Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52210.roa
File: AS52210.roa (raw, json)
Hash identifier: aC99TrAU7C0kcaPIbCj9uuYkwVr31yL1wERv8wCKIjc=
Subject key identifier: 44:C6:D3:CF:6D:93:28:A8:56:78:CA:01:08:09:31:5D:A7:13:1A:8F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7565FB649F3BD13060EC57FFA3B716C4F11D13C1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52210.roa
Signing time: Sun 04 Feb 2024 20:44:24 +0000
ROA not before: Sun 04 Feb 2024 20:39:24 +0000
ROA not after: Sun 02 Feb 2025 20:44:24 +0000
asID: 52210
IP address blocks: 2a06:a005:45d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:65:fb:64:9f:3b:d1:30:60:ec:57:ff:a3:b7:16:c4:f1:1d:13:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 4 20:39:24 2024 GMT
Not After : Feb 2 20:44:24 2025 GMT
Subject: CN=44C6D3CF6D9328A85678CA010809315DA7131A8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cd:5c:b6:11:ba:93:9e:8c:b8:8a:a8:f4:45:
61:15:93:8b:da:5a:1e:29:f2:79:27:ab:58:1b:c4:
9f:9a:2e:c1:c5:a6:01:53:f5:a0:38:97:70:c7:cb:
ff:08:85:c8:83:2d:7d:25:f4:95:dc:9e:08:7a:07:
91:fc:50:16:36:a7:a7:0e:15:52:ab:b8:4b:e6:ff:
cf:4a:aa:9c:b6:b4:0b:f5:2f:f3:bc:b7:f2:22:ef:
77:9e:16:43:89:9d:f4:b4:42:74:49:c3:07:b0:20:
85:cf:fc:64:77:fd:6b:c1:2d:bc:ae:92:2d:1f:ee:
1b:7c:94:0e:23:47:26:8a:44:69:ba:7f:b7:94:c5:
f0:0e:8f:67:3d:52:7d:70:78:5f:25:3e:e9:9a:33:
ae:03:81:b9:c0:ab:25:43:fd:1a:9b:ef:f1:d1:cf:
78:f6:ad:24:b5:b0:e2:85:ec:d5:f2:46:c8:88:45:
60:53:0b:7e:88:8e:7b:1c:cc:fa:0a:46:6b:4b:05:
68:12:b0:0c:d7:56:92:58:59:35:03:3c:79:85:0c:
b8:bd:d4:4f:c5:6e:b7:42:37:07:ae:d4:6f:e1:7d:
73:16:61:c3:e0:65:77:66:03:f2:fb:e1:92:4a:72:
4f:f5:7a:ae:8d:c6:56:70:9a:b6:21:1d:71:39:1c:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C6:D3:CF:6D:93:28:A8:56:78:CA:01:08:09:31:5D:A7:13:1A:8F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52210.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:45d::/48
Signature Algorithm: sha256WithRSAEncryption
8d:eb:9c:ae:79:a5:ca:a1:64:a5:b6:ad:d9:1b:c8:05:e9:94:
fd:a9:6e:5d:7e:7c:f6:f6:ef:fa:67:b2:0d:45:43:3f:2a:c9:
41:42:65:fa:a3:8f:69:2f:64:85:0b:92:82:13:c3:04:b1:72:
57:3a:1d:ee:eb:eb:c8:66:ed:8c:6d:1f:bd:75:26:f5:a5:6c:
cf:85:3e:a7:de:0f:fa:84:ee:9c:7f:51:52:7c:6c:9f:88:ae:
33:2a:22:65:07:67:b9:87:c0:95:4d:7d:a8:25:71:e9:ee:00:
07:69:52:96:19:2a:34:64:02:37:27:2d:13:c0:42:f1:cd:f9:
a0:63:f1:9e:77:0d:ca:f9:82:a6:d2:64:5e:9b:d5:63:5f:66:
88:1d:e4:1e:dd:21:ae:ab:84:b5:4d:7b:8b:11:3b:0a:0a:d5:
00:02:fc:af:32:c2:d4:ad:26:ad:62:79:98:01:80:9b:07:bb:
af:12:0b:24:02:8a:ea:30:cd:6a:a7:57:ca:77:8d:5a:34:19:
14:71:39:f9:35:47:40:db:73:b1:cc:30:c4:a0:59:5a:26:1d:
a0:2c:4e:67:ee:9f:80:55:f9:21:9d:48:45:65:3d:6a:5a:7b:
06:64:65:e8:73:4b:af:fc:84:7f:87:83:f8:08:96:1f:70:01:
df:c2:08:b9
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUdWX7ZJ870TBg7Ff/o7cWxPEdE8EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDAyMDQyMDM5MjRaFw0yNTAyMDIyMDQ0MjRaMDMxMTAvBgNV
BAMTKDQ0QzZEM0NGNkQ5MzI4QTg1Njc4Q0EwMTA4MDkzMTVEQTcxMzFBOEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzVy2EbqTnoy4iqj0RWEVk4va
Wh4p8nknq1gbxJ+aLsHFpgFT9aA4l3DHy/8IhciDLX0l9JXcngh6B5H8UBY2p6cO
FVKruEvm/89Kqpy2tAv1L/O8t/Ii73eeFkOJnfS0QnRJwwewIIXP/GR3/WvBLbyu
ki0f7ht8lA4jRyaKRGm6f7eUxfAOj2c9Un1weF8lPumaM64DgbnAqyVD/Rqb7/HR
z3j2rSS1sOKF7NXyRsiIRWBTC36IjnsczPoKRmtLBWgSsAzXVpJYWTUDPHmFDLi9
1E/FbrdCNweu1G/hfXMWYcPgZXdmA/L74ZJKck/1eq6NxlZwmrYhHXE5HDE3AgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQURMbTz22TKKhWeMoBCAkxXacTGo8wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
NTIyMTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAqBqAFBF0wDQYJKoZIhvcNAQELBQADggEBAI3rnK55
pcqhZKW2rdkbyAXplP2pbl1+fPb27/pnsg1FQz8qyUFCZfqjj2kvZIULkoITwwSx
clc6He7r68hm7YxtH711JvWlbM+FPqfeD/qE7px/UVJ8bJ+IrjMqImUHZ7mHwJVN
faglcenuAAdpUpYZKjRkAjcnLRPAQvHN+aBj8Z53Dcr5gqbSZF6b1WNfZogd5B7d
Ia6rhLVNe4sROwoK1QAC/K8ywtStJq1ieZgBgJsHu68SCyQCiuowzWqnV8p3jVo0
GRRxOfk1R0Dbc7HMMMSgWVomHaAsTmfun4BV+SGdSEVlPWpaewZkZehzS6/8hH+H
g/gIlh9wAd/CCLk=
-----END CERTIFICATE-----
Generated at Mon May 20 06:51:21 2024 by rpki-client on console-ams.rpki-client.org