Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233342e302f32342d3234203d3e203336323336.roa
File: 3138352e34302e3233342e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: ku9POovGqVbqZixVX1m1WrJJZksW54UFTqmZvrSBYLs=
Subject key identifier: FD:16:C3:6F:03:DE:54:F2:49:3A:B7:59:24:C6:FD:D5:BC:4D:33:D4
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 724B4A064F1BC0BD294C2A480F401ABFB3AED70B
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233342e302f32342d3234203d3e203336323336.roa
Signing time: Mon 02 Sep 2024 22:13:11 +0000
ROA not before: Mon 02 Sep 2024 22:08:11 +0000
ROA not after: Mon 01 Sep 2025 22:13:11 +0000
asID: 36236
IP address blocks: 185.40.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:4b:4a:06:4f:1b:c0:bd:29:4c:2a:48:0f:40:1a:bf:b3:ae:d7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Sep 2 22:08:11 2024 GMT
Not After : Sep 1 22:13:11 2025 GMT
Subject: CN=FD16C36F03DE54F2493AB75924C6FDD5BC4D33D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4a:60:04:f0:c5:0e:1c:a2:ad:4a:d2:03:47:
d2:5a:db:60:2e:68:24:4f:27:3f:27:64:73:15:41:
7f:6f:86:12:1c:b6:e5:9c:b4:da:d4:3b:54:72:3d:
80:9e:18:b2:4f:fe:b2:8a:1e:ee:c1:0c:8f:57:05:
10:a3:3a:ad:0a:87:2f:b3:7b:75:3b:d8:d2:ba:c8:
4e:c7:fe:21:5d:40:cf:61:be:27:71:0a:93:98:71:
d4:b1:ad:95:97:f5:ab:01:17:f4:25:63:36:ca:af:
08:d4:c6:f9:2d:f3:5c:8d:39:ff:81:06:a3:db:dd:
2b:dd:a3:6a:7a:df:5b:15:cb:e7:5f:21:7e:71:bd:
25:f5:08:74:eb:f3:ef:dd:4a:14:7e:2c:06:7f:cb:
14:23:e4:28:2a:de:1f:21:08:cb:1b:e5:55:fb:75:
82:a8:b6:28:73:d7:4f:15:b1:d8:e6:73:0e:8f:71:
d8:dd:77:c1:2e:3f:00:cd:4d:85:ef:c0:93:9b:70:
35:be:60:5f:83:e6:77:34:13:75:2a:3b:69:6c:87:
d8:9f:ac:92:ad:7c:38:6f:f1:85:94:0e:10:79:38:
79:e5:bf:33:04:be:04:59:77:98:0f:77:27:ce:8d:
2e:63:7e:d7:9d:69:d2:fe:97:13:05:3b:59:fe:5e:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:16:C3:6F:03:DE:54:F2:49:3A:B7:59:24:C6:FD:D5:BC:4D:33:D4
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/3138352e34302e3233342e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.234.0/24
Signature Algorithm: sha256WithRSAEncryption
61:22:4c:14:32:d2:62:2f:3a:cc:f4:c8:42:1b:3a:84:b4:26:
ea:c0:85:ee:d6:48:73:9e:6d:e9:4c:c9:8f:61:b8:b9:70:1a:
93:31:1e:9b:95:f9:f4:26:0a:4d:2b:39:65:42:5c:5b:8a:e8:
51:23:ee:c9:2c:aa:bf:a1:5a:1a:4c:19:0e:04:da:79:a1:0a:
d4:d6:67:b6:cc:3a:67:72:fa:bd:25:e5:55:a1:8a:e2:01:12:
02:b4:2e:05:47:9e:97:c2:b9:30:06:0c:2c:00:8b:5d:8f:1a:
fb:4b:e9:21:55:0d:e1:ce:f6:a3:fa:79:f2:5d:8d:c9:47:f2:
c2:89:70:a8:dc:9b:46:aa:33:3f:ec:75:6f:1d:78:50:65:c1:
28:b3:60:c5:f3:ea:4a:3c:b1:c4:22:5d:6e:d0:84:55:93:80:
d6:9a:fe:09:a4:83:d0:a9:15:46:dc:ee:fb:d8:86:da:43:1d:
05:59:e4:48:99:83:f8:dd:89:49:79:2a:18:27:76:8e:14:c2:
60:87:92:bd:4d:6b:54:e0:2c:1a:99:aa:1f:46:98:23:e5:ea:
f8:0a:2b:55:b0:34:68:fa:67:4c:1f:15:09:e6:fb:34:76:1c:
8e:61:b5:2b:8c:0c:b0:a2:4f:ae:34:19:b1:17:19:72:d5:da:
c0:da:99:12
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUcktKBk8bwL0pTCpID0Aav7Ou1wswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWIyYzdlNjI1MDNiMDYzNGViNGFiNTNmODhjMDY5NTBh
Yzc2ZGNkMTAeFw0yNDA5MDIyMjA4MTFaFw0yNTA5MDEyMjEzMTFaMDMxMTAvBgNV
BAMTKEZEMTZDMzZGMDNERTU0RjI0OTNBQjc1OTI0QzZGREQ1QkM0RDMzRDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISmAE8MUOHKKtStIDR9Ja22Au
aCRPJz8nZHMVQX9vhhIctuWctNrUO1RyPYCeGLJP/rKKHu7BDI9XBRCjOq0Khy+z
e3U72NK6yE7H/iFdQM9hvidxCpOYcdSxrZWX9asBF/QlYzbKrwjUxvkt81yNOf+B
BqPb3Svdo2p631sVy+dfIX5xvSX1CHTr8+/dShR+LAZ/yxQj5Cgq3h8hCMsb5VX7
dYKotihz108Vsdjmcw6Pcdjdd8EuPwDNTYXvwJObcDW+YF+D5nc0E3UqO2lsh9if
rJKtfDhv8YWUDhB5OHnlvzMEvgRZd5gPdyfOjS5jftedadL+lxMFO1n+Xl0lAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQU/RbDbwPeVPJJOrdZJMb91bxNM9QwHwYDVR0j
BBgwFoAU6yx+YlA7BjTrSrU/iMBpUKx23NEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODNmNjg2NjEwODRiODYvMS9FQjJDN0U2MjUw
M0IwNjM0RUI0QUI1M0Y4OEMwNjk1MEFDNzZEQ0QxLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNnl4LVlsQTdCalRyU3JVX2lNQnBVS3gyM05FLmNlcjCBogYIKwYB
BQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6Ly9ycGtpLXJwcy5hcmlu
Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzZjY4NjYxMDg0Yjg2
LzEvMzEzODM1MmUzNDMwMmUzMjMzMzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAz
MzM2MzIzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAuSjqMA0GCSqGSIb3DQEBCwUAA4IBAQBhIkwU
MtJiLzrM9MhCGzqEtCbqwIXu1khznm3pTMmPYbi5cBqTMR6blfn0JgpNKzllQlxb
iuhRI+7JLKq/oVoaTBkOBNp5oQrU1me2zDpncvq9JeVVoYriARICtC4FR56Xwrkw
BgwsAItdjxr7S+khVQ3hzvaj+nnyXY3JR/LCiXCo3JtGqjM/7HVvHXhQZcEos2DF
8+pKPLHEIl1u0IRVk4DWmv4JpIPQqRVG3O772IbaQx0FWeRImYP43YlJeSoYJ3aO
FMJgh5K9TWtU4CwamaofRpgj5er4CitVsDRo+mdMHxUJ5vs0dhyOYbUrjAywok+u
NBmxFxly1drA2pkS
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:07:33 2024 by rpki-client on console-fra.rpki-client.org