Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
File: AS63018.roa (raw, json)
Hash identifier: Ty6KQjCqJBEJ3/buLVgF2MUl9mLyQKDJfBQllMQ/lJY=
Subject key identifier: 82:70:E1:10:AF:24:B9:58:02:57:5F:00:BD:7C:08:E3:80:3F:4E:70
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 54E65C054F7C7BA9841F95EDDB9B987D5DBD841B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
Signing time: Sun 09 Mar 2025 04:40:18 +0000
ROA not before: Sun 09 Mar 2025 04:35:18 +0000
ROA not after: Sun 08 Mar 2026 04:40:18 +0000
asID: 63018
IP address blocks: 103.214.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:e6:5c:05:4f:7c:7b:a9:84:1f:95:ed:db:9b:98:7d:5d:bd:84:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Mar 9 04:35:18 2025 GMT
Not After : Mar 8 04:40:18 2026 GMT
Subject: CN=8270E110AF24B95802575F00BD7C08E3803F4E70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:bb:24:00:41:1c:dd:9a:96:45:b6:cf:d8:
52:e0:d8:33:f1:af:c9:74:72:1f:6e:97:36:28:8e:
e1:40:d8:ba:3e:8a:ec:28:d8:6b:36:1f:a8:60:9b:
0d:f3:79:93:38:2d:14:98:d3:0c:57:1b:a1:aa:23:
ab:1a:39:95:7a:52:36:e8:6d:53:54:1d:a4:15:23:
7b:9c:b8:4c:f3:d8:79:93:df:07:c9:09:6b:06:81:
b2:a2:5f:72:04:4c:3c:cd:09:b5:9e:a7:0d:04:81:
2c:a0:f5:d0:c8:3f:00:14:78:5e:a5:03:1c:96:09:
85:cb:41:af:ea:fe:88:e5:62:0b:b7:28:34:bb:04:
0e:ae:d4:c4:35:13:01:cf:d2:77:69:e3:87:52:f8:
83:2b:4d:e0:ca:cf:bd:95:0f:36:63:8e:7b:02:e7:
32:92:f4:00:91:2c:c0:cd:bc:ad:8a:31:b8:c9:eb:
1e:7b:fc:00:8a:3b:ae:cb:f1:3e:b7:7c:2a:f0:52:
9f:06:a7:c1:91:b9:d8:c0:0b:d9:67:e6:91:31:97:
07:5a:b6:c1:c5:08:be:ee:83:b7:3a:ad:d9:80:de:
64:f2:25:aa:2e:92:3e:98:96:e5:9c:44:5b:c4:c9:
1f:c9:0d:71:64:f4:a0:e8:94:f6:f1:fd:4c:ea:9b:
38:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:70:E1:10:AF:24:B9:58:02:57:5F:00:BD:7C:08:E3:80:3F:4E:70
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.71.0/24
Signature Algorithm: sha256WithRSAEncryption
39:45:c5:48:06:3d:1d:73:43:32:a1:9c:fe:b6:4b:a6:e4:ca:
06:6e:34:98:55:d0:77:ab:cf:6f:99:9b:73:90:9f:bc:c6:88:
1b:cb:0d:2b:1b:2e:88:5c:1b:77:43:74:9f:aa:da:19:1d:91:
05:60:62:6b:fe:e3:c9:23:3b:90:b8:5f:21:9a:35:e2:f0:92:
0b:4d:23:8d:d7:9d:e9:d5:bf:7e:9b:86:44:fc:00:d0:76:ce:
24:34:0e:c6:49:ce:0f:87:b4:a3:33:f5:cb:dd:37:68:3e:66:
10:b4:50:d0:97:59:a8:7e:de:ae:d5:77:7b:40:82:2d:01:41:
8f:30:64:5e:76:8d:4b:31:de:0f:07:37:cc:a9:8a:1f:fb:d8:
df:1e:d3:51:d6:6d:42:78:27:63:49:22:32:f7:a0:08:1a:7f:
4b:6f:86:40:f6:fb:1f:eb:ca:0d:9d:62:90:fa:cd:99:33:88:
b8:c1:bc:f7:0f:80:ea:91:a2:90:07:d4:dc:44:5c:df:f8:43:
a2:59:13:19:c8:9d:c1:8d:bb:78:bf:aa:be:e0:b5:78:fc:7b:
9f:fd:83:34:2c:f5:e4:c3:fe:7b:36:76:bf:2c:2a:59:51:14:
e4:f0:45:36:26:42:f1:80:44:24:d5:da:d5:5b:79:95:b7:c1:
b8:6a:8e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:41:28 2025 by rpki-client