Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS47152.roa
File: AS47152.roa (raw, json)
Hash identifier: TfsgeChy7LOGTfZB/p4E+T8GwAXqlMgHQ4M/URAwTbg=
Subject key identifier: AF:E0:6D:5E:88:6C:FB:BD:4E:F0:9F:15:EA:75:7F:7A:D9:A3:68:F0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3C3612DB9647AFFA33A1CD0E1D8E8E4C04783ABF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS47152.roa
Signing time: Thu 02 Nov 2023 09:58:50 +0000
ROA not before: Thu 02 Nov 2023 09:53:50 +0000
ROA not after: Thu 31 Oct 2024 09:58:50 +0000
asID: 47152
IP address blocks: 103.230.140.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:36:12:db:96:47:af:fa:33:a1:cd:0e:1d:8e:8e:4c:04:78:3a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 2 09:53:50 2023 GMT
Not After : Oct 31 09:58:50 2024 GMT
Subject: CN=AFE06D5E886CFBBD4EF09F15EA757F7AD9A368F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0a:61:0c:c4:d5:f7:39:50:5c:58:1d:6b:c5:
ff:51:6d:ad:c4:72:37:a0:7c:aa:a2:79:e1:71:d1:
77:d9:fa:87:59:83:3a:21:ea:22:8a:ed:94:c1:d8:
85:ff:4c:b2:19:38:e1:95:57:11:fa:93:b4:ee:11:
1a:5c:8b:6c:3d:94:2e:ae:f0:89:33:40:2d:46:dc:
7e:50:99:30:c1:25:c9:d5:b6:4f:a0:12:a8:88:eb:
8c:bd:ea:aa:ca:53:ce:e3:49:d8:b7:ff:2c:44:80:
43:dc:3a:a9:e2:9d:db:14:87:ef:ed:66:f7:16:ea:
be:70:12:3f:2a:9d:d5:50:e7:55:fd:5a:3f:7a:c3:
a7:e8:53:6c:57:95:e4:f9:c5:55:ef:74:d7:3c:86:
cd:2b:c7:51:78:85:2f:e3:a2:be:6c:a7:33:42:23:
11:30:5c:e8:e2:90:07:da:65:c3:21:96:b4:bb:21:
58:da:bf:44:1c:62:df:70:69:b0:98:b3:a6:3a:ca:
b3:fc:94:0b:56:0e:6d:6d:05:a3:8b:34:95:3f:a7:
57:7e:04:04:61:69:b9:1f:cc:1c:35:5e:68:43:88:
a0:e2:9c:7c:17:4c:80:6a:65:0d:21:00:dc:28:4b:
29:c6:b9:4b:f9:4e:37:7a:0f:84:5a:8e:ad:27:34:
04:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E0:6D:5E:88:6C:FB:BD:4E:F0:9F:15:EA:75:7F:7A:D9:A3:68:F0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS47152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.230.140.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:58:20:14:30:2d:07:4f:2e:0b:ec:aa:fd:6e:60:9b:b7:6d:
28:1e:6f:49:0e:4c:63:3d:67:0d:f5:f4:95:ae:44:94:72:5e:
37:6f:6a:b0:5c:67:02:53:f8:83:cf:8c:2d:dc:a9:df:25:cb:
9c:c1:ae:5e:ce:56:7e:55:27:e3:ca:b5:a3:cd:74:73:8d:a6:
a4:70:fb:52:a6:ae:be:c8:fd:f6:9b:a8:fb:90:70:93:69:de:
70:d9:42:bd:a2:ad:66:fc:d5:11:03:2e:5c:db:49:aa:97:d5:
3a:e4:b3:70:47:2c:ea:45:d2:88:de:f1:70:d9:52:85:87:87:
8a:62:38:4a:15:8e:15:69:1d:7d:4c:05:a3:ea:8f:71:64:06:
5d:82:19:0b:ec:ce:6a:83:f9:bd:2c:7b:fc:ce:d3:34:83:28:
e4:9f:69:f2:a8:2d:b9:e5:21:64:2e:36:69:0a:ae:22:e6:b4:
cb:46:7b:dd:ae:12:24:20:ea:f9:9a:94:aa:c2:93:61:d4:7b:
36:22:15:11:64:2f:e9:6c:a5:06:93:e2:79:90:72:d0:55:44:
d5:96:83:05:77:b2:a4:d3:76:35:05:e8:c3:57:3b:63:2e:22:
57:60:5e:0a:aa:33:1d:df:e3:ff:85:34:e2:d5:45:d0:85:e2:
8f:23:f0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org