Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: FVvX7o5d0jypkA2tVKuqac6cRwD3GxsvY3Ii5ZUrpY0=
Subject key identifier: AB:7D:43:9E:02:84:63:5F:6C:38:A8:F2:15:78:88:A6:AA:A1:EF:44
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 57BE13B925FE5250785613D2B97BE153770F7582
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS7018.roa
Signing time: Wed 12 Mar 2025 20:18:19 +0000
ROA not before: Wed 12 Mar 2025 20:13:19 +0000
ROA not after: Wed 11 Mar 2026 20:18:19 +0000
asID: 7018
IP address blocks: 2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a005:3070::/44 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:be:13:b9:25:fe:52:50:78:56:13:d2:b9:7b:e1:53:77:0f:75:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Mar 12 20:13:19 2025 GMT
Not After : Mar 11 20:18:19 2026 GMT
Subject: CN=AB7D439E0284635F6C38A8F2157888A6AAA1EF44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:be:f5:a8:d1:3c:e9:32:3f:f0:fc:b1:a9:bc:
d2:f0:4f:a9:46:8c:11:b0:cc:54:e4:43:35:e1:86:
d9:9f:58:e9:a2:87:4f:d5:38:09:1f:49:e0:dd:a2:
37:1f:bc:9d:2c:79:56:e5:b2:1a:5d:d3:1c:c9:de:
83:92:54:49:bc:b2:b1:05:9c:3c:a4:27:b8:47:4f:
49:7f:b4:93:a5:bc:92:dc:1f:ea:25:10:ae:ff:28:
20:6f:c5:ec:02:b6:fc:5b:95:30:4c:01:6a:a7:b0:
06:5e:3b:57:c6:94:66:72:80:32:5e:f9:21:ef:88:
ed:22:e3:a9:65:09:cb:ac:4f:18:d1:ec:21:56:72:
77:14:c9:eb:c1:b5:c7:14:b2:d0:4a:a6:a0:cd:1c:
10:42:fa:f9:c8:e8:c8:bb:f0:61:1e:e5:a8:d9:d7:
9a:77:a5:15:20:92:86:ed:a3:ea:28:16:13:c1:31:
18:51:6b:ec:ba:31:35:f4:c6:71:c4:7e:0a:8f:b4:
71:a2:70:af:16:d1:38:5f:ac:31:fb:1d:6e:e9:f9:
5a:03:78:f2:54:4e:79:38:14:08:ac:af:9c:f7:3a:
96:ff:f0:2f:e3:b0:f7:41:53:90:57:11:86:e1:54:
aa:71:06:56:8d:ba:6a:3d:5a:ea:59:01:41:eb:f1:
a6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:43:9E:02:84:63:5F:6C:38:A8:F2:15:78:88:A6:AA:A1:EF:44
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a005:3070::/44
2a0d:d903::/32
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
6f:b9:8a:41:c5:d5:c3:13:f6:dd:eb:e5:5a:df:17:c5:06:e1:
fd:db:cf:25:36:68:89:04:1c:61:75:e2:3d:f1:ec:8d:87:7b:
57:a8:e2:53:4f:e1:8d:4f:57:70:83:df:7a:f6:8a:38:42:a4:
25:c2:00:2f:2c:33:7c:d1:2e:b3:8f:28:f2:aa:6d:ee:c9:37:
b9:be:3d:19:bb:0a:63:c0:ce:74:fc:53:a2:89:53:84:3a:40:
49:1c:f3:82:87:97:97:9d:ac:96:c3:7d:08:a7:22:ce:b1:64:
f5:6f:12:ee:f1:f0:ec:57:9f:9c:74:93:35:ed:04:a7:f1:1b:
ee:78:d9:59:5f:a2:dd:3a:bf:2b:20:b0:23:cc:5f:7c:84:8a:
7f:b7:11:35:72:15:b4:80:21:e0:75:1d:78:42:0f:cc:5c:5c:
4b:36:32:c0:7d:57:43:b3:0a:b1:f3:f0:44:0a:94:17:0d:66:
97:05:9a:6f:22:1e:60:07:56:89:19:bd:aa:02:fe:25:e7:8c:
c4:58:2c:8a:dd:4f:46:be:32:0b:f1:30:66:af:c0:a8:85:f9:
38:ce:09:4d:0e:73:4e:3a:b7:42:ee:09:b5:5f:08:45:48:e8:
0a:25:2b:5d:11:e5:2e:3d:b8:ab:75:76:48:74:1e:95:ce:15:
cb:8b:0e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:20 2025 by rpki-client