Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
File: 326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa (raw, json)
Hash identifier: KGwUvID7T3KoH5h76c9jznnedSTggvp055fg2eE3jFU=
Subject key identifier: BE:87:D1:58:30:08:87:3C:37:F2:E0:2B:2E:C3:34:86:A5:C1:68:58
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 3AF9F80450F4F2DEC9A6FA8328BC585B85769C53
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
Signing time: Mon 02 Oct 2023 19:55:33 +0000
ROA not before: Mon 02 Oct 2023 19:50:33 +0000
ROA not after: Mon 30 Sep 2024 19:55:33 +0000
asID: 36236
IP address blocks: 2a00:dd80:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:f9:f8:04:50:f4:f2:de:c9:a6:fa:83:28:bc:58:5b:85:76:9c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Oct 2 19:50:33 2023 GMT
Not After : Sep 30 19:55:33 2024 GMT
Subject: CN=BE87D1583008873C37F2E02B2EC33486A5C16858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:33:42:ae:ea:12:0a:ca:89:07:23:af:71:d2:
35:ed:69:dd:d1:79:a8:22:e3:e3:83:ad:a0:e6:dd:
1b:4d:6c:88:b5:f8:5a:56:a0:e7:d3:a8:59:0e:17:
f7:ca:16:e2:e6:f3:1a:16:c6:7b:fd:81:5f:05:98:
38:eb:d2:82:fa:37:70:56:12:6f:02:77:61:c4:75:
95:bd:f6:08:77:d5:98:b1:63:23:cd:e2:e6:dd:1a:
4c:a2:a5:ca:cc:94:8a:ea:db:70:46:96:b8:ce:44:
83:29:a9:11:6d:36:61:61:42:92:dd:fd:48:52:6b:
f1:96:7f:f7:4d:c2:4b:a0:4f:8f:b1:88:d6:5b:89:
f3:e8:33:6c:ce:6d:90:79:e7:4d:57:d4:05:41:dc:
b4:30:a2:7f:98:4a:40:91:3e:8a:cf:e3:ce:78:5a:
76:8b:21:40:f0:a5:d7:7f:84:70:ee:11:31:f7:0d:
11:68:30:5e:99:31:6c:37:6d:55:81:0b:b5:2f:c4:
f4:17:58:3e:03:75:2e:46:77:93:04:a7:13:d1:9e:
b8:20:f6:ee:50:d7:f6:eb:73:3e:cc:8e:24:e0:44:
20:ea:cd:5e:23:0b:62:eb:0d:93:52:91:37:6b:65:
32:7b:13:a9:31:10:30:95:17:b2:6f:05:fe:fd:65:
98:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:87:D1:58:30:08:87:3C:37:F2:E0:2B:2E:C3:34:86:A5:C1:68:58
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/326130303a646438303a393a3a2f34382d3438203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:dd80:9::/48
Signature Algorithm: sha256WithRSAEncryption
6c:20:02:38:f9:19:26:cc:4f:9f:87:9a:66:59:b7:97:0a:2c:
56:cd:6f:6f:e6:6b:bc:96:93:09:82:db:fb:95:02:5d:a3:be:
05:6c:f9:34:7a:8e:5c:7d:78:94:25:d0:d5:77:f4:6a:14:d1:
5a:94:b0:35:19:46:32:2d:b1:4d:67:1b:61:f1:0f:c3:0e:92:
3e:97:9e:c5:f4:ee:1f:f7:2f:09:af:bf:fd:15:12:89:ba:ff:
f9:6b:2c:dd:fd:e9:99:91:fe:64:8e:a7:f2:14:53:b2:bb:89:
2e:5d:e6:4b:a2:ab:6f:0f:f2:b9:5f:9b:19:f3:6b:58:24:7c:
4e:54:9d:07:f6:43:ed:30:45:bf:bb:97:93:69:8f:82:23:73:
1b:ea:b8:55:e4:e7:0c:4e:ea:dd:5b:4f:d3:7c:b0:f9:ad:c0:
d0:01:de:65:4a:5e:44:06:7c:5a:b4:e0:b7:22:ca:9d:e3:19:
d0:62:fa:52:5b:50:46:b1:ee:d9:a6:bd:26:a7:7f:2d:45:b2:
c0:a4:66:e6:23:25:6a:58:de:cc:ae:ec:7d:b0:a0:eb:10:f1:
0e:4b:7c:e0:2e:10:68:78:0b:94:39:3d:47:8e:9d:63:e5:7f:
1e:b2:f4:75:3c:04:b2:6b:94:3b:1a:19:d0:f1:f8:29:e7:e6:
7f:1d:4c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 09:31:58 2024 by rpki-client on console-ams.rpki-client.org