Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
File: AS138211.roa (raw, json)
Hash identifier: a5aQucOIhsTVibkdlKq4EwsyHmDDradHRbzbn7Pnrws=
Subject key identifier: F0:85:5E:4B:B1:10:14:BF:E2:0E:67:C3:50:15:23:DF:B0:D8:0A:A5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 51AB10A8CBC19C88F65CB6719553DAB456179709
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 138211
IP address blocks: 2a06:a005:7c0::/44 maxlen: 48
2a06:a005:c20::/44 maxlen: 48
2a06:a005:c30::/44 maxlen: 48
2a06:a005:11f0::/44 maxlen: 48
2a06:a005:2400::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:ab:10:a8:cb:c1:9c:88:f6:5c:b6:71:95:53:da:b4:56:17:97:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=F0855E4BB11014BFE20E67C3501523DFB0D80AA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ae:37:6f:0e:6b:c3:d5:76:72:e9:7e:84:6e:
b8:9b:ab:5a:2f:08:ba:34:27:f2:83:ca:f9:fe:ad:
74:be:f7:ec:dd:04:71:79:9c:d7:d9:08:65:aa:12:
95:d1:93:de:9d:3b:97:af:e3:ca:97:34:04:28:d5:
35:0a:05:0a:20:26:99:2e:a3:45:01:09:b3:90:bd:
5b:71:9d:ab:aa:7d:dc:f4:59:64:0c:b4:41:79:af:
b3:b5:4b:b7:cc:d5:6c:55:e7:ac:b8:75:88:6a:88:
d6:5d:fa:a0:dc:4a:91:af:8a:58:01:ae:fa:0b:8a:
73:01:66:8b:ba:53:69:fa:c5:41:b4:63:bb:0e:41:
01:b2:11:f5:84:73:b4:7a:57:d5:cb:62:72:5d:2e:
67:6c:72:6e:3c:b7:b7:98:48:90:fc:de:5a:13:aa:
74:7c:fc:a1:5a:36:b4:7e:dc:d4:8d:bd:82:66:33:
de:9d:b6:4d:8f:22:5a:ec:2a:84:56:91:f2:7a:88:
14:ab:64:38:b0:12:3f:ac:b8:eb:ed:af:52:87:1c:
92:5f:9d:67:77:35:c1:2e:ed:75:b6:d4:96:67:65:
1a:c8:19:6e:e1:cf:38:b2:7d:a6:80:f0:58:5f:db:
54:4a:60:c4:1b:81:99:30:0f:0a:d4:65:19:ff:42:
10:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:85:5E:4B:B1:10:14:BF:E2:0E:67:C3:50:15:23:DF:B0:D8:0A:A5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:7c0::/44
2a06:a005:c20::/43
2a06:a005:11f0::/44
2a06:a005:2400::/44
Signature Algorithm: sha256WithRSAEncryption
bd:9f:e0:a2:8c:f0:76:9a:40:29:de:7a:a3:04:0e:dc:25:82:
60:19:d8:d6:10:10:96:b9:46:02:54:ee:19:55:6a:ea:35:d7:
8d:10:e6:05:21:59:22:ef:30:7e:6f:59:5f:fe:60:92:14:a3:
47:c9:51:ba:47:28:6f:d8:33:6e:a1:98:d9:62:8d:b7:65:b1:
6d:b3:23:64:94:a7:19:f2:37:ad:b2:f4:6d:8b:ff:a6:9c:c0:
ed:2c:63:c9:b2:43:4d:34:1e:02:99:9d:29:e2:f5:d3:d4:58:
b1:68:2c:a0:f1:2e:34:32:8e:db:f6:70:99:97:30:78:8a:52:
dd:0d:be:dd:25:53:5a:14:d7:d5:5d:9d:67:d5:7c:09:9c:59:
af:fc:76:ab:8b:58:f7:6f:1e:c9:da:8c:bb:e0:79:e2:af:e3:
5b:41:5e:90:b4:2f:0d:99:65:f0:aa:be:b9:be:66:5f:64:5c:
55:36:a6:a2:56:4e:e1:fb:fb:fc:9f:8e:2f:ba:2a:40:c8:e9:
2b:f8:b3:d9:92:15:82:e8:c1:0a:b3:24:d6:d7:86:c3:f0:1b:
5d:33:4a:c0:9a:0b:5e:d8:8f:ef:b1:7c:30:83:61:d9:2e:b4:
2a:ca:6b:41:cc:36:6c:d3:fe:a4:0f:69:4c:cb:29:f5:06:e3:
7c:ee:32:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org