Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a34313a3a2f34382d3438203d3e203336323336.roa
File: 326130303a646438303a34313a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: WdFUyc1opDYQxqNQ4bdQ4SjHTb/75oE7S574s+5aMZU=
Subject key identifier: 06:C4:91:6B:DA:18:CB:A5:BB:AA:4C:A8:6F:07:E8:55:07:2D:9F:6B
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 4485F4142D54E80FF5264090366F559695712C92
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a34313a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 02 Sep 2024 20:13:08 +0000
ROA not before: Mon 02 Sep 2024 20:08:08 +0000
ROA not after: Mon 01 Sep 2025 20:13:08 +0000
asID: 36236
IP address blocks: 2a00:dd80:41::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:85:f4:14:2d:54:e8:0f:f5:26:40:90:36:6f:55:96:95:71:2c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Sep 2 20:08:08 2024 GMT
Not After : Sep 1 20:13:08 2025 GMT
Subject: CN=06C4916BDA18CBA5BBAA4CA86F07E855072D9F6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:15:cf:74:53:63:02:ce:c6:66:e8:72:7a:
97:d1:64:3e:e2:3a:f8:74:db:28:c9:7e:83:e6:51:
5e:d0:22:e1:1e:36:62:ca:ba:7a:22:75:d6:45:a7:
64:33:79:ae:2c:8a:92:7a:f9:84:b7:24:d4:cb:58:
2b:66:d8:d8:88:46:e3:22:c4:86:56:79:e1:d0:da:
30:b3:f2:ad:5f:3e:b0:5d:06:f8:02:b3:c4:a1:e9:
bd:85:3d:de:56:0d:40:d2:0f:51:25:32:22:0e:86:
23:83:17:02:bd:4b:1c:85:94:e3:cd:8f:bd:34:b6:
e2:19:08:78:6d:0d:c5:f5:5b:cc:20:64:67:6d:1d:
8c:55:8e:f8:d7:76:10:6f:e1:ef:8b:a8:92:e2:83:
90:01:f7:0c:38:01:10:99:cc:95:e4:69:c2:a3:a2:
02:62:9d:52:8a:12:2b:c1:29:2e:99:2f:99:54:06:
96:2b:26:90:1f:86:64:d2:c1:48:b9:b7:4b:7e:86:
f6:e6:47:03:57:6e:2e:1b:93:bb:11:7b:e4:66:f5:
29:ae:1e:19:6d:25:98:55:59:52:0c:8f:62:9c:f0:
2b:99:2d:12:e7:af:51:fb:43:0a:c3:00:42:3f:4f:
ca:21:69:82:e9:c5:0c:db:9b:82:f6:3a:b7:13:91:
d8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C4:91:6B:DA:18:CB:A5:BB:AA:4C:A8:6F:07:E8:55:07:2D:9F:6B
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a34313a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:41::/48
Signature Algorithm: sha256WithRSAEncryption
a9:ac:0e:20:81:bc:f1:f8:ea:21:32:8e:d5:9c:97:96:db:62:
56:eb:e1:48:8f:05:05:7f:cd:51:a5:2d:a0:5b:6a:45:ee:22:
e7:c5:9c:a5:d8:39:03:02:7b:2c:04:1f:53:1d:da:6e:9a:8d:
fb:94:7e:71:3e:ef:8c:a3:eb:f4:e8:e7:d0:86:67:6a:87:32:
2b:38:95:99:c8:5a:0c:e2:6e:85:65:fc:67:ba:d9:ac:4e:57:
01:b5:8a:d0:83:46:01:99:8f:28:a5:c6:36:71:81:03:4f:77:
1a:9b:c5:50:61:d7:50:68:75:c1:e5:8e:f2:d3:cc:c4:77:f0:
99:c2:28:6a:3a:41:c4:39:84:26:99:63:f1:e3:2a:43:dd:d9:
5b:91:39:e8:58:ae:54:98:d8:c9:dd:ad:6f:83:62:e2:2b:53:
6e:3f:2d:82:97:e1:8d:13:d5:71:de:b0:fb:45:c1:53:c6:d7:
9c:a1:b1:5c:84:40:72:ee:9e:a7:d8:00:dc:75:05:59:a1:d8:
cf:96:aa:e2:a8:f6:b6:f8:b0:4a:fb:52:e2:ea:15:24:2b:53:
e2:07:09:d7:6e:19:8e:48:a1:86:0e:ae:56:02:1c:e5:20:be:
b0:6e:a4:4f:cf:fd:e8:2f:b3:15:0b:5d:db:5f:a7:40:43:52:
eb:cb:19:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 17:57:11 2024 by rpki-client on console-fra.rpki-client.org