Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS141694.roa
File: AS141694.roa (raw, json)
Hash identifier: SCMwdajZeVrBofRWdfdAQwCqBPKoNwxSaxjFb9mK7tw=
Subject key identifier: 1A:53:AF:1B:34:09:66:05:E4:30:83:2A:C6:2A:89:37:07:2B:BB:F6
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1F769AFCB02EF5029D065087A5DF81A731983D38
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS141694.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 141694
IP address blocks: 2a06:a005:f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:76:9a:fc:b0:2e:f5:02:9d:06:50:87:a5:df:81:a7:31:98:3d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=1A53AF1B34096605E430832AC62A8937072BBBF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:05:ef:6e:74:d7:11:c2:55:cc:ef:b5:0b:
3a:64:55:9b:6c:62:d8:51:a5:3b:50:9c:50:ef:c2:
6f:05:f3:ee:eb:e0:6d:2b:d3:aa:d0:64:94:4b:ab:
7d:bb:59:76:0c:60:bd:a6:b8:37:86:49:f2:ef:78:
12:20:25:e7:ef:a6:aa:b0:6a:42:a7:02:d0:8a:1d:
cd:32:c0:d2:3f:38:14:aa:78:bb:b5:1d:08:46:de:
93:a2:3b:06:9f:c0:e6:27:30:59:cf:9f:f5:83:5b:
cf:4d:8d:42:8b:f2:10:5d:db:11:bc:19:14:47:6e:
a4:bc:37:2d:cc:0a:3f:12:76:fa:1d:41:af:1e:39:
40:33:2b:08:b0:d7:d6:b5:d2:6a:6d:80:88:9b:ab:
01:2b:39:d6:85:63:f0:f9:ea:55:ab:3a:56:82:79:
ff:1f:38:9c:da:7e:4a:1a:1d:08:7a:60:6b:76:0b:
cd:67:03:50:b4:18:5f:5e:b9:49:c8:c0:6d:6d:e5:
d1:14:e6:3d:60:9a:9f:4e:cc:b8:2a:d7:d5:2b:7c:
35:c1:ce:67:fa:3f:7f:e6:a3:30:91:7c:11:34:21:
61:ff:11:d6:81:6f:c9:f7:ea:8f:06:ae:4d:92:f2:
92:d1:3a:ba:ec:12:5d:8b:65:9b:4c:57:d7:f6:a2:
bb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:53:AF:1B:34:09:66:05:E4:30:83:2A:C6:2A:89:37:07:2B:BB:F6
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS141694.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f0::/44
Signature Algorithm: sha256WithRSAEncryption
22:76:78:d9:62:3d:23:19:7f:b1:fc:75:48:88:94:af:4f:01:
a1:5d:08:7d:13:01:e1:cd:54:54:bc:6c:81:d6:7f:3d:53:f6:
e6:3b:b6:a4:c2:1f:0f:3b:e0:6d:38:4b:94:03:73:ac:eb:56:
a8:0e:ac:4e:af:84:ac:74:91:9d:58:13:f6:bc:dd:25:fd:da:
43:18:51:66:fe:8f:dc:55:92:dc:7e:e2:16:6e:f1:2a:8d:04:
f5:fc:d0:c5:5c:cf:38:06:2b:fa:a7:c8:1f:95:3b:25:8f:86:
4b:b2:3d:06:c3:c1:77:35:55:b6:96:49:22:7d:2c:7b:71:aa:
49:32:85:0c:8d:21:2b:d9:a5:52:c5:38:0b:6b:65:66:f1:13:
b7:aa:94:bd:db:ba:9e:68:0c:03:5d:fe:3e:b9:91:ab:88:d6:
a3:00:04:04:2e:b5:d7:25:c3:b8:46:99:39:37:dc:1a:6e:03:
bf:38:02:98:eb:87:2f:6b:e8:bc:50:ab:97:08:c9:60:5c:b7:
00:ea:65:38:3a:e9:d4:4d:13:6c:56:9c:10:7a:87:2f:00:7d:
b6:28:1c:1a:ec:2f:c3:dc:f7:00:41:67:3b:be:24:9c:8f:22:
51:1d:14:9e:a0:f2:3d:f6:b7:34:7a:e8:74:cc:01:61:60:60:
4b:48:90:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org