:24:FD:1F:C5:F4:1E:23:E8:C6:BA:2E:0F:AF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 58C092E4A837FDFC6750E1A73C10D64A7D239122
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
Signing time: Sun 22 Sep 2024 02:48:41 +0000
ROA not before: Sun 22 Sep 2024 02:43:41 +0000
ROA not after: Sun 21 Sep 2025 02:48:41 +0000
asID: 214456
IP address blocks: 103.230.142.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:c0:92:e4:a8:37:fd:fc:67:50:e1:a7:3c:10:d6:4a:7d:23:91:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Sep 22 02:43:41 2024 GMT
Not After : Sep 21 02:48:41 2025 GMT
Subject: CN=B553A9DD4A4C1D24FD1FC5F41E23E8C6BA2E0FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c1:81:40:30:98:4f:26:a5:68:bb:be:42:51:
90:16:3d:4d:97:09:c0:2c:9a:7b:87:87:8f:05:f3:
9f:0b:20:6c:2d:5c:a4:b3:2f:0d:74:a7:ac:c4:e6:
a9:d8:92:ac:b3:68:38:ea:49:fd:b6:23:e3:2d:d1:
18:58:7b:0d:24:8a:00:42:b6:cb:67:84:f3:7c:14:
a4:ff:9d:c0:44:15:72:97:ef:bb:9c:92:fe:c1:fa:
1b:79:f2:29:17:10:82:16:e4:a7:6c:bb:e7:27:39:
e5:a8:3c:a4:d9:9b:b8:3b:5d:4c:a7:4c:7d:6a:e3:
f0:2b:58:77:61:37:0f:a0:33:8d:a9:41:ef:15:48:
d0:d5:d4:74:0e:30:82:66:f9:58:99:65:94:ed:cf:
a8:af:cc:64:97:58:db:ed:0e:41:d6:42:25:59:18:
e8:b5:c0:7e:cd:69:c0:01:17:ce:30:9c:c2:3b:c8:
e6:48:9d:b3:f9:13:12:72:af:7b:9c:cd:cc:9a:81:
10:cb:78:1b:9f:1d:21:65:80:ce:fe:56:a7:5b:3b:
34:2a:b8:2c:06:53:9c:84:1d:cb:47:8e:11:4d:db:
8c:bf:b9:bc:96:16:1a:bf:dc:bd:a7:68:81:2c:c0:
7c:1e:d3:06:44:db:8d:fd:a1:7d:70:f4:fd:04:fb:
28:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:53:A9:DD:4A:4C:1D:24:FD:1F:C5:F4:1E:23:E8:C6:BA:2E:0F:AF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.230.142.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:56:a7:31:4b:3b:1a:74:0a:ae:20:d7:1f:2b:49:0d:9b:a3:
1f:2b:d8:b8:f0:40:ce:b1:96:ca:0a:3d:88:38:06:5d:07:49:
0e:62:76:fa:c4:84:ed:77:5c:8c:89:b1:9b:bb:a7:42:8e:37:
d1:a9:2c:4a:cc:05:8c:30:6f:75:bc:6e:b6:8e:0c:be:50:16:
a1:af:e0:94:0b:58:d4:22:38:32:b9:12:84:09:e9:7a:e3:05:
b6:1c:21:5c:f8:34:49:aa:e6:27:72:9b:44:55:d4:a8:05:1a:
81:78:f2:85:17:b1:2f:00:03:47:19:eb:78:b6:bb:72:47:db:
16:d9:d1:33:f2:fc:f2:3e:ea:8a:12:46:0a:b4:3d:f5:3e:33:
3f:48:f2:0d:1f:d3:7d:51:f2:88:ad:bc:a8:34:48:8b:04:be:
d5:fd:99:32:47:b5:05:66:e0:de:f3:c2:82:59:f3:0e:2a:6c:
e1:1a:56:71:34:1a:30:f2:eb:9c:19:09:29:b0:bf:3d:e7:11:
bb:f1:ea:cb:b7:15:ac:85:5b:dc:87:74:d0:f8:93:bc:db:84:
2d:16:b3:cd:b8:4e:8a:53:7e:d2:69:8a:e1:75:74:f0:1f:e7:
d5:65:ab:a5:17:ca:1a:ac:81:68:5a:6e:0f:01:3e:a7:ff:57:
83:91:01:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:55 2024 by rpki-client on console-ams.rpki-client.org