Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS136479.roa
File: AS136479.roa (raw, json)
Hash identifier: hKzci8C9BNEgZbnwSOVhqZPChp7DyIo6Sjj6/3ZUkJA=
Subject key identifier: B1:33:25:A8:05:9F:A4:F7:B3:6C:1C:BC:62:66:38:F8:08:83:62:D2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 66265A1E3891A32AB1B01135424358467B912FD9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS136479.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 136479
IP address blocks: 2a06:a005:5e0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:26:5a:1e:38:91:a3:2a:b1:b0:11:35:42:43:58:46:7b:91:2f:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=B13325A8059FA4F7B36C1CBC626638F8088362D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:cd:91:28:aa:79:0c:2c:57:d3:d2:ff:e9:0a:
fe:9c:56:49:51:f0:49:30:8b:8c:79:fa:70:f7:72:
3c:40:08:c5:54:03:10:89:5a:b6:a8:c1:ff:7a:70:
6a:e5:26:d8:14:0f:6a:90:d7:6f:d6:fd:e6:6c:22:
ee:91:71:c3:49:5d:0d:62:4f:31:4a:0d:89:99:c8:
00:50:ba:e7:f6:65:4d:65:30:72:28:e6:61:4f:82:
8b:a5:c3:ff:a9:f6:ec:70:a6:bd:f7:a8:85:ba:ac:
d0:55:82:b0:21:54:e5:42:c5:cd:c7:5f:64:a9:92:
17:14:aa:15:54:27:2c:61:54:e6:b3:eb:3c:5e:f5:
80:10:ed:4e:cb:b0:d8:8d:a4:88:2b:bc:a5:76:79:
6f:94:e2:db:e8:47:4c:67:dc:97:3d:30:e3:07:32:
88:4a:97:2c:e4:e0:e4:f9:d4:6b:ab:f0:45:70:98:
18:d4:1e:8d:1e:9c:65:a3:75:8b:65:e7:00:dc:83:
1a:14:28:82:73:4f:d4:d7:45:f7:b1:8f:67:22:7a:
6b:e3:3a:57:40:fa:ef:7d:90:35:f6:71:9e:3c:77:
58:56:00:af:5d:7d:23:7a:58:25:a7:c8:3f:be:da:
1e:0c:0f:07:67:54:c0:31:b0:92:e8:bb:f6:08:6a:
38:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:33:25:A8:05:9F:A4:F7:B3:6C:1C:BC:62:66:38:F8:08:83:62:D2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS136479.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e0::/48
Signature Algorithm: sha256WithRSAEncryption
7a:88:a5:0d:17:c5:04:eb:0e:cb:7f:47:07:e9:56:37:4e:28:
fc:b6:9a:6d:f6:fb:d0:8a:46:ff:fb:1b:09:e7:07:df:92:3f:
bf:07:4f:2d:67:f1:c3:e7:6a:c2:84:bc:07:8e:fd:3f:98:5a:
32:08:1f:ba:70:62:60:9b:4d:04:5f:95:ee:7d:07:4a:ee:a7:
57:53:2b:d4:50:c8:48:68:12:b5:6c:ed:fe:4e:94:b3:36:7f:
90:32:ad:96:3b:e9:e9:29:5f:d5:a0:79:36:7e:cd:92:4e:9b:
1e:0d:9e:73:a0:f7:ef:ad:56:bf:23:c0:36:7d:b4:b3:a7:0a:
39:1e:8b:f9:18:62:d0:28:1c:ab:63:46:7c:06:33:02:3e:58:
42:6a:c8:32:a6:fe:07:99:73:3b:17:31:18:ee:f2:f5:85:c5:
20:18:e7:7b:93:c4:78:42:03:45:eb:4c:79:a3:d2:11:24:fa:
84:66:9f:95:69:1d:13:31:df:ef:7c:e8:98:24:b0:d8:61:33:
0d:7e:53:f9:7d:e9:dc:2b:43:fa:b3:de:4e:2a:bf:55:7e:06:
48:6a:14:3e:71:a4:02:96:b3:f7:6a:44:34:8b:4a:55:b8:15:
b5:cd:66:64:fa:91:b6:d9:df:a4:41:76:25:30:68:d9:1f:f8:
f0:44:00:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:11 2024 by rpki-client on console-fra.rpki-client.org