Autonomous System Provider Authorization
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
File: AS50555.asa (raw, json)
Hash identifier: 6Tb3JWAiG3HB18+QURZTnhnTtpjs1INvbgLT/78hSiM=
Subject key identifier: 64:24:A3:59:AD:A7:A4:DA:38:B7:E5:B7:6E:1E:25:C4:64:22:AE:85
Certificate issuer: /CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Certificate serial: 5EE953DEAE7218EEAFE17F819DA258B4BE778CB2
Authority key identifier: 0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
Signing time: Sat 28 Sep 2024 19:50:51 +0000
ASPA not before: Sat 28 Sep 2024 19:45:51 +0000
ASPA not after: Sat 27 Sep 2025 19:50:51 +0000
Customer ASID: 50555
Providers: AS: 970
Validation: OK
Signature path: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.mft
rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:e9:53:de:ae:72:18:ee:af:e1:7f:81:9d:a2:58:b4:be:77:8c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d10e8a763bf8babe96be7ab47f9db59d9d95232
Validity
Not Before: Sep 28 19:45:51 2024 GMT
Not After : Sep 27 19:50:51 2025 GMT
Subject: CN=6424A359ADA7A4DA38B7E5B76E1E25C46422AE85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ec:da:ed:7c:7a:9f:6e:10:8b:6d:55:ac:3f:
ad:6c:35:ca:4a:3d:60:3e:ac:fa:dd:2f:06:e9:7e:
f3:30:3d:10:88:99:b6:ca:f8:4e:11:86:74:5f:1d:
5d:a3:11:4d:cb:da:97:d1:3d:b5:1d:1c:78:c8:49:
fa:a9:b8:ee:2f:1b:d5:ef:db:fe:17:b0:9c:91:c2:
85:e5:bd:fb:3b:52:b6:4b:1b:af:a1:b0:8f:10:0b:
23:81:cd:f1:82:86:f9:ea:89:e7:da:77:b4:55:69:
1c:5c:dd:38:f6:62:89:f6:7d:c3:38:34:f2:c6:df:
ee:4c:83:f4:a6:c2:8c:3b:41:2a:53:ef:31:19:b4:
b5:88:96:d3:ab:1d:7e:31:4a:34:d8:71:ab:49:98:
0e:ed:27:33:6a:31:58:ab:aa:15:d9:9a:e3:43:8a:
24:6a:dd:54:58:dc:40:32:32:11:5c:bb:37:6f:c4:
7f:7a:ab:0d:d0:bd:1d:0a:24:eb:4e:e4:5b:83:1d:
06:0a:36:3a:3f:b1:d4:28:26:6a:ff:b0:df:aa:85:
f6:31:76:08:8b:32:f0:66:cd:79:9c:dc:66:12:ef:
b1:39:e2:9d:7b:13:20:a0:77:69:4e:d4:03:94:ea:
f0:19:50:fa:56:8a:85:33:54:53:85:32:00:2f:15:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:24:A3:59:AD:A7:A4:DA:38:B7:E5:B7:6E:1E:25:C4:64:22:AE:85
X509v3 Authority Key Identifier:
keyid:0D:10:E8:A7:63:BF:8B:AB:E9:6B:E7:AB:47:F9:DB:59:D9:D9:52:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/0D10E8A763BF8BABE96BE7AB47F9DB59D9D95232.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DRDop2O_i6vpa-erR_nbWdnZUjI.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/0/AS50555.asa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50555
Signature Algorithm: sha256WithRSAEncryption
65:5b:78:5c:44:2d:3a:f8:90:74:50:f5:4b:ce:28:24:81:b0:
94:a2:63:a2:db:e9:a0:e3:e9:6c:92:56:e1:a5:6c:62:11:61:
c9:ef:96:58:b9:73:09:1c:9e:bf:99:06:01:b7:c6:a4:64:3e:
df:10:e2:cd:a3:55:2c:8a:7e:31:85:63:61:7c:31:68:16:f7:
3f:20:14:10:03:82:18:ba:2f:23:41:66:07:f9:4e:f7:19:7c:
5e:b4:6d:a4:9b:bf:5e:92:eb:69:71:42:91:20:d7:06:0d:b7:
07:3e:fa:3c:2a:c8:11:1b:12:bc:cb:5e:e7:47:67:29:1c:e6:
a5:8d:17:0d:9f:7a:3a:23:a2:30:17:ce:ab:8f:39:ab:81:cf:
da:f0:51:33:94:e0:1c:cf:65:cf:47:2c:a4:fe:11:ea:ba:4c:
29:ed:fd:0c:01:1c:74:22:54:02:05:1b:22:a5:7a:0e:81:b8:
11:2a:13:bc:11:30:c1:21:04:4e:f6:54:86:1a:a6:04:8d:6d:
97:95:2c:9f:dd:ff:93:b4:b2:e6:a7:ad:89:c9:11:e7:b9:c6:
01:46:66:66:02:a3:2f:3b:1e:12:99:f1:3d:0a:f4:ab:90:ff:
3b:d7:02:73:2f:dc:21:23:32:20:cb:0f:39:bb:32:37:bd:9d:
81:76:b7:f6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org