Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
File: AS138211.roa (raw, json)
Hash identifier: y44h4DJrsJKsMK46ia5U5LzkD1ZNagGIIGAJ0FAzW6U=
Subject key identifier: A7:39:B6:95:88:C6:5B:47:35:BB:A1:4F:30:21:C0:A2:9E:89:33:B6
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6CCA26C63C505AB406579C086BF8DA9197D8A468
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 138211
IP address blocks: 2a06:a005:7c0::/44 maxlen: 48
2a06:a005:c20::/44 maxlen: 48
2a06:a005:c30::/44 maxlen: 48
2a06:a005:11f0::/44 maxlen: 48
2a06:a005:2400::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:ca:26:c6:3c:50:5a:b4:06:57:9c:08:6b:f8:da:91:97:d8:a4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=A739B69588C65B4735BBA14F3021C0A29E8933B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b3:6f:81:04:7c:a0:64:e2:10:1f:8f:0a:79:
c6:b3:75:6b:f9:5f:eb:0f:82:38:a3:cf:49:1e:d8:
57:55:9d:a0:2f:1b:5f:99:d3:62:80:5e:3f:f1:22:
2a:17:20:16:7c:46:8b:1f:23:4e:be:19:65:48:7d:
da:83:8a:ee:db:cb:96:27:ea:23:8f:94:4b:6d:15:
0c:6d:ac:2a:1d:fe:d6:bb:74:7b:43:53:79:e3:8a:
50:75:7a:48:5a:fd:e6:17:ef:c5:6c:55:36:f9:e5:
48:10:99:d4:09:29:44:4b:8b:dc:a0:c1:97:43:f9:
52:32:e5:20:55:7f:d1:b8:9f:63:9a:07:2f:b6:51:
7a:36:07:3a:9f:49:34:33:13:3a:52:b6:8d:64:ae:
81:82:9a:e5:40:25:9d:a7:d0:5c:06:3f:d0:85:6d:
0d:1f:1e:3e:45:8c:39:5f:ee:80:5f:b7:64:6f:b9:
9d:95:f1:cb:4b:6d:f6:d9:e9:e9:a6:42:d1:42:28:
ce:64:28:e7:72:c3:1b:a0:bc:e3:d5:5a:68:e3:26:
0e:21:ae:72:15:34:f6:33:7f:71:ac:e0:1b:f7:cc:
0b:bc:2d:4c:01:2e:3d:53:9b:8a:91:b2:0e:db:a4:
e7:bc:cc:d7:1c:f3:da:9c:08:06:43:ab:b6:a4:18:
0e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:39:B6:95:88:C6:5B:47:35:BB:A1:4F:30:21:C0:A2:9E:89:33:B6
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138211.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:7c0::/44
2a06:a005:c20::/43
2a06:a005:11f0::/44
2a06:a005:2400::/44
Signature Algorithm: sha256WithRSAEncryption
1a:4b:7e:cd:d0:de:bd:ad:8e:91:55:3e:b3:a1:c1:72:4b:47:
d8:36:90:55:46:5d:bd:ef:7c:9a:7b:e1:83:aa:24:c4:7f:6d:
b4:9b:c6:03:c5:71:76:77:98:62:40:6c:ec:f7:34:f9:f1:05:
69:43:5a:a2:5e:d5:ef:0e:2e:9d:ad:28:f2:41:3b:1a:09:fc:
8d:85:7c:9d:ec:7c:c4:16:24:11:f9:ef:01:16:db:64:12:d7:
ba:79:ae:bf:2d:c2:f6:d4:fc:3d:dc:63:0e:00:04:81:1f:63:
a7:2a:f5:ca:0b:0f:d1:af:3f:c6:20:02:39:23:1e:86:27:32:
a9:76:9b:a8:25:5f:a1:c3:f5:ec:ef:15:86:5c:80:8d:90:00:
fe:9a:e2:fc:c5:d6:df:58:80:0b:af:4c:46:ce:9d:d2:34:5b:
5c:c7:1f:cc:c0:59:f0:2b:a9:e3:5e:21:a2:28:d8:b6:31:2d:
9f:3f:d7:83:bc:ee:01:7d:38:2e:30:bd:82:81:d4:ee:37:41:
80:73:8b:20:0a:b4:18:f9:7f:77:87:cc:b6:f8:1f:45:8e:3d:
72:72:59:ee:96:a9:b5:f4:c1:fa:82:92:a8:31:e0:1f:1f:58:
ca:32:84:c0:7f:58:c8:2e:ec:dc:b2:4a:ca:8c:d4:3e:54:3e:
98:3d:08:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:53 2024 by rpki-client on console-ams.rpki-client.org