Autonomous System Provider Authorization
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
File: AS50555.asa (raw, json)
Hash identifier: LjdwvWRESIW+xX7gFaEDRAOSkbJXZ8dRIBmfTXSbc1w=
Subject key identifier: E7:FE:76:C5:69:87:27:38:0F:B1:10:FB:70:0E:5C:AD:1E:90:95:60
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 383367990D821582AD4E8FEEB17C83B5889B480F
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
Signing time: Sat 30 Aug 2025 20:28:18 +0000
ASPA not before: Sat 30 Aug 2025 20:23:18 +0000
ASPA not after: Sat 29 Aug 2026 20:28:18 +0000
Customer ASID: 50555
Providers: AS: 970
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 31 Aug 2025 22:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:33:67:99:0d:82:15:82:ad:4e:8f:ee:b1:7c:83:b5:88:9b:48:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Aug 30 20:23:18 2025 GMT
Not After : Aug 29 20:28:18 2026 GMT
Subject: CN=E7FE76C5698727380FB110FB700E5CAD1E909560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:11:3b:36:a3:22:e7:2d:f1:43:73:b1:2d:2d:
0b:55:b3:af:bd:76:87:c1:f6:de:8d:e2:0f:01:c4:
33:fe:c6:6e:ec:96:2a:89:04:0d:fc:96:2a:bd:91:
18:b7:27:e7:7f:b8:a9:d8:ae:e6:20:fd:af:aa:02:
0b:0f:ce:29:a7:d5:9f:ea:bb:69:6f:75:9b:44:8b:
79:7d:f6:1d:07:88:1e:39:83:61:bb:68:3d:93:73:
e4:c4:af:c4:db:07:c2:7f:25:49:7b:8d:00:62:b8:
0b:f8:d5:a2:b1:1f:28:0b:c5:6a:c2:9b:39:5f:2b:
d9:e3:ff:36:72:52:87:73:7d:85:d9:e8:e3:8f:1c:
ce:ec:12:93:f6:c6:8c:93:7a:f5:10:6b:13:5f:c0:
b0:74:f7:6c:db:54:f1:ac:ce:85:f0:05:90:ae:1e:
28:72:47:5c:b0:96:93:d9:24:a6:a6:3f:86:40:ca:
5e:13:7c:b7:27:da:70:34:fc:0c:65:a9:f8:80:d7:
c8:62:b6:ed:f9:e1:ef:47:96:15:fa:ad:97:42:4d:
f1:cd:63:94:70:f8:86:d3:f8:d3:f1:7b:cd:76:37:
33:b0:81:3e:f7:0f:14:17:30:85:6e:c7:e8:e8:05:
81:18:18:8f:51:1d:58:90:74:31:94:3c:c2:e5:e0:
24:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FE:76:C5:69:87:27:38:0F:B1:10:FB:70:0E:5C:AD:1E:90:95:60
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50555
Signature Algorithm: sha256WithRSAEncryption
87:fd:f8:ab:00:fb:88:44:50:2e:dc:5f:54:ae:74:35:39:0b:
f4:a2:da:83:fc:8f:98:8b:22:85:49:4e:e2:6f:8f:11:84:82:
f2:07:11:d6:ed:c4:22:c9:a7:6b:de:50:d1:c4:82:51:ed:65:
84:b7:d6:ff:dc:84:5b:26:63:9c:4d:50:bd:ae:77:15:5b:a5:
a6:55:a1:49:79:24:51:1a:d0:da:7b:ad:af:7e:79:90:21:c5:
32:70:34:d6:5a:3f:16:fa:52:f9:c5:0c:e5:01:6e:4d:93:49:
5c:0e:6f:78:40:a6:cc:58:8a:3c:a3:34:36:25:8b:20:97:9d:
2f:10:b2:ee:17:91:81:07:c4:ed:e2:9e:10:06:23:5a:2f:f9:
e7:4e:f9:4b:a3:25:7e:ae:49:7f:8a:65:9a:d7:e5:5e:a2:2e:
e7:59:ea:50:61:d5:87:bb:4d:3a:83:9c:68:6c:86:a9:d9:4a:
cd:4d:dd:45:d8:f9:e9:0f:56:3f:40:f3:26:03:b4:9e:bd:b7:
7f:b4:58:53:0d:fe:98:40:d1:59:7e:57:3a:13:72:95:00:45:
37:8c:d6:13:af:e1:a6:17:a3:07:a1:3f:f1:75:48:39:c6:9d:
c1:5c:ff:be:dc:d1:a3:7a:17:74:ed:a2:bf:ed:5b:53:ed:ac:
2c:6e:03:80
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Aug 31 13:16:18 2025 by rpki-client