Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
File: 326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: Sn9oa9O1+osvJM9cbkB+c1Sq5DG0Q9RcvEAmNJP5vAw=
Subject key identifier: 30:BB:DE:9F:1E:92:F1:78:8C:DD:57:0E:AE:F8:23:F6:A7:6C:73:1F
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 6623261AAE64A8A9A04312C1A091EAF26DA494D0
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 02 Sep 2024 20:13:07 +0000
ROA not before: Mon 02 Sep 2024 20:08:07 +0000
ROA not after: Mon 01 Sep 2025 20:13:07 +0000
asID: 36236
IP address blocks: 2a00:dd80:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:23:26:1a:ae:64:a8:a9:a0:43:12:c1:a0:91:ea:f2:6d:a4:94:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Sep 2 20:08:07 2024 GMT
Not After : Sep 1 20:13:07 2025 GMT
Subject: CN=30BBDE9F1E92F1788CDD570EAEF823F6A76C731F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:98:c9:3d:74:88:f1:89:7e:b0:e8:e1:53:3b:
fb:d4:f0:a2:00:38:71:05:07:a8:64:aa:27:09:d0:
e1:41:c6:7a:2b:9e:c0:f7:2a:70:67:81:f9:76:e8:
e6:b1:d2:78:37:76:d4:e8:4f:36:da:a4:05:4b:e0:
54:28:14:73:f7:42:5b:32:f0:ca:fc:17:a2:cb:dd:
06:6f:a9:a8:5f:33:4b:d2:e3:90:04:f5:e3:b1:77:
b3:6a:17:35:41:1d:ec:cf:01:7d:bd:ae:b9:cf:30:
99:7a:02:58:50:59:9c:53:13:0a:f6:f7:1b:63:76:
57:08:7b:02:ea:3a:22:18:14:f7:16:53:1b:e9:12:
d3:81:6a:04:28:08:4a:91:03:ec:8b:20:09:6c:18:
20:8f:11:13:7a:7a:e6:73:92:8a:49:ee:44:96:98:
e2:b9:57:81:b5:13:bb:a4:37:77:0c:b2:ae:4d:84:
d1:42:b3:fc:ba:d9:c9:68:42:11:fb:11:5a:40:a9:
df:af:d6:1e:f9:fd:08:86:65:36:9a:34:2d:1f:3f:
48:71:ca:8c:98:e7:55:f1:36:16:49:bf:46:d1:3c:
a7:e2:70:e4:05:d4:f5:6a:4a:cc:cd:67:23:c6:be:
f1:8f:72:a5:b0:fe:09:7d:75:a3:04:91:62:f9:af:
3b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BB:DE:9F:1E:92:F1:78:8C:DD:57:0E:AE:F8:23:F6:A7:6C:73:1F
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:9::/48
Signature Algorithm: sha256WithRSAEncryption
8c:06:64:66:4a:38:f0:d8:46:f0:ee:d8:dd:ea:22:f8:5f:11:
58:bd:6d:41:22:83:ce:04:7c:5a:92:86:d6:f7:9f:c7:69:c5:
71:df:4b:96:05:00:88:71:31:1a:19:11:a3:b9:2d:6b:e4:5a:
64:37:f6:82:ac:0c:76:ae:f9:aa:ce:08:b9:b5:d3:71:42:7a:
11:68:63:6a:cf:23:bf:23:e5:65:06:2c:cd:c5:a7:38:1c:64:
d4:fe:d1:bc:8e:c7:49:d8:08:33:d1:71:94:91:02:18:79:f9:
b3:60:ee:7f:22:47:c1:c6:68:8f:05:85:8a:52:9d:57:79:39:
e2:b2:48:24:e8:a2:60:69:ca:58:2e:77:68:a3:ae:1b:5f:98:
c2:68:d0:81:5b:83:aa:17:31:86:16:4b:ea:d7:85:50:52:81:
78:7a:1b:2b:20:23:4b:b7:f1:55:d2:7d:67:af:f5:90:bb:3d:
70:e9:a0:07:6f:f4:46:e3:17:39:d5:f9:e7:5e:23:74:47:f1:
86:9f:f9:1e:22:93:e6:83:55:fc:15:a7:d6:66:57:32:fd:01:
0c:e8:a2:38:74:b6:b3:ec:71:fc:7a:fb:4c:7d:71:20:bd:44:
69:53:cd:ea:44:e4:8b:d8:d7:02:20:a8:07:e5:88:10:96:06:
65:30:86:92
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIUZiMmGq5kqKmgQxLBoJHq8m2klNAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWIyYzdlNjI1MDNiMDYzNGViNGFiNTNmODhjMDY5NTBh
Yzc2ZGNkMTAeFw0yNDA5MDIyMDA4MDdaFw0yNTA5MDEyMDEzMDdaMDMxMTAvBgNV
BAMTKDMwQkJERTlGMUU5MkYxNzg4Q0RENTcwRUFFRjgyM0Y2QTc2QzczMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDomMk9dIjxiX6w6OFTO/vU8KIA
OHEFB6hkqicJ0OFBxnornsD3KnBngfl26Oax0ng3dtToTzbapAVL4FQoFHP3Qlsy
8Mr8F6LL3QZvqahfM0vS45AE9eOxd7NqFzVBHezPAX29rrnPMJl6AlhQWZxTEwr2
9xtjdlcIewLqOiIYFPcWUxvpEtOBagQoCEqRA+yLIAlsGCCPERN6euZzkopJ7kSW
mOK5V4G1E7ukN3cMsq5NhNFCs/y62cloQhH7EVpAqd+v1h75/QiGZTaaNC0fP0hx
yoyY51XxNhZJv0bRPKficOQF1PVqSszNZyPGvvGPcqWw/gl9daMEkWL5rzuBAgMB
AAGjggInMIICIzAdBgNVHQ4EFgQUMLvenx6S8XiM3VcOrvgj9qdscx8wHwYDVR0j
BBgwFoAU6yx+YlA7BjTrSrU/iMBpUKx23NEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGU4MmQ1ZGU0MTAxODNmNjg2NjEwODRiODYvMS9FQjJDN0U2MjUw
M0IwNjM0RUI0QUI1M0Y4OEMwNjk1MEFDNzZEQ0QxLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNnl4LVlsQTdCalRyU3JVX2lNQnBVS3gyM05FLmNlcjCBpAYIKwYB
BQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6Ly9ycGtpLXJwcy5hcmlu
Lm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRlODJkNWRlNDEwMTgzZjY4NjYxMDg0Yjg2
LzEvMzI2MTMwMzAzYTY0NjQzODMwM2EzOTNhM2EyZjM0MzgyZDM0MzgyMDNkM2Uy
MDMzMzYzMjMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB
BQUHAQcBAf8EEzARMA8EAgACMAkDBwAqAN2AAAkwDQYJKoZIhvcNAQELBQADggEB
AIwGZGZKOPDYRvDu2N3qIvhfEVi9bUEig84EfFqShtb3n8dpxXHfS5YFAIhxMRoZ
EaO5LWvkWmQ39oKsDHau+arOCLm103FCehFoY2rPI78j5WUGLM3FpzgcZNT+0byO
x0nYCDPRcZSRAhh5+bNg7n8iR8HGaI8FhYpSnVd5OeKySCToomBpylgud2ijrhtf
mMJo0IFbg6oXMYYWS+rXhVBSgXh6GysgI0u38VXSfWev9ZC7PXDpoAdv9EbjFznV
+edeI3RH8Yaf+R4ik+aDVfwVp9ZmVzL9AQzoojh0trPscfx6+0x9cSC9RGlTzepE
5IvY1wIgqAfliBCWBmUwhpI=
-----END CERTIFICATE-----
Generated at Mon Nov 25 18:45:14 2024 by rpki-client on console-ams.rpki-client.org