Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3137362e35382e38392e302f32342d3234203d3e203336323336.roa
File: 3137362e35382e38392e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: vrEHBU8zuW2YsmOQ2PGSoVZlebFowFbjIX5DEkF5tgg=
Subject key identifier: 95:16:25:9D:D8:03:E5:3B:26:09:91:87:3B:C9:18:FF:29:5D:CF:04
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 66B50243C78D6517AAE5D8F0A07B2F088FE812BA
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3137362e35382e38392e302f32342d3234203d3e203336323336.roa
Signing time: Mon 02 Sep 2024 23:13:14 +0000
ROA not before: Mon 02 Sep 2024 23:08:14 +0000
ROA not after: Mon 01 Sep 2025 23:13:14 +0000
asID: 36236
IP address blocks: 176.58.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:b5:02:43:c7:8d:65:17:aa:e5:d8:f0:a0:7b:2f:08:8f:e8:12:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Sep 2 23:08:14 2024 GMT
Not After : Sep 1 23:13:14 2025 GMT
Subject: CN=9516259DD803E53B260991873BC918FF295DCF04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:ee:a4:65:07:dc:a4:4d:0a:fa:84:c4:f2:
21:ea:0d:1f:fa:25:7b:a9:43:ac:1f:b0:eb:fe:51:
a3:77:5d:c0:ae:6e:e5:a3:57:ce:20:39:3c:5a:97:
0a:46:66:ab:21:20:66:44:fb:18:07:c0:a0:11:54:
37:f4:2d:9f:6e:5e:4b:ed:32:54:d7:0e:f8:ee:91:
bd:27:99:85:a6:dc:57:50:96:93:5c:c5:44:cc:12:
39:0e:d6:c0:74:e8:4b:0b:8d:4a:98:5a:2d:15:5b:
d8:60:35:16:37:0c:2a:0c:19:39:01:fd:2c:05:dd:
ec:1f:be:bb:eb:f4:9a:09:98:18:7e:03:fb:26:27:
cf:8e:ef:74:fb:78:72:44:9f:09:aa:b0:39:ef:c7:
0c:c5:07:6d:24:c9:59:1a:e1:6c:62:8d:d0:47:a4:
d3:b2:51:aa:a8:44:26:c3:21:fc:47:4e:13:8b:8d:
7d:77:7b:4c:fa:23:21:94:59:3b:bd:ef:07:ff:fa:
ef:ae:fc:23:31:db:5f:73:4b:90:c6:52:04:ce:19:
55:a8:ad:82:85:a4:0e:54:f4:58:89:0d:fc:d0:d6:
61:b1:f8:78:0e:02:cb:00:44:98:a4:2e:a0:a7:66:
f6:10:09:df:7f:d2:ec:6c:9e:00:08:73:6d:4c:ef:
d0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:16:25:9D:D8:03:E5:3B:26:09:91:87:3B:C9:18:FF:29:5D:CF:04
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3137362e35382e38392e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.89.0/24
Signature Algorithm: sha256WithRSAEncryption
35:92:81:17:15:0c:d5:43:8d:5c:7a:fb:65:0d:6e:09:e1:8a:
c7:e4:a4:3e:ae:05:00:84:1f:eb:01:03:b7:db:f4:25:1b:bb:
6d:75:7d:98:3b:19:53:6a:27:1f:31:0f:bb:34:b0:16:cf:ad:
9d:69:ca:14:02:8b:4e:7e:af:8a:6a:da:b0:a4:b6:b6:ad:04:
cd:2a:ea:27:45:7a:d3:85:91:b3:ed:6f:77:4c:46:d4:05:d1:
f8:b3:46:dc:27:5d:59:93:34:41:46:32:33:5d:25:68:2a:8a:
92:3f:b5:87:8f:fa:8d:dd:e4:36:0b:b8:67:7a:2f:02:69:b6:
56:52:40:9e:b6:5b:1e:bf:4f:e1:60:df:11:15:36:23:d4:d3:
c6:a8:13:43:c5:34:d9:e3:46:c6:64:9b:78:ed:5d:cd:56:8e:
48:4d:62:23:ba:69:21:b9:e6:c3:74:19:00:f7:21:22:07:64:
27:9e:00:43:31:6a:d7:f6:55:97:99:13:5a:3d:6a:67:7c:81:
79:e6:3a:fc:ee:ca:5e:12:54:ef:e5:c2:7a:ee:11:7b:91:d8:
8d:9c:ed:d3:a7:db:4f:a4:be:17:0b:5a:cf:3e:53:ea:00:14:
c4:ab:13:fe:7b:36:61:10:cc:b9:5a:f0:7c:4f:74:1c:fc:a7:
0d:3e:35:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 18:45:14 2024 by rpki-client on console-ams.rpki-client.org