Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/34352e3135392e39372e302f32342d3234203d3e203336323336.roa
File: 34352e3135392e39372e302f32342d3234203d3e203336323336.roa (raw, json)
Hash identifier: WFCWoW/473IJ7zoOc7+6NdX/jtsxPWJJt8rkikvDG2E=
Subject key identifier: 60:BF:E3:91:58:D1:C2:BB:E7:2F:E9:B4:D7:2F:BC:F2:01:57:13:2A
Certificate issuer: /CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Certificate serial: 6A55AD9AC727EBB2D74C2D075C11123F930D18CD
Authority key identifier: EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/34352e3135392e39372e302f32342d3234203d3e203336323336.roa
Signing time: Mon 02 Oct 2023 21:55:38 +0000
ROA not before: Mon 02 Oct 2023 21:50:38 +0000
ROA not after: Mon 30 Sep 2024 21:55:38 +0000
asID: 36236
IP address blocks: 45.159.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.mft
rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:55:ad:9a:c7:27:eb:b2:d7:4c:2d:07:5c:11:12:3f:93:0d:18:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb2c7e62503b0634eb4ab53f88c06950ac76dcd1
Validity
Not Before: Oct 2 21:50:38 2023 GMT
Not After : Sep 30 21:55:38 2024 GMT
Subject: CN=60BFE39158D1C2BBE72FE9B4D72FBCF20157132A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a9:6e:ca:46:86:9d:9c:64:19:f4:97:e9:8a:
e7:dd:b1:f3:93:50:79:49:63:27:e4:39:8c:1d:c3:
87:b6:08:88:84:a4:ca:0c:22:0b:13:e2:44:2f:00:
c9:75:60:1f:7f:78:94:d5:69:d3:a8:35:22:31:6e:
29:6d:14:46:c1:0e:27:19:4a:9b:4b:49:c8:1e:90:
5a:b4:2d:d9:c5:47:2e:5f:5b:47:1f:86:b5:c1:1b:
12:d7:84:f0:46:5f:bc:1e:f6:fc:62:36:ce:fa:ff:
09:ac:ee:e0:48:7e:2d:a9:f9:9c:fe:0c:b4:30:c8:
ab:9d:11:ab:6b:35:56:b5:92:ce:df:95:95:cb:aa:
6b:4d:c7:01:e2:50:61:16:22:9b:be:b3:ae:26:07:
e4:3e:0c:57:76:fd:5f:49:84:cb:b5:60:18:c0:fe:
71:cf:3d:d8:ff:94:26:7e:15:3c:7a:d2:39:89:19:
81:e5:8e:d8:65:6f:30:b2:5a:c7:26:66:55:f2:88:
5b:4c:88:62:6b:6b:45:8e:57:e5:b0:51:f6:43:38:
f5:aa:0c:f6:8f:c0:5c:ae:c0:f0:d1:b0:69:5e:00:
db:cf:9c:a6:7e:1e:65:f9:56:05:8a:3c:49:18:07:
1a:91:52:d3:21:08:c6:1d:a5:da:de:04:83:8c:f3:
9f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BF:E3:91:58:D1:C2:BB:E7:2F:E9:B4:D7:2F:BC:F2:01:57:13:2A
X509v3 Authority Key Identifier:
keyid:EB:2C:7E:62:50:3B:06:34:EB:4A:B5:3F:88:C0:69:50:AC:76:DC:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/EB2C7E62503B0634EB4AB53F88C06950AC76DCD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6yx-YlA7BjTrSrU_iMBpUKx23NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/1/34352e3135392e39372e302f32342d3234203d3e203336323336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.97.0/24
Signature Algorithm: sha256WithRSAEncryption
28:f0:4c:93:f2:55:a6:72:9d:bf:90:9c:0b:cd:6b:4e:9f:76:
46:c8:bb:7c:9d:72:96:a9:ed:74:a1:88:7a:68:a3:fb:bf:20:
77:ca:26:1e:59:74:3e:f5:c9:2e:0f:be:6a:94:d3:11:d9:bc:
1b:c5:22:06:1f:64:3c:0f:2a:a8:1c:22:72:90:86:af:41:2a:
ff:a2:0a:1f:d5:58:c4:ab:9e:12:d5:a0:62:94:1b:f1:59:fc:
b0:6c:ad:10:93:d8:fd:a6:81:d9:9d:77:05:88:60:15:9f:67:
79:5c:fa:cf:9b:71:12:09:ee:4b:f0:37:3d:48:09:68:8d:f0:
16:2e:15:db:19:99:9f:e8:ae:7e:cf:29:3b:92:18:20:34:25:
6f:ad:3d:53:f2:b6:b7:6b:4f:ad:92:07:88:b2:0f:71:75:4c:
ef:fb:3b:3b:9f:fc:7f:e7:0c:29:fe:b6:f5:07:bc:74:93:26:
7a:f4:36:44:6e:4a:95:58:d7:21:b4:55:08:d8:6c:95:51:df:
3b:5d:12:c5:58:9d:f1:de:17:49:5f:af:46:0c:bf:f5:ba:2f:
d8:4c:60:2e:6a:f1:26:e1:3c:01:ce:2f:89:47:af:c0:06:8b:
ca:2b:ab:85:ff:cf:3d:b0:9b:5d:b1:cb:98:a2:ea:15:ad:14:
ba:30:9b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 09:38:09 2024 by rpki-client on console-fra.rpki-client.org