Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a343a3a2f36342d3634203d3e20333939313538.roa
File: 326130303a646438303a33623a343a3a2f36342d3634203d3e20333939313538.roa (raw, json)
Hash identifier: kJGt19q8mjp1YtYWvePhjZrflyLCn+4NyXCTQHdAdtU=
Subject key identifier: 5A:BC:36:0C:02:87:6D:5E:EB:4E:F4:FD:FC:6C:A9:EE:60:76:2A:C5
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 31051D9BBAFACE64E14FED069C528BB48D32C979
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a343a3a2f36342d3634203d3e20333939313538.roa
Signing time: Sat 06 Jan 2024 10:34:13 +0000
ROA not before: Sat 06 Jan 2024 10:29:13 +0000
ROA not after: Sat 04 Jan 2025 10:34:13 +0000
asID: 399158
IP address blocks: 2a00:dd80:3b:4::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 19:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:05:1d:9b:ba:fa:ce:64:e1:4f:ed:06:9c:52:8b:b4:8d:32:c9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Jan 6 10:29:13 2024 GMT
Not After : Jan 4 10:34:13 2025 GMT
Subject: CN=5ABC360C02876D5EEB4EF4FDFC6CA9EE60762AC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b1:49:f5:96:60:5b:bb:55:81:66:26:67:03:
de:74:67:ca:90:cc:ba:b2:1e:a6:71:c4:89:53:aa:
cf:2a:1b:6f:20:a0:9c:54:f7:68:3d:b5:d8:46:a4:
4b:8d:26:4c:34:98:e1:eb:c7:ac:38:5f:cc:5d:50:
cf:59:5f:50:74:b9:33:b1:37:af:8b:24:5a:7b:1b:
db:56:23:00:c8:d8:86:9b:16:fc:50:75:cc:a5:11:
43:42:9d:6e:0a:97:ad:40:3c:0d:39:74:62:74:51:
c3:62:f8:92:28:ac:d7:9b:10:7c:29:81:7d:b6:18:
62:e9:ad:d7:dd:30:ee:9b:40:aa:a7:a6:17:28:2d:
bb:df:94:ea:78:fb:e0:2b:46:b7:fe:66:70:86:37:
4b:7f:db:47:60:90:39:28:0c:94:a6:c9:f6:a4:68:
81:be:37:03:04:c7:75:63:15:15:a3:6e:3b:8e:a7:
8f:19:b0:58:7b:ef:35:55:b6:2a:99:5b:da:4c:fc:
8d:e8:28:fd:12:47:ff:59:9d:8a:30:1d:35:10:8a:
11:8e:4a:7e:23:78:f7:38:a3:12:42:23:09:b0:d0:
da:fb:66:13:a8:0e:c7:43:d3:ef:84:4d:02:41:3c:
6a:5c:5f:3c:93:62:9e:a5:ab:6b:b2:14:62:c2:0f:
6d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BC:36:0C:02:87:6D:5E:EB:4E:F4:FD:FC:6C:A9:EE:60:76:2A:C5
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a343a3a2f36342d3634203d3e20333939313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:3b:4::/64
Signature Algorithm: sha256WithRSAEncryption
43:41:f6:23:34:88:ad:e1:d3:6d:c1:8e:c6:8d:20:2d:d8:9f:
27:41:94:eb:f7:db:06:a9:db:b7:fb:84:03:f1:2f:a3:8e:6a:
d5:ee:b3:0d:be:20:e9:20:cd:0e:5a:95:bc:be:e3:60:13:4d:
2c:31:aa:ef:50:b6:b8:cf:81:f2:78:be:5f:6c:c8:e3:93:9b:
c7:9e:eb:19:8b:37:4f:dc:34:f8:c7:79:ed:91:92:de:a4:97:
0e:9a:b7:60:bd:c5:e8:c0:fb:29:c6:95:74:b7:b1:cf:78:17:
ce:95:90:86:9f:38:ca:3d:f3:c1:3a:67:e1:9f:43:5b:b3:75:
f2:a0:a9:2a:30:ad:5b:3e:e1:1e:e2:67:c6:5c:ce:0e:6c:f4:
5b:6b:16:28:b4:d6:5e:5f:1e:73:87:5f:25:ec:3f:59:0f:f1:
21:54:90:12:ab:85:9c:17:e5:98:6d:59:6d:92:7e:99:a6:8c:
c2:22:ab:11:4d:bb:ae:2f:f2:a4:0b:1e:66:32:86:38:95:0b:
29:d3:a9:9d:6c:5d:41:f6:c3:1a:1b:a2:e5:b8:28:84:06:e3:
90:b3:bd:5b:ab:0a:d2:af:86:d4:7b:a4:2c:4c:5e:9b:aa:35:
9b:30:ec:b5:30:76:5f:86:ae:09:fb:a0:7d:0a:28:6b:df:11:
18:d1:58:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:51:58 2024 by rpki-client on console-ams.rpki-client.org