Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
File: AS0.roa (raw, json)
Hash identifier: dKrYOL7ZDMrROx0TEikrftpnWCZmiAu0pNb9G9a0R5A=
Subject key identifier: C2:CA:C1:1C:88:8E:EB:9C:19:5B:25:01:E8:6B:B5:78:92:28:45:81
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3D62814C58389DB4BFF9F26CA0806EA65EBDF2DD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
Signing time: Tue 14 May 2024 10:57:36 +0000
ROA not before: Tue 14 May 2024 10:52:36 +0000
ROA not after: Tue 13 May 2025 10:57:36 +0000
asID: 0
IP address blocks: 195.184.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 04:53:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:62:81:4c:58:38:9d:b4:bf:f9:f2:6c:a0:80:6e:a6:5e:bd:f2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: May 14 10:52:36 2024 GMT
Not After : May 13 10:57:36 2025 GMT
Subject: CN=C2CAC11C888EEB9C195B2501E86BB57892284581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c5:27:35:db:a5:90:d2:39:5b:f3:48:52:0d:
4c:8a:00:14:72:56:01:ca:1a:0f:59:ca:a3:84:bf:
83:37:1e:24:08:2b:33:4a:e6:12:70:db:46:50:53:
90:05:fc:c1:c9:7d:fd:b0:96:48:07:75:30:a6:07:
f1:5d:2f:08:64:7d:36:1f:cc:16:22:c4:7e:ad:e8:
c0:d5:ac:84:93:33:ec:18:a4:ab:50:82:37:bb:46:
1c:12:48:97:92:d7:12:10:2c:63:f2:24:1e:a6:3d:
97:9f:22:2e:f9:dc:d3:55:11:45:7b:03:f8:f8:6d:
a1:97:5d:44:29:75:6c:9f:f4:46:ed:94:5b:99:92:
66:e8:ed:b1:fd:1f:d3:20:07:d9:26:e1:71:35:f2:
ee:c8:9d:5e:b1:95:9a:42:4a:81:26:55:d7:a1:b6:
b4:11:fa:ca:ee:3d:ce:c9:d3:1e:a8:06:f5:f7:05:
f8:fd:d4:f0:a9:06:db:a4:24:78:d0:e2:3f:ee:f6:
a0:31:0b:d4:09:8e:73:fc:e3:a1:b0:4a:fc:44:ed:
8e:1d:ad:28:62:b9:f8:66:a1:3d:58:b5:27:98:a4:
2a:4b:1d:23:cf:56:73:dc:79:ec:57:99:c7:a0:e2:
83:49:0c:de:7c:0b:2e:34:e5:6c:95:27:0b:e3:36:
48:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:CA:C1:1C:88:8E:EB:9C:19:5B:25:01:E8:6B:B5:78:92:28:45:81
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.247.0/24
Signature Algorithm: sha256WithRSAEncryption
09:f8:14:eb:cb:27:ca:0c:a4:0e:b5:9f:ef:19:fa:6b:a3:67:
fd:da:27:31:5e:2f:13:38:7a:40:55:17:70:46:cf:3c:23:fb:
b3:b4:8f:ff:28:ee:74:a9:9c:05:8e:9d:4d:7b:4b:42:bf:d1:
6f:dc:82:0f:58:b4:23:e6:ce:42:c9:63:a3:25:34:14:cf:ea:
f6:8b:2a:c1:6d:56:4e:14:65:48:f9:3b:12:f8:2e:55:26:35:
c4:f0:4e:54:7e:a2:8c:88:b5:37:2c:77:50:23:eb:6e:57:83:
40:e3:32:62:3c:d3:49:b9:b2:87:4f:f6:90:f4:8c:fd:d0:63:
70:82:ff:38:db:c5:b6:86:53:d5:bb:fd:92:9f:5a:b1:e4:38:
5c:88:14:0c:de:e2:a6:d9:74:76:8e:b0:bd:95:be:4e:29:f0:
75:06:c5:14:c4:9b:86:b7:76:fc:bc:ee:af:34:69:dc:3d:99:
0c:b2:65:97:2e:ab:d2:d4:90:db:4a:5d:65:78:23:d2:45:4a:
7d:d7:40:be:34:8d:11:61:24:7b:f7:f3:f7:9e:4f:bd:03:2c:
24:f4:a2:01:cb:4b:97:27:69:8d:2e:be:7d:f2:7f:1a:f7:f3:
3c:7d:b0:2d:c9:78:0a:f4:80:37:c3:7d:cb:24:02:2b:85:18:
fb:95:2b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 10:14:34 2024 by rpki-client on console-fra.rpki-client.org