Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a643165303a3a2f33322d3332203d3e203132383433.roa
File: 326130303a643165303a3a2f33322d3332203d3e203132383433.roa (raw, json)
Hash identifier: LTRj8iRQAA14foBXrW8t0kRXFVLDeqgb+XqqDUPPnQk=
Subject key identifier: E6:64:D4:A2:50:7B:26:65:F9:B5:F3:3E:AF:33:4C:D4:2B:8D:22:71
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 2CA063F38693395D90FB212BD2E37AD44FA16E13
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a643165303a3a2f33322d3332203d3e203132383433.roa
Signing time: Thu 22 Aug 2024 19:13:03 +0000
ROA not before: Thu 22 Aug 2024 19:08:03 +0000
ROA not after: Thu 21 Aug 2025 19:13:03 +0000
asID: 12843
IP address blocks: 2a00:d1e0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a0:63:f3:86:93:39:5d:90:fb:21:2b:d2:e3:7a:d4:4f:a1:6e:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Aug 22 19:08:03 2024 GMT
Not After : Aug 21 19:13:03 2025 GMT
Subject: CN=E664D4A2507B2665F9B5F33EAF334CD42B8D2271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:39:15:12:fa:1c:2e:9e:13:54:fc:6a:64:2f:
3f:98:af:0b:f5:ec:17:79:3e:4f:3f:bb:16:af:9f:
50:6f:d5:06:e9:66:6c:87:85:10:f4:36:f3:82:ea:
4e:3d:13:99:5f:8e:f7:d0:00:a9:ae:49:b4:e5:cc:
51:4a:a6:38:3d:98:cc:0e:53:34:d4:59:35:5f:56:
20:26:86:8e:f2:77:c8:03:70:95:d3:19:ff:aa:e9:
23:56:b8:a1:f8:f1:73:bf:06:e0:a4:69:65:d8:ae:
37:74:33:cd:c1:b7:5b:5b:f0:04:1a:f1:d2:38:2c:
0e:4e:d8:25:da:4a:2b:06:66:f0:a3:ed:3a:26:f8:
a4:26:8a:d1:46:e1:62:6b:a1:be:bd:42:01:d4:63:
2f:ab:79:80:54:0e:0c:de:bd:03:a5:09:53:a2:08:
e5:f9:6c:30:7c:7c:1e:1f:6d:0f:9f:a2:69:f1:a3:
66:e8:d3:0e:24:13:a9:d7:50:56:63:33:94:e1:c4:
d2:cb:40:3e:d0:dc:a4:25:5c:2c:c9:af:0c:06:b7:
db:91:c9:d9:09:06:4e:71:7a:2a:c8:8b:f1:7a:07:
70:0f:2f:00:f6:d6:e2:89:5f:59:52:4c:79:50:36:
50:b6:31:7f:f7:3e:a0:fb:7a:43:8e:6d:65:fe:94:
4a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:64:D4:A2:50:7B:26:65:F9:B5:F3:3E:AF:33:4C:D4:2B:8D:22:71
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a643165303a3a2f33322d3332203d3e203132383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d1e0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:8b:b1:8d:96:fc:30:a4:49:13:63:8f:78:c8:4f:0f:61:17:
cd:1b:a0:22:04:72:e5:79:7c:d7:3a:34:76:61:ae:dc:95:49:
89:dc:86:be:85:56:7b:2e:89:f4:69:d0:4d:a8:ce:ff:ac:a1:
aa:8b:7f:3b:1e:ca:17:65:50:b6:72:ab:95:64:03:e4:1d:19:
65:72:00:2c:57:df:7c:1c:7d:ea:81:c9:d0:5a:e8:8a:ea:a6:
e8:4b:29:c4:d9:d2:9a:94:0a:12:9c:0a:e4:0f:77:df:67:65:
0f:0c:1b:a4:26:92:04:ec:06:58:0f:0d:be:29:f5:e6:9c:e1:
25:3c:af:dd:f6:50:00:15:a8:43:1a:00:66:93:14:47:3e:d6:
80:c6:9a:1e:41:c0:d8:3d:03:f7:82:b4:61:d6:fb:77:81:6b:
f9:54:80:bb:2c:58:90:9a:2e:73:3c:37:a7:d1:43:ef:59:85:
76:5c:9c:68:72:10:fd:ca:05:24:f8:bb:ed:6e:37:ef:4c:1e:
9f:ec:0f:a5:19:20:fe:4a:3f:8f:88:98:82:b6:b2:28:73:97:
2c:b5:52:ba:39:51:ea:6e:19:45:11:26:34:0d:60:21:cc:4d:
80:cf:44:69:20:64:3a:e6:04:24:cb:ac:e9:13:df:60:24:52:
14:e2:48:9d
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIULKBj84aTOV2Q+yEr0uN61E+hbhMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWIyYzdlNjI1MDNiMDYzNGViNGFiNTNmODhjMDY5NTBh
Yzc2ZGNkMTAeFw0yNDA4MjIxOTA4MDNaFw0yNTA4MjExOTEzMDNaMDMxMTAvBgNV
BAMTKEU2NjRENEEyNTA3QjI2NjVGOUI1RjMzRUFGMzM0Q0Q0MkI4RDIyNzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgORUS+hwunhNU/GpkLz+Yrwv1
7Bd5Pk8/uxavn1Bv1QbpZmyHhRD0NvOC6k49E5lfjvfQAKmuSbTlzFFKpjg9mMwO
UzTUWTVfViAmho7yd8gDcJXTGf+q6SNWuKH48XO/BuCkaWXYrjd0M83Bt1tb8AQa
8dI4LA5O2CXaSisGZvCj7Tom+KQmitFG4WJrob69QgHUYy+reYBUDgzevQOlCVOi
COX5bDB8fB4fbQ+fomnxo2bo0w4kE6nXUFZjM5ThxNLLQD7Q3KQlXCzJrwwGt9uR
ydkJBk5xeirIi/F6B3APLwD21uKJX1lSTHlQNlC2MX/3PqD7ekOObWX+lErtAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQU5mTUolB7JmX5tfM+rzNM1CuNInEwHwYDVR0j
BBgwFoAU6yx+YlA7BjTrSrU/iMBpUKx23NEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODNmNjg2NjEwODRiODYvMS9FQjJDN0U2MjUw
M0IwNjM0RUI0QUI1M0Y4OEMwNjk1MEFDNzZEQ0QxLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNnl4LVlsQTdCalRyU3JVX2lNQnBVS3gyM05FLmNlcjCBoAYIKwYB
BQUHAQsEgZMwgZAwgY0GCCsGAQUFBzALhoGAcnN5bmM6Ly9ycGtpLXJwcy5hcmlu
Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzZjY4NjYxMDg0Yjg2
LzEvMzI2MTMwMzAzYTY0MzE2NTMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEz
MjM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcB
BwEB/wQRMA8wDQQCAAIwBwMFACoA0eAwDQYJKoZIhvcNAQELBQADggEBAF2LsY2W
/DCkSRNjj3jITw9hF80boCIEcuV5fNc6NHZhrtyVSYnchr6FVnsuifRp0E2ozv+s
oaqLfzseyhdlULZyq5VkA+QdGWVyACxX33wcfeqBydBa6IrqpuhLKcTZ0pqUChKc
CuQPd99nZQ8MG6QmkgTsBlgPDb4p9eac4SU8r932UAAVqEMaAGaTFEc+1oDGmh5B
wNg9A/eCtGHW+3eBa/lUgLssWJCaLnM8N6fRQ+9ZhXZcnGhyEP3KBST4u+1uN+9M
Hp/sD6UZIP5KP4+ImIK2sihzlyy1Uro5UepuGUURJjQNYCHMTYDPRGkgZDrmBCTL
rOkT32AkUhTiSJ0=
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:46:14 2024 by rpki-client on console-ams.rpki-client.org