Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
File: AS63018.roa (raw, json)
Hash identifier: ScEbQ6zafOX9alA7inH0lPKchoPRJPiBcqJsXPRLM5U=
Subject key identifier: F5:9A:4E:62:4D:5D:DC:36:1C:18:4A:B9:0C:2D:02:8B:1D:40:E8:E6
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 25555092990FE7702D237BF01CACCF57F12BB85D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
Signing time: Sun 07 Apr 2024 04:01:27 +0000
ROA not before: Sun 07 Apr 2024 03:56:27 +0000
ROA not after: Sun 06 Apr 2025 04:01:27 +0000
asID: 63018
IP address blocks: 103.214.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:55:50:92:99:0f:e7:70:2d:23:7b:f0:1c:ac:cf:57:f1:2b:b8:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 7 03:56:27 2024 GMT
Not After : Apr 6 04:01:27 2025 GMT
Subject: CN=F59A4E624D5DDC361C184AB90C2D028B1D40E8E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:cf:fd:b9:98:e9:ff:3e:35:4f:cf:bf:76:
73:af:17:90:60:3c:45:fb:d3:a0:49:43:f2:23:aa:
9a:a5:0f:28:b4:f5:56:87:98:33:54:c7:c3:64:45:
dd:87:0a:c0:79:c0:75:22:24:b7:5b:78:ff:32:d6:
6b:8a:07:73:b9:d2:c7:aa:bf:03:9b:5d:8a:35:14:
09:99:15:7d:98:c0:7d:d5:6c:49:4c:ec:b7:18:1a:
5d:73:55:ae:0b:c3:eb:93:56:cd:4a:02:3c:a5:12:
ea:a3:24:c5:ae:55:c1:45:48:5a:6a:56:66:a3:c7:
ba:36:fc:6d:9b:38:f5:b4:c4:4d:e4:9b:de:ca:a9:
63:70:b6:15:22:3f:25:b0:82:62:36:3c:78:3d:e5:
fe:2a:65:fc:40:82:f9:04:99:03:42:10:98:94:45:
8e:91:ba:9a:10:df:d5:6c:ba:28:ec:d2:fa:86:75:
6a:2b:30:e8:55:cc:e0:8c:12:75:dd:9e:8f:67:62:
88:b4:c7:e7:dc:8b:c5:21:4b:fe:24:35:d8:e1:0b:
ad:7b:32:21:75:03:14:48:d1:5c:e2:dc:69:4a:9c:
d4:08:14:36:4d:29:b1:fe:77:33:c3:22:78:3a:cf:
ad:fe:d2:19:fd:14:ec:42:28:6b:52:b1:19:5e:de:
17:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9A:4E:62:4D:5D:DC:36:1C:18:4A:B9:0C:2D:02:8B:1D:40:E8:E6
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.71.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e5:af:93:84:88:83:5d:99:a7:d5:f7:04:5c:b6:1a:45:0e:
59:89:92:de:e5:2d:7f:66:0c:08:06:cf:91:b1:df:60:4e:e1:
47:a2:85:7d:17:e8:f7:d0:2b:d9:08:c3:d1:38:40:2d:54:07:
99:05:d1:a6:b4:e3:01:81:25:67:67:a2:88:9f:e0:07:bd:47:
1a:be:2e:8f:3d:c0:4b:17:2c:5c:26:2d:89:48:61:00:46:b8:
eb:0f:15:8c:9f:41:4a:b4:1d:6f:4a:b1:08:4e:2e:b5:dc:96:
6b:ab:fd:0f:90:38:fe:ca:7d:85:28:60:6b:5a:0d:40:c8:d5:
76:6a:ac:5d:86:c6:73:cb:69:a7:04:60:ac:d7:ca:d4:99:89:
6e:67:ae:f8:95:53:07:a6:ac:23:8e:56:9b:86:dc:c1:e1:34:
f3:d7:8e:9b:58:a8:40:4d:fe:97:12:a4:d1:55:05:52:ac:c1:
aa:76:a8:23:f1:05:24:15:27:48:e7:1a:ac:fc:26:8a:c8:19:
b7:91:b9:8a:de:75:ec:12:65:83:0d:a2:17:be:2b:7c:21:56:
8a:5f:99:94:ff:6e:44:1b:89:dc:1b:f5:20:6f:39:09:46:e4:
dd:c5:63:5d:b6:0b:41:31:fa:ef:09:96:18:ce:03:d4:43:32:
12:a3:4e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:24 2024 by rpki-client on console-fra.rpki-client.org