Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS139321.roa
File: AS139321.roa (raw, json)
Hash identifier: lhSdldmpU5dQClbMcOjnw1z7DtBqS742Uq+eVmUQpzY=
Subject key identifier: C0:12:F3:C8:50:45:D2:CC:F0:01:C4:B6:C9:24:75:C8:D3:65:25:8D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 130F3FD1FC3843BB2D031BB4F269E683CF5F1A88
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS139321.roa
Signing time: Tue 01 Aug 2023 01:37:00 +0000
ROA not before: Tue 01 Aug 2023 01:32:00 +0000
ROA not after: Tue 30 Jul 2024 01:37:00 +0000
asID: 139321
IP address blocks: 2a06:1284::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0f:3f:d1:fc:38:43:bb:2d:03:1b:b4:f2:69:e6:83:cf:5f:1a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Aug 1 01:32:00 2023 GMT
Not After : Jul 30 01:37:00 2024 GMT
Subject: CN=C012F3C85045D2CCF001C4B6C92475C8D365258D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d3:14:61:e8:c3:1e:36:7f:20:9e:8e:50:49:
d1:ac:c2:3f:b8:4d:13:3e:77:34:13:86:46:51:29:
18:64:c5:be:e1:ba:04:9b:8b:eb:62:95:67:ea:e1:
f7:fe:1e:e4:01:6b:5b:a7:2d:be:fc:6a:9e:a7:e9:
f3:2d:f8:cd:81:40:aa:d8:e9:5b:cc:35:10:f8:10:
40:7c:39:b5:a3:58:c8:8e:00:5d:32:dc:84:93:27:
b2:7b:09:34:56:2c:99:b3:91:b8:0a:80:db:12:60:
c0:aa:9c:e8:17:82:2a:a3:fa:13:65:c6:5f:f3:54:
93:81:90:6e:e0:ef:03:5c:08:08:d0:d2:b6:b5:8b:
26:f1:59:02:77:0f:8e:16:24:16:fd:98:af:a4:6e:
50:3d:82:7c:2f:e7:ef:0a:9e:82:a8:fb:32:b0:69:
0b:b9:23:fd:fc:a9:0a:16:aa:44:78:30:a8:b1:6e:
05:f7:ae:50:cc:00:36:e4:72:b0:79:0d:fb:78:a6:
7d:7b:20:b3:4f:b7:85:5c:14:44:be:e8:9d:df:c6:
d4:ed:16:eb:6e:0a:f6:5e:99:90:e7:f1:39:3e:72:
da:47:c9:f7:aa:e9:58:02:ae:4a:76:c2:b9:55:bd:
46:e9:33:a2:94:a6:e1:0f:cb:17:4b:56:4e:27:e2:
03:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:12:F3:C8:50:45:D2:CC:F0:01:C4:B6:C9:24:75:C8:D3:65:25:8D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS139321.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1284::/32
Signature Algorithm: sha256WithRSAEncryption
37:c9:e6:bc:9d:15:cb:ec:75:73:56:9a:55:e7:6f:04:4a:82:
3b:1e:a7:87:69:d0:8a:de:d8:f5:3a:94:d2:61:71:59:e7:ca:
cc:07:65:e3:4e:72:a7:04:62:c3:6c:69:11:61:df:96:c1:91:
94:68:de:c4:8b:46:7d:c4:9d:63:5e:23:48:2a:e6:fa:a8:69:
3b:80:da:cb:91:e6:9c:7c:49:cf:b1:5b:f8:3c:75:84:0b:12:
3f:c8:e1:dd:21:e2:82:21:a4:29:f0:ef:60:0f:41:28:96:b5:
c5:7e:f1:3d:a0:d2:55:5f:e9:d6:57:65:05:c2:3a:06:26:3f:
9e:c0:49:75:14:a9:6c:37:db:bb:2d:87:79:93:84:0b:08:70:
c2:d3:95:15:39:dc:12:8b:ab:4e:cb:5e:9f:f0:5e:a7:c8:4e:
a6:91:cf:31:5c:7c:23:4c:a8:30:d8:cb:5e:10:6b:5e:d0:9f:
64:73:70:25:8b:4c:c9:96:f5:e2:ac:4c:45:45:3a:58:69:7a:
64:19:30:27:ad:43:8c:92:67:b1:30:1b:de:92:88:2d:ca:4f:
f4:4d:58:1a:bc:17:f3:9d:69:d1:59:e9:ef:23:87:14:51:6c:
81:20:a7:0c:92:30:aa:13:ff:c7:73:c4:d2:87:a9:a5:d5:84:
fe:43:e3:d0
-----BEGIN CERTIFICATE-----
MIIE5jCCA86gAwIBAgIUEw8/0fw4Q7stAxu08mnmg89fGogwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzA4MDEwMTMyMDBaFw0yNDA3MzAwMTM3MDBaMDMxMTAvBgNV
BAMTKEMwMTJGM0M4NTA0NUQyQ0NGMDAxQzRCNkM5MjQ3NUM4RDM2NTI1OEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0xRh6MMeNn8gno5QSdGswj+4
TRM+dzQThkZRKRhkxb7hugSbi+tilWfq4ff+HuQBa1unLb78ap6n6fMt+M2BQKrY
6VvMNRD4EEB8ObWjWMiOAF0y3ISTJ7J7CTRWLJmzkbgKgNsSYMCqnOgXgiqj+hNl
xl/zVJOBkG7g7wNcCAjQ0ra1iybxWQJ3D44WJBb9mK+kblA9gnwv5+8KnoKo+zKw
aQu5I/38qQoWqkR4MKixbgX3rlDMADbkcrB5Dft4pn17ILNPt4VcFES+6J3fxtTt
FutuCvZemZDn8Tk+ctpHyfeq6VgCrkp2wrlVvUbpM6KUpuEPyxdLVk4n4gPVAgMB
AAGjggHwMIIB7DAdBgNVHQ4EFgQUwBLzyFBF0szwAcS2ySR1yNNlJY0wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MTM5MzIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEH
AQH/BBEwDzANBAIAAjAHAwUAKgYShDANBgkqhkiG9w0BAQsFAAOCAQEAN8nmvJ0V
y+x1c1aaVedvBEqCOx6nh2nQit7Y9TqU0mFxWefKzAdl405ypwRiw2xpEWHflsGR
lGjexItGfcSdY14jSCrm+qhpO4Day5HmnHxJz7Fb+Dx1hAsSP8jh3SHigiGkKfDv
YA9BKJa1xX7xPaDSVV/p1ldlBcI6BiY/nsBJdRSpbDfbuy2HeZOECwhwwtOVFTnc
EourTsten/Bep8hOppHPMVx8I0yoMNjLXhBrXtCfZHNwJYtMyZb14qxMRUU6WGl6
ZBkwJ61DjJJnsTAb3pKILcpP9E1YGrwX851p0Vnp7yOHFFFsgSCnDJIwqhP/x3PE
0oeppdWE/kPj0A==
-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org