Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS134666.roa
File: AS134666.roa (raw, json)
Hash identifier: B0oO6apS48cAyIN6CUPHpXh9h1EeJX303Ps+6dxcPk8=
Subject key identifier: 69:85:4A:D5:30:66:F1:13:0E:40:21:E4:EC:D2:0B:03:9E:6E:99:AC
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6D4C4D51F163BC86EC8B1B7029D37D662053A221
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS134666.roa
Signing time: Tue 05 Dec 2023 02:44:19 +0000
ROA not before: Tue 05 Dec 2023 02:39:19 +0000
ROA not after: Tue 03 Dec 2024 02:44:19 +0000
asID: 134666
IP address blocks: 2a06:a005:a70::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:4c:4d:51:f1:63:bc:86:ec:8b:1b:70:29:d3:7d:66:20:53:a2:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:19 2023 GMT
Not After : Dec 3 02:44:19 2024 GMT
Subject: CN=69854AD53066F1130E4021E4ECD20B039E6E99AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:98:92:9d:a2:56:e8:89:17:0d:fc:86:7f:
ff:c0:82:fc:b8:a9:35:90:3b:99:43:17:5b:9b:91:
3e:85:33:2c:64:e6:dd:00:d6:ef:22:f6:f0:93:53:
62:7b:24:b2:82:50:3a:92:bd:20:16:a9:17:71:b2:
78:2c:d2:49:5f:b5:8b:0e:95:74:37:ff:0f:b2:04:
24:7f:38:52:26:d0:44:e2:02:40:4e:be:9c:e3:cf:
74:a4:66:42:67:44:76:4d:63:3d:02:6d:e1:4c:90:
2a:13:c0:28:24:c1:d2:44:3a:1c:9a:8c:84:f1:20:
7f:a4:b3:98:21:99:b6:b6:28:56:71:82:44:69:f4:
42:72:0d:90:8d:91:c6:d1:b0:af:62:f3:b8:4e:fc:
bd:75:e7:77:3b:e2:8b:e7:51:04:45:d0:6e:a6:5c:
56:c3:c5:57:53:c4:59:27:a1:70:6f:25:01:54:84:
85:2f:c5:2e:c1:ba:50:15:27:16:a9:77:99:d8:6c:
60:5b:db:f4:3b:a3:34:14:4f:dd:41:ce:70:e7:4b:
ac:44:30:24:52:c5:11:c7:3c:c1:64:23:31:fa:79:
6c:ae:1e:5a:44:48:63:b7:6f:4d:d1:57:0a:ce:e7:
76:c5:48:d5:7d:8a:ff:d6:3c:dd:e4:af:60:3d:cb:
f4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:85:4A:D5:30:66:F1:13:0E:40:21:E4:EC:D2:0B:03:9E:6E:99:AC
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS134666.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a70::/44
Signature Algorithm: sha256WithRSAEncryption
9a:58:29:f1:d8:99:0a:c4:67:b0:ca:b2:a7:a3:ad:e0:d5:be:
c8:f3:5c:27:25:57:cf:47:9d:68:81:c7:61:52:99:68:1e:94:
ce:4d:34:db:c0:e1:53:2b:93:d0:5f:d1:9b:67:ff:30:ab:47:
e4:73:6f:6d:7c:69:99:54:3b:2f:c9:98:ca:aa:89:3e:6f:dd:
5f:59:21:56:9c:59:08:6d:d2:50:af:7e:c3:ab:a7:7d:3c:5c:
2a:04:6f:aa:18:5b:4e:d5:16:84:dd:13:4a:4e:fd:1e:60:33:
ee:a6:99:8f:71:e6:f2:1f:f9:a6:f9:1b:1f:c1:c5:bd:73:33:
15:af:fe:40:8e:c4:61:a7:2d:00:4a:f6:73:a7:02:5b:a1:62:
de:82:97:42:fb:7f:e4:b4:f2:55:d8:34:4f:cd:24:bf:e3:ee:
2c:58:57:74:5e:df:b7:f2:7f:14:e8:b6:59:12:61:55:8d:02:
8f:3c:2f:52:1c:55:f9:37:37:eb:34:58:41:43:69:d8:fe:5f:
e4:f4:07:56:11:43:b4:0a:93:57:49:e3:3d:a1:08:82:8a:ab:
f1:80:89:cb:88:07:b0:0b:66:77:1a:ea:e2:65:db:0d:20:d8:
49:83:85:41:d0:4c:87:17:52:48:49:60:93:0d:f2:e6:58:b0:
ec:ad:fc:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org