Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133555.roa
File: AS133555.roa (raw, json)
Hash identifier: XqMyR3i0jOmldwdETqsMJQzqj/ny7CpL6BpEZW35g1g=
Subject key identifier: BA:3F:A4:AD:C4:4D:0F:67:8C:78:82:BA:5C:F2:D0:81:9E:8D:59:CF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 05F730FB0A485DB3E1A34DB54015F69DCAA2DF9A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133555.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 133555
IP address blocks: 2a06:a005:260::/44 maxlen: 48
2a06:a005:270::/44 maxlen: 48
2a06:a005:280::/44 maxlen: 48
2a06:a005:290::/44 maxlen: 48
2a06:a005:2a0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:f7:30:fb:0a:48:5d:b3:e1:a3:4d:b5:40:15:f6:9d:ca:a2:df:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=BA3FA4ADC44D0F678C7882BA5CF2D0819E8D59CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ea:b0:e1:c5:e7:80:93:f1:5e:31:f9:99:90:
92:f7:52:c5:6c:1d:ec:22:c0:0d:4d:78:cf:9a:2e:
e8:7b:aa:80:31:f4:09:b5:4c:51:2d:ae:32:f5:66:
b8:19:57:e6:43:8e:8d:22:6e:94:24:64:a6:0d:7f:
cd:bb:5e:60:06:e6:e1:ed:ef:6d:03:2d:82:2b:32:
1a:a7:fa:8b:6d:62:b0:35:e6:7f:32:9c:87:05:8b:
74:5e:7d:13:3d:60:36:28:d4:a3:cb:70:d1:a6:44:
89:30:4d:97:ed:93:6a:51:8b:34:ee:98:6c:c7:1e:
45:9a:83:92:5a:23:1a:33:d7:92:77:36:12:c0:7b:
28:19:d1:42:f7:7f:dd:fb:19:5b:a4:96:b1:8e:ce:
1c:ef:cc:02:dc:fc:26:3b:ff:41:9d:38:6c:92:b9:
60:e6:0e:8e:bf:43:57:26:6b:a5:2f:89:f0:e1:13:
48:13:a1:a7:c3:81:23:d6:77:8c:29:ec:15:2e:6e:
1f:8d:94:8c:9e:6e:68:28:e0:57:10:02:b6:68:0a:
34:d1:a2:ec:3b:8c:3e:31:be:c4:8a:f3:3c:42:cd:
01:1e:7c:04:af:31:dc:27:0b:85:05:10:58:fb:28:
5d:30:15:22:2f:15:0e:7a:89:d4:fd:78:52:78:4c:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3F:A4:AD:C4:4D:0F:67:8C:78:82:BA:5C:F2:D0:81:9E:8D:59:CF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS133555.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:260::-2a06:a005:2af:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0f:a6:ab:21:6e:09:34:d8:2a:ee:0f:cd:f5:6a:fe:a8:bd:9c:
1d:02:bc:63:87:85:84:90:0b:7b:f7:01:23:4e:dd:63:e5:57:
29:1d:d1:92:c7:a0:d8:87:e0:65:b9:01:f1:a0:7f:ff:e3:09:
de:71:32:99:1d:fa:d7:10:cc:40:f3:9c:eb:8a:21:4a:0e:f6:
32:07:dc:64:b8:2b:e7:8a:72:44:27:25:a0:3e:91:0f:fa:5d:
2d:7a:45:00:c6:84:07:5d:15:13:ea:a8:b1:f0:07:a9:86:fa:
f3:dd:11:9f:ee:27:0e:c3:39:da:a8:ef:0c:b9:d2:db:51:b4:
82:d1:aa:2f:33:77:6e:5a:9e:5a:78:87:8b:bf:9d:d2:82:31:
73:14:35:b6:1f:98:6b:58:7d:44:65:34:f6:e4:d5:3a:c0:1a:
17:23:6f:54:cf:3d:56:58:b9:58:be:11:ca:5f:00:dd:fe:d3:
8b:ef:b5:4b:2e:f9:a6:3d:96:ff:29:06:a1:9d:63:06:88:fd:
5f:02:b7:03:3b:ad:63:0d:21:19:a9:6e:56:5e:a1:cf:4f:fe:
48:08:c3:23:da:ab:dc:1f:5b:d7:4d:79:e1:c3:f7:77:ed:8f:
6e:13:68:48:30:4e:e4:b2:12:e0:9d:68:bb:bf:83:fc:c8:5f:
60:51:71:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org