Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32342d3234203d3e203336323336.roa
File: 3138352e33342e322e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: jk62tgN1VdAojJ5nYdJE/qpEWiCg3DBAiGguaf1kvrk=
Subject key identifier: DB:99:8E:DA:B3:1A:EF:F5:0A:3E:D2:19:83:97:1A:87:88:2C:74:A9
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 3AB057B6D2167ADC4E75051B3B8A834F1863FF54
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32342d3234203d3e203336323336.roa
Signing time: Thu 21 Sep 2023 18:51:05 +0000
ROA not before: Thu 21 Sep 2023 18:46:05 +0000
ROA not after: Thu 19 Sep 2024 18:51:05 +0000
asID: 36236
IP address blocks: 185.34.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 19:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:b0:57:b6:d2:16:7a:dc:4e:75:05:1b:3b:8a:83:4f:18:63:ff:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Sep 21 18:46:05 2023 GMT
Not After : Sep 19 18:51:05 2024 GMT
Subject: CN=DB998EDAB31AEFF50A3ED21983971A87882C74A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:91:31:fe:96:06:5a:34:c3:5d:6d:4c:20:
6f:14:cf:e2:3a:0b:1e:a1:b5:ee:8e:74:28:94:48:
b1:93:1b:46:7d:f7:f6:7e:aa:35:0e:e2:c1:ee:23:
8f:cb:49:99:3c:b6:ad:d5:52:6b:95:51:f7:45:3f:
ed:8c:5f:0a:e4:1c:02:7d:d6:56:0d:0d:73:ca:b0:
64:a0:37:e0:8f:94:24:ea:5a:58:9b:ec:d7:28:88:
70:d0:00:20:65:de:6b:39:5b:dd:6e:86:96:d6:c2:
41:fb:77:f2:eb:17:31:2c:9d:3c:ac:0a:a7:9d:a3:
5a:59:05:71:16:17:25:06:3e:b4:1e:2b:80:9a:27:
f8:06:7b:88:8e:f9:f5:b7:74:e2:35:86:eb:43:1f:
55:e4:e5:a0:99:2b:b5:9c:ad:92:6d:63:25:18:f0:
5c:81:71:40:fb:34:81:01:35:4a:bd:85:13:22:11:
f9:6d:d5:f6:1d:02:cb:a6:48:b0:61:74:05:f8:a3:
0d:6d:19:db:fb:50:15:27:07:a3:26:f7:6c:3a:25:
58:5c:91:a0:74:e2:2e:ee:4d:0f:d7:32:23:c6:0b:
6a:00:4a:2b:76:e4:65:22:82:ff:85:7b:03:39:28:
5e:ce:4b:76:33:9b:9c:98:3b:1a:f7:20:99:f7:d2:
e4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:99:8E:DA:B3:1A:EF:F5:0A:3E:D2:19:83:97:1A:87:88:2C:74:A9
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e33342e322e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.2.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:26:02:15:16:b0:1c:cb:e6:57:1d:3a:21:41:f0:7a:49:e6:
51:1e:db:5b:dd:59:8b:67:50:8e:0b:8b:d0:06:53:80:70:53:
5f:15:1d:88:e6:68:31:79:78:1d:b2:22:0f:1a:06:da:bf:37:
5e:2b:c7:5e:7d:10:28:db:f3:39:bb:c9:14:81:44:ca:a2:d9:
2b:3b:22:d5:62:4e:51:f9:e2:91:f0:e7:53:47:3c:a8:eb:9c:
71:a5:cf:19:a1:3d:45:71:0c:f6:fe:7e:af:5b:39:6f:81:48:
78:2c:e9:12:e4:bf:c8:e2:58:bc:af:f1:3c:89:6e:26:5f:bd:
42:a0:fc:81:1c:df:bc:8e:20:c4:09:de:25:3c:ab:f2:61:a4:
e1:6f:d4:37:83:0a:78:e6:6a:d0:74:39:e3:7a:a3:0a:0e:b4:
87:bf:8b:d7:e9:d7:e4:b0:dc:da:12:22:a6:e5:7f:95:37:13:
86:c2:af:14:a8:20:34:21:9e:8a:ae:78:35:f5:f2:38:44:4f:
27:7d:6c:49:8c:ae:c0:a4:57:f5:e9:d1:b2:aa:f7:8c:9c:0e:
96:bd:88:89:bb:9a:8c:75:cd:47:c5:31:13:21:1b:c6:c6:8a:
a9:c7:b2:63:21:d4:95:30:76:01:d7:ee:f8:e6:98:39:8e:ab:
5e:3f:45:40
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIUOrBXttIWetxOdQUbO4qDTxhj/1QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWIyYzdlNjI1MDNiMDYzNGViNGFiNTNmODhjMDY5NTBh
Yzc2ZGNkMTAeFw0yMzA5MjExODQ2MDVaFw0yNDA5MTkxODUxMDVaMDMxMTAvBgNV
BAMTKERCOTk4RURBQjMxQUVGRjUwQTNFRDIxOTgzOTcxQTg3ODgyQzc0QTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6R5Ex/pYGWjTDXW1MIG8Uz+I6
Cx6hte6OdCiUSLGTG0Z99/Z+qjUO4sHuI4/LSZk8tq3VUmuVUfdFP+2MXwrkHAJ9
1lYNDXPKsGSgN+CPlCTqWlib7NcoiHDQACBl3ms5W91uhpbWwkH7d/LrFzEsnTys
Cqedo1pZBXEWFyUGPrQeK4CaJ/gGe4iO+fW3dOI1hutDH1Xk5aCZK7WcrZJtYyUY
8FyBcUD7NIEBNUq9hRMiEflt1fYdAsumSLBhdAX4ow1tGdv7UBUnB6Mm92w6JVhc
kaB04i7uTQ/XMiPGC2oASit25GUigv+FewM5KF7OS3Yzm5yYOxr3IJn30uSFAgMB
AAGjggIdMIICGTAdBgNVHQ4EFgQU25mO2rMa7/UKPtIZg5cah4gsdKkwHwYDVR0j
BBgwFoAU6yx+YlA7BjTrSrU/iMBpUKx23NEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODNmNjg2NjEwODRiODYvMS9FQjJDN0U2MjUw
M0IwNjM0RUI0QUI1M0Y4OEMwNjk1MEFDNzZEQ0QxLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNnl4LVlsQTdCalRyU3JVX2lNQnBVS3gyM05FLmNlcjCBnQYIKwYB
BQUHAQsEgZAwgY0wgYoGCCsGAQUFBzALhn5yc3luYzovL3Jwa2ktcnBzLmFyaW4u
bmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODNmNjg2NjEwODRiODYv
MS8zMTM4MzUyZTMzMzQyZTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzNjMy
MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEALkiAjANBgkqhkiG9w0BAQsFAAOCAQEAXyYCFRawHMvm
Vx06IUHweknmUR7bW91Zi2dQjguL0AZTgHBTXxUdiOZoMXl4HbIiDxoG2r83XivH
Xn0QKNvzObvJFIFEyqLZKzsi1WJOUfnikfDnU0c8qOuccaXPGaE9RXEM9v5+r1s5
b4FIeCzpEuS/yOJYvK/xPIluJl+9QqD8gRzfvI4gxAneJTyr8mGk4W/UN4MKeOZq
0HQ543qjCg60h7+L1+nX5LDc2hIipuV/lTcThsKvFKggNCGeiq54NfXyOERPJ31s
SYyuwKRX9enRsqr3jJwOlr2IibuajHXNR8UxEyEbxsaKqceyYyHUlTB2Adfu+OaY
OY6rXj9FQA==
-----END CERTIFICATE-----
Generated at Fri May 17 03:49:46 2024 by rpki-client on console-fra.rpki-client.org