Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS135391.roa
File: AS135391.roa (raw, json)
Hash identifier: j58QMZ37lcqrMxqZQKdwlHMtD3uFO8tWjqnCzE/6Nlo=
Subject key identifier: 1F:17:DA:1F:36:0E:8A:8E:7D:EE:56:4C:5A:7C:07:EF:4E:EF:20:DA
Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Certificate serial: 056F6245F354E7AB61E7CCD2396851FFD8F2E187
Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS135391.roa
Signing time: Tue 18 Mar 2025 08:50:43 +0000
ROA not before: Tue 18 Mar 2025 08:45:43 +0000
ROA not after: Tue 17 Mar 2026 08:50:43 +0000
asID: 135391
IP address blocks: 23.95.98.0/24 maxlen: 24
107.172.36.0/24 maxlen: 24
198.23.218.0/24 maxlen: 24
216.227.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl
rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Wed 09 Apr 2025 15:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:6f:62:45:f3:54:e7:ab:61:e7:cc:d2:39:68:51:ff:d8:f2:e1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Validity
Not Before: Mar 18 08:45:43 2025 GMT
Not After : Mar 17 08:50:43 2026 GMT
Subject: CN=1F17DA1F360E8A8E7DEE564C5A7C07EF4EEF20DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:90:19:21:a0:96:8e:f7:a6:61:e6:7d:59:
0d:e0:b1:f7:2f:f9:88:02:2c:d7:94:11:b6:77:f8:
0c:c9:33:b4:7f:ec:de:06:87:ad:6e:a8:47:3e:6b:
6b:d8:f3:f1:5a:89:d5:dc:4b:87:2d:ee:73:ff:e7:
97:6c:69:da:7f:bd:ac:12:9a:24:52:3c:ab:2e:60:
cf:13:ba:0d:b8:09:55:83:a2:3a:1e:25:e9:3b:36:
38:37:e3:1c:14:ef:f2:a9:3d:9f:9e:b0:fd:44:64:
40:b4:ab:a4:ce:29:fb:fb:fc:2e:68:18:28:b1:77:
a2:26:ae:80:d1:cd:5e:07:d3:b6:a3:c0:ed:0e:f1:
64:30:16:f1:82:25:a0:35:98:92:8d:f8:36:f1:1d:
4f:f0:9c:8a:8d:32:32:e0:77:13:30:2e:4c:52:c9:
34:91:13:d5:cf:69:38:06:6b:11:77:33:ab:ef:b3:
88:b8:e8:e0:7b:7e:d1:11:8a:f0:cb:06:e6:85:56:
7f:e6:55:e6:9e:7c:12:de:47:f7:e3:76:02:c4:1f:
31:22:84:e9:a1:b6:81:79:9c:74:60:d0:82:d7:a3:
4e:79:a3:aa:f3:8d:e3:be:e8:07:7a:ea:19:8b:5e:
df:0f:ed:8f:a9:63:ea:cc:36:a9:cf:ba:c9:07:b2:
6c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:17:DA:1F:36:0E:8A:8E:7D:EE:56:4C:5A:7C:07:EF:4E:EF:20:DA
X509v3 Authority Key Identifier:
keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS135391.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.95.98.0/24
107.172.36.0/24
198.23.218.0/24
216.227.217.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:42:b4:71:f7:96:2b:15:5f:56:a1:a5:31:e8:e1:e4:e2:62:
77:0b:22:d1:8d:90:c8:f1:12:61:e6:e6:5c:b5:e1:ff:d0:3a:
7b:9d:fc:61:91:b8:cf:02:43:65:b9:58:59:50:d6:f1:98:e0:
02:a3:55:a3:a6:49:3c:06:1b:9b:a5:e1:10:7f:90:88:1a:63:
d3:ef:7a:ab:c1:16:e2:71:c7:c4:0d:a0:11:37:4a:aa:84:37:
c3:a4:bd:23:ee:d4:32:94:70:da:ab:11:86:d2:64:0a:a0:54:
cc:3d:40:50:58:77:4c:58:92:24:3e:4e:80:9d:f7:d6:f6:74:
b8:73:76:18:5e:b2:af:01:6f:8b:98:a2:99:30:8e:16:3f:92:
f2:26:42:49:4e:93:e9:22:f4:12:91:c2:fa:17:3a:75:89:1c:
1a:d2:54:61:a0:48:22:4e:e9:83:9d:c0:d9:1a:50:d3:c3:34:
73:8e:c8:2c:31:d5:b2:15:00:38:68:b5:9a:e0:cb:fc:02:44:
99:83:6a:cf:d5:25:9a:90:cd:05:40:d7:1e:63:ea:6b:1d:f9:
86:3d:c2:4f:9a:43:34:2a:de:2c:78:1f:3f:4d:d6:47:b2:b1:
7a:38:d4:42:69:3a:4c:b9:fd:2c:9b:ac:36:2d:c8:75:a8:bf:
57:12:a6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:39:17 2025 by rpki-client