Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a333a3a2f36342d3634203d3e20333939313538.roa
File: 326130303a646438303a33623a333a3a2f36342d3634203d3e20333939313538.roa (raw, json)
Hash identifier: /P+A9aW1WMS7QbQabyRGKT2Gb3atXCVGDhTJdzdLdrs=
Subject key identifier: A2:05:7A:DD:D7:6D:76:B3:ED:AA:CF:1D:C7:31:C6:4C:BD:EB:D0:75
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 09DE4ACFC32108BA4ED887BFB650622A61A3938C
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a333a3a2f36342d3634203d3e20333939313538.roa
Signing time: Sat 06 Jan 2024 10:34:14 +0000
ROA not before: Sat 06 Jan 2024 10:29:14 +0000
ROA not after: Sat 04 Jan 2025 10:34:14 +0000
asID: 399158
IP address blocks: 2a00:dd80:3b:3::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 May 2024 11:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:de:4a:cf:c3:21:08:ba:4e:d8:87:bf:b6:50:62:2a:61:a3:93:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Jan 6 10:29:14 2024 GMT
Not After : Jan 4 10:34:14 2025 GMT
Subject: CN=A2057ADDD76D76B3EDAACF1DC731C64CBDEBD075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:60:03:1e:b4:12:89:c8:a8:26:b5:44:cd:ed:
80:32:da:4d:92:91:10:ea:b3:3c:af:ab:25:3e:cf:
df:14:85:fc:f7:15:f8:59:ce:fa:64:d7:88:0b:dd:
35:d6:b7:59:6d:93:e4:f5:19:c8:9f:21:10:25:82:
38:7f:87:bd:e7:9e:ad:94:bb:17:97:17:24:77:01:
b1:28:fa:70:49:34:b0:08:39:58:39:ad:16:52:9a:
71:37:b7:40:11:04:d8:b0:5a:a9:21:bd:ec:af:6e:
a4:c4:76:91:eb:09:45:3f:74:63:fb:27:33:27:e8:
b5:b4:7f:34:ef:17:df:6f:ad:1d:3a:ed:b6:d3:82:
a1:64:18:f9:d1:e2:e8:fe:de:cb:e9:8a:75:fb:29:
2d:dd:c6:6f:93:21:47:24:26:32:db:7c:88:30:fb:
cc:87:b1:6e:2b:18:75:9c:d2:62:3d:89:25:11:75:
8a:85:c5:4f:75:a0:d4:9c:54:3e:05:51:a3:cb:ff:
c6:4d:0a:7d:6d:b2:f2:ec:4a:e5:26:ec:5e:a1:72:
23:88:c3:55:16:08:c5:f7:cc:be:ad:c8:21:25:cb:
61:7b:20:61:83:55:0f:f2:fc:61:dc:11:3b:de:9f:
88:cc:45:66:86:b7:70:4b:0a:1e:3c:47:1c:11:5d:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:7A:DD:D7:6D:76:B3:ED:AA:CF:1D:C7:31:C6:4C:BD:EB:D0:75
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a333a3a2f36342d3634203d3e20333939313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:3b:3::/64
Signature Algorithm: sha256WithRSAEncryption
17:20:6f:a5:ac:de:d1:0a:f3:46:8f:73:8f:b1:e0:8d:76:94:
48:be:22:64:c8:39:7b:51:55:c4:f6:a4:ae:69:fe:68:71:cd:
6e:5f:18:63:e9:5d:9c:52:9a:d4:15:5a:9f:0a:d4:36:e6:b2:
de:67:01:13:d4:51:a1:51:75:f6:05:a2:f0:42:01:5b:33:ad:
2c:2f:4f:5b:b9:8c:5c:c8:a1:59:96:73:e3:7c:33:af:7f:3d:
ec:29:ce:f4:7b:3f:a3:ae:04:a2:d5:8d:c7:60:ad:7a:4d:98:
30:3b:b7:1d:db:20:35:40:57:4f:ff:a7:33:bc:ad:d6:f1:91:
04:8c:89:d9:90:36:62:ac:f8:e9:92:bc:8a:80:87:ec:68:f5:
99:bd:32:98:35:05:b0:8e:d5:5e:fb:e8:f4:8f:3a:f2:59:5f:
a3:0d:b8:b3:68:af:9e:7a:e2:a1:be:03:3c:ad:f4:c4:c4:ed:
0a:5a:d6:e5:f0:95:68:82:09:c0:11:ba:e0:0b:2d:71:b5:d8:
54:46:f1:c5:8b:e6:62:4b:85:89:68:13:68:db:b9:91:a9:fc:
24:81:78:50:f7:49:3d:65:81:a5:13:8a:12:75:88:18:e5:45:
20:f6:e0:d6:15:1c:35:ff:ef:4f:7e:e2:d6:62:7e:e6:4e:cb:
4f:d1:f8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 15:57:55 2024 by rpki-client on console-ams.rpki-client.org