Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a3a2f34382d3438203d3e203336323336.roa
File: 326130303a646438303a33623a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: Y4Dp22WgCvbrE5MEWYeKcKiGYF3dbwBPOZ5tQT6Nxew=
Subject key identifier: AA:E4:53:6C:7C:C9:16:F4:97:FA:7E:00:02:A8:CE:09:59:94:30:B3
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 1C03FD28761FC5B2C5A959E7FE11981B5D9BAFB4
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 02 Oct 2023 19:55:33 +0000
ROA not before: Mon 02 Oct 2023 19:50:33 +0000
ROA not after: Mon 30 Sep 2024 19:55:33 +0000
asID: 36236
IP address blocks: 2a00:dd80:3b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 19:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:03:fd:28:76:1f:c5:b2:c5:a9:59:e7:fe:11:98:1b:5d:9b:af:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Oct 2 19:50:33 2023 GMT
Not After : Sep 30 19:55:33 2024 GMT
Subject: CN=AAE4536C7CC916F497FA7E0002A8CE09599430B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e6:a8:87:b4:d7:d4:32:a0:00:1a:1c:39:06:
04:aa:36:56:bf:68:33:91:f1:58:ab:e2:21:60:ce:
aa:3f:44:48:dd:8c:2f:f6:d8:f3:22:f8:2f:27:0a:
d5:3f:8d:ff:a7:c8:fa:95:76:c9:02:28:84:ef:df:
e2:2c:72:8a:c3:15:5a:f6:4a:75:75:3e:6d:fe:0a:
e2:93:0e:b0:70:a5:04:2b:65:01:07:82:c4:e4:81:
5b:85:1f:c3:07:98:71:b9:3c:0c:72:13:6f:01:d8:
99:02:90:a6:2a:69:09:78:5c:59:bc:6c:e8:59:a6:
55:ba:a5:72:0f:3d:b1:96:69:4c:a7:75:c0:6c:56:
9a:24:14:40:5f:c2:c3:42:f8:7f:89:90:52:f4:3d:
64:cb:c6:27:22:0a:58:91:66:5c:26:0d:04:59:23:
40:c0:f7:b2:ec:60:92:14:86:fc:25:de:32:12:02:
68:53:67:3a:bf:6c:26:69:13:2b:98:92:52:b6:80:
8e:a0:64:84:ed:81:ab:17:99:0d:b5:62:8d:68:3e:
44:65:cf:6b:2d:ad:7f:63:64:ce:95:d6:4e:0b:c0:
f5:7e:b2:69:df:35:5d:8d:41:fa:57:bd:51:fd:72:
b2:9e:d5:ee:0b:e7:5f:71:f9:11:22:51:10:f3:78:
ea:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E4:53:6C:7C:C9:16:F4:97:FA:7E:00:02:A8:CE:09:59:94:30:B3
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a33623a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:3b::/48
Signature Algorithm: sha256WithRSAEncryption
30:4b:b9:c3:b3:96:2a:c0:02:7a:a2:f1:ec:85:55:9b:9b:e7:
2a:7f:9a:af:c9:eb:80:e8:ab:44:3d:01:ce:fa:ae:95:50:ff:
eb:9b:26:14:c8:4f:e5:15:04:44:e4:c7:4d:23:7a:ed:ea:ac:
53:46:36:45:c7:fa:8b:6b:ca:38:01:91:dc:07:47:e7:22:75:
2c:57:da:13:5a:65:b9:08:05:87:2d:53:3c:08:ef:0e:4d:ac:
99:99:44:94:1e:bf:9d:29:5f:c6:31:ae:73:af:30:40:ab:3a:
de:33:f9:fb:d3:97:f5:61:bb:4e:21:df:1d:c6:a4:3f:8d:f3:
8b:ef:63:75:79:5b:b8:17:b0:62:e0:2a:c1:bc:10:02:59:72:
e5:99:ca:5f:6d:0a:87:9a:b7:d8:e6:6c:ec:0f:7f:3b:ef:4f:
fe:4a:e8:4f:91:a9:9d:ec:4b:da:e9:f5:e3:5b:a1:02:af:bd:
15:b4:e3:ca:fa:76:07:93:50:81:15:d7:8e:f2:57:92:ec:b5:
7f:97:85:f2:3d:85:82:03:00:94:f0:88:18:d2:d1:c4:8c:c1:
c0:40:36:77:98:7b:d3:f9:83:ee:68:2c:b7:14:70:6c:12:e3:
40:7f:6c:85:3d:7c:8e:86:55:a8:9c:d9:4f:63:b1:e7:a9:66:
07:ee:86:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 03:49:46 2024 by rpki-client on console-fra.rpki-client.org