Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211604.roa
File: AS211604.roa (raw, json)
Hash identifier: dhV7vbozAjWSHCUd7wCiw0cXY5K8wcJcw5K91NdWppE=
Subject key identifier: 0D:1D:BF:EA:04:2B:C3:16:C9:D5:C7:25:A1:34:9E:13:16:39:1A:2F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3959FDBBF54627FB197FE6AD757F03BC21FC82BA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211604.roa
Signing time: Fri 22 Dec 2023 14:44:21 +0000
ROA not before: Fri 22 Dec 2023 14:39:21 +0000
ROA not after: Fri 20 Dec 2024 14:44:21 +0000
asID: 211604
IP address blocks: 2a06:a005:450::/48 maxlen: 48
2a06:a005:452::/47 maxlen: 48
2a06:a005:12f0::/44 maxlen: 48
2a06:a005:1b30::/44 maxlen: 48
2a06:a005:2bd0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:59:fd:bb:f5:46:27:fb:19:7f:e6:ad:75:7f:03:bc:21:fc:82:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 22 14:39:21 2023 GMT
Not After : Dec 20 14:44:21 2024 GMT
Subject: CN=0D1DBFEA042BC316C9D5C725A1349E1316391A2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:63:5d:ce:71:2e:ce:cc:5b:fe:eb:73:60:6c:
3d:1b:f6:66:32:e8:01:39:78:aa:42:6f:d5:79:bb:
ab:23:31:d4:b1:11:24:6a:26:f6:41:ed:c6:2c:12:
c2:01:06:1f:65:87:ac:9c:0c:64:02:02:63:2c:77:
4d:b3:00:49:2f:73:91:09:ca:98:21:33:8c:96:f1:
1d:b1:60:4d:45:b6:03:d7:50:1f:ba:3b:3b:47:fa:
c0:b0:78:3a:12:7b:ea:ff:a3:30:d5:b6:8f:b7:d8:
26:6a:cc:fc:5e:9b:1b:16:36:1d:af:85:7a:48:1f:
6e:e1:7d:76:bc:3c:4f:f1:29:82:06:bf:8d:ad:34:
34:b2:82:35:ff:7b:4b:6b:a2:1a:6c:90:a6:4f:dc:
c3:be:90:5b:c2:80:fc:f2:9e:90:f6:a5:8b:f9:8e:
1b:09:ec:4b:86:93:b3:14:00:f1:71:f7:10:47:90:
5e:96:20:32:e1:b4:2e:fa:60:dd:67:85:cc:39:e5:
e9:31:df:5b:96:7c:27:4f:d6:d4:a4:da:d2:3d:d8:
0c:b3:d7:b9:f2:b7:f3:b4:0a:17:a3:ca:f7:e5:e2:
ab:c6:8b:ea:db:88:ec:6f:36:a4:9a:ca:9b:e6:af:
bd:fa:9c:99:61:7e:62:12:cf:90:b1:60:37:a0:46:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1D:BF:EA:04:2B:C3:16:C9:D5:C7:25:A1:34:9E:13:16:39:1A:2F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211604.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:450::/48
2a06:a005:452::/47
2a06:a005:12f0::/44
2a06:a005:1b30::/44
2a06:a005:2bd0::/44
Signature Algorithm: sha256WithRSAEncryption
7e:c6:8a:c8:cc:6b:2c:74:fa:b5:72:85:32:e0:9d:59:b2:ae:
cd:74:76:d1:df:56:49:a7:e1:01:ef:7d:3f:86:db:4f:89:89:
9c:01:6d:65:d8:0c:a5:9f:63:b6:64:65:3f:fc:96:ba:0c:a4:
8f:79:26:04:43:d2:93:69:c8:42:88:c0:01:ad:2d:62:3b:c1:
d2:e8:1d:44:9b:b9:a0:f5:2d:de:a6:ff:50:01:4b:30:e2:41:
cb:a3:8e:a4:1c:a7:85:7b:3b:d7:54:c3:4b:e1:78:8b:08:63:
6b:ae:ce:7c:58:d2:6b:42:7e:6b:4d:f5:4a:8b:11:7e:3a:90:
fb:c2:dc:64:92:f3:9e:f5:85:a5:6c:c4:b9:3b:89:94:cc:33:
a0:8f:ba:61:5c:41:7f:f5:5f:c2:5f:b3:67:34:25:fe:7b:8a:
f3:14:8b:ae:0d:88:25:92:63:73:8c:5d:98:59:f4:c1:ea:0f:
55:e4:9f:e6:49:af:c4:eb:b4:bc:89:ef:39:b0:c4:30:5e:c7:
f2:96:52:96:07:08:a9:2a:61:e1:5a:9b:d6:32:7e:24:10:a3:
72:4a:78:43:ee:6d:cc:de:17:a8:73:a1:5b:b9:3c:16:fe:0d:
c2:db:37:51:0a:69:c1:a9:7c:52:08:6e:62:ab:12:1d:1d:24:
25:fc:fc:8d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUOVn9u/VGJ/sZf+atdX8DvCH8growDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMjIxNDM5MjFaFw0yNDEyMjAxNDQ0MjFaMDMxMTAvBgNV
BAMTKDBEMURCRkVBMDQyQkMzMTZDOUQ1QzcyNUExMzQ5RTEzMTYzOTFBMkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdY13OcS7OzFv+63NgbD0b9mYy
6AE5eKpCb9V5u6sjMdSxESRqJvZB7cYsEsIBBh9lh6ycDGQCAmMsd02zAEkvc5EJ
ypghM4yW8R2xYE1FtgPXUB+6OztH+sCweDoSe+r/ozDVto+32CZqzPxemxsWNh2v
hXpIH27hfXa8PE/xKYIGv42tNDSygjX/e0trohpskKZP3MO+kFvCgPzynpD2pYv5
jhsJ7EuGk7MUAPFx9xBHkF6WIDLhtC76YN1nhcw55ekx31uWfCdP1tSk2tI92Ayz
17nyt/O0Chejyvfl4qvGi+rbiOxvNqSaypvmr736nJlhfmISz5CxYDegRo/ZAgMB
AAGjggIWMIICEjAdBgNVHQ4EFgQUDR2/6gQrwxbJ1ccloTSeExY5Gi8wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjExNjA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEH
AQH/BDcwNTAzBAIAAjAtAwcAKgagBQRQAwcBKgagBQRSAwcEKgagBRLwAwcEKgag
BRswAwcEKgagBSvQMA0GCSqGSIb3DQEBCwUAA4IBAQB+xorIzGssdPq1coUy4J1Z
sq7NdHbR31ZJp+EB730/httPiYmcAW1l2Ayln2O2ZGU//Ja6DKSPeSYEQ9KTachC
iMABrS1iO8HS6B1Em7mg9S3epv9QAUsw4kHLo46kHKeFezvXVMNL4XiLCGNrrs58
WNJrQn5rTfVKixF+OpD7wtxkkvOe9YWlbMS5O4mUzDOgj7phXEF/9V/CX7NnNCX+
e4rzFIuuDYglkmNzjF2YWfTB6g9V5J/mSa/E67S8ie85sMQwXsfyllKWBwipKmHh
WpvWMn4kEKNySnhD7m3M3heoc6FbuTwW/g3C2zdRCmnBqXxSCG5iqxIdHSQl/PyN
-----END CERTIFICATE-----
Generated at Sun Jun 2 00:29:31 2024 by rpki-client on console-ams.rpki-client.org