Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
File: AS23470.roa (raw, json)
Hash identifier: RfhN2mFphecyowyfk7iHIV4BPCTQofN6iA9S65vT79w=
Subject key identifier: CD:4B:FE:01:09:72:D6:FB:AF:B7:85:1A:4E:B1:C1:1C:35:B2:04:52
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 029A96D76EC67C08E54CFD8F348CBF7CDBB5616D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
Signing time: Sun 02 Jun 2024 10:48:23 +0000
ROA not before: Sun 02 Jun 2024 10:43:23 +0000
ROA not after: Sun 01 Jun 2025 10:48:23 +0000
asID: 23470
IP address blocks: 2a06:9f40::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a09:54c7::/32 maxlen: 48
2a0a:6041::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:9a:96:d7:6e:c6:7c:08:e5:4c:fd:8f:34:8c:bf:7c:db:b5:61:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jun 2 10:43:23 2024 GMT
Not After : Jun 1 10:48:23 2025 GMT
Subject: CN=CD4BFE010972D6FBAFB7851A4EB1C11C35B20452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:e5:0e:9e:8f:b9:cf:d9:bb:69:bc:e1:89:
47:31:49:12:48:90:2f:2f:fc:b8:04:f7:b8:78:48:
01:41:7e:72:3f:2e:d8:ed:f3:71:b6:bd:71:cf:47:
ae:a5:73:83:96:e7:38:e9:4b:1e:29:6d:39:b3:ff:
af:82:c0:64:fd:95:fc:d8:7c:25:84:a9:51:3c:28:
5a:ef:a1:6a:28:3b:6e:8c:a2:f3:37:e7:a2:f3:d3:
de:8f:60:02:44:b5:0e:19:17:b6:84:0f:cf:25:5d:
66:fa:24:90:3e:50:2e:15:7e:6c:c5:43:37:fb:d6:
1f:9d:c0:d8:23:03:4f:35:c6:2c:48:07:3f:b6:26:
89:18:f6:f5:ad:5c:2a:89:0c:14:0e:aa:1b:74:b3:
18:c2:bb:70:4f:fd:c5:25:dc:5b:51:3c:1f:1f:91:
15:9c:7e:16:c8:83:38:f4:5d:e0:11:de:49:d0:51:
15:ff:82:5c:7d:72:5a:ad:5c:8e:a2:6b:2a:22:29:
c8:7d:d7:a0:e1:dd:a2:c2:18:77:7e:5c:11:4a:9f:
f2:c4:98:c8:65:05:72:87:32:7d:82:c9:20:9c:e4:
f9:78:7a:87:7f:aa:e4:e9:e6:4a:db:c0:06:da:5b:
89:a3:61:57:8b:4a:63:95:01:f8:a6:4d:58:85:cd:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4B:FE:01:09:72:D6:FB:AF:B7:85:1A:4E:B1:C1:1C:35:B2:04:52
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f40::/32
2a06:9f46::/32
2a09:54c1::/32
2a09:54c7::/32
2a0a:6041::/32
Signature Algorithm: sha256WithRSAEncryption
8d:56:00:d5:7d:d0:71:f3:ee:9f:b2:d3:26:fb:72:aa:e4:d4:
3f:dc:67:d3:80:35:6e:62:07:80:61:42:ed:2b:4c:71:c0:e0:
e3:83:26:1f:0c:b7:67:97:15:ee:63:b6:f6:38:46:a4:ae:e0:
fc:d9:6d:cd:e9:9b:d0:0e:68:33:e0:cc:1a:81:d4:e5:53:2b:
cb:d3:43:96:ce:80:a4:33:6f:1e:5b:a9:28:04:44:06:6b:be:
16:3b:48:ea:ab:2e:15:32:0e:e1:9a:d1:b5:05:11:a4:e0:88:
12:86:d3:81:66:3a:b6:5c:bd:00:02:4e:11:8b:14:83:97:d1:
37:d7:8b:d3:71:4c:36:4b:a5:fc:93:d3:f0:f7:bd:4d:84:b6:
1a:9d:8d:7a:9c:7b:b4:af:60:1f:cb:17:31:67:6d:96:8e:08:
d8:1e:58:ef:09:23:96:d3:94:88:47:2a:2c:bc:47:80:db:74:
22:70:62:a2:c9:05:2b:48:65:bc:0b:d7:f1:61:9a:be:70:55:
42:c3:7e:07:b4:a9:31:c7:4d:b1:ea:85:38:39:57:1e:b8:c5:
79:b4:ec:6d:bc:4a:4b:83:a8:49:25:c4:d3:4c:2b:36:68:cc:
7a:b4:20:ff:05:43:73:80:83:a9:e5:1a:b7:50:94:7e:2c:26:
24:64:da:13
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIUApqW127GfAjlTP2PNIy/fNu1YW0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDA2MDIxMDQzMjNaFw0yNTA2MDExMDQ4MjNaMDMxMTAvBgNV
BAMTKENENEJGRTAxMDk3MkQ2RkJBRkI3ODUxQTRFQjFDMTFDMzVCMjA0NTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC88OUOno+5z9m7abzhiUcxSRJI
kC8v/LgE97h4SAFBfnI/Ltjt83G2vXHPR66lc4OW5zjpSx4pbTmz/6+CwGT9lfzY
fCWEqVE8KFrvoWooO26MovM356Lz096PYAJEtQ4ZF7aED88lXWb6JJA+UC4VfmzF
Qzf71h+dwNgjA081xixIBz+2JokY9vWtXCqJDBQOqht0sxjCu3BP/cUl3FtRPB8f
kRWcfhbIgzj0XeAR3knQURX/glx9clqtXI6iayoiKch916Dh3aLCGHd+XBFKn/LE
mMhlBXKHMn2CySCc5Pl4eod/quTp5krbwAbaW4mjYVeLSmOVAfimTViFzckJAgMB
AAGjggILMIICBzAdBgNVHQ4EFgQUzUv+AQly1vuvt4UaTrHBHDWyBFIwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjM0NzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcB
Af8ELTArMCkEAgACMCMDBQAqBp9AAwUAKgafRgMFACoJVMEDBQAqCVTHAwUAKgpg
QTANBgkqhkiG9w0BAQsFAAOCAQEAjVYA1X3QcfPun7LTJvtyquTUP9xn04A1bmIH
gGFC7StMccDg44MmHwy3Z5cV7mO29jhGpK7g/Nltzemb0A5oM+DMGoHU5VMry9ND
ls6ApDNvHlupKAREBmu+FjtI6qsuFTIO4ZrRtQURpOCIEobTgWY6tly9AAJOEYsU
g5fRN9eL03FMNkul/JPT8Pe9TYS2Gp2Nepx7tK9gH8sXMWdtlo4I2B5Y7wkjltOU
iEcqLLxHgNt0InBioskFK0hlvAvX8WGavnBVQsN+B7SpMcdNseqFODlXHrjFebTs
bbxKS4OoSSXE00wrNmjMerQg/wVDc4CDqeUat1CUfiwmJGTaEw==
-----END CERTIFICATE-----
Generated at Sun Jun 2 12:46:26 2024 by rpki-client on console-ams.rpki-client.org