Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142553.roa
File: AS142553.roa (raw, json)
Hash identifier: h3NMZTQuLbZD8Kg2AKdgUctzlXOXDsVe1hhHqKmx3oI=
Subject key identifier: 07:99:01:66:85:16:21:C6:DB:86:92:8D:26:FE:32:8C:F0:A5:50:B7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 19D71636D8ECDFB01204193A0D0CF9C903FB3593
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142553.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 142553
IP address blocks: 2a06:a005:560::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d7:16:36:d8:ec:df:b0:12:04:19:3a:0d:0c:f9:c9:03:fb:35:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=07990166851621C6DB86928D26FE328CF0A550B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1e:1a:eb:bc:9a:a3:33:a0:4f:08:4d:51:0a:
e2:98:cb:d9:4b:fc:fd:7f:27:61:38:f3:3f:e5:18:
20:39:a9:50:b4:1b:50:28:2b:95:e6:23:70:6a:1a:
98:a9:f2:4e:d9:fe:e9:d7:0c:b2:11:86:23:f5:13:
a2:fc:04:78:b1:19:ab:c8:ee:19:46:42:68:da:96:
19:36:bc:7a:67:d6:5e:40:5d:68:46:14:2d:8c:4c:
51:8e:08:2e:0b:c5:f2:f6:2e:36:f0:72:fc:09:69:
ef:0f:49:00:4c:7e:bc:61:37:81:45:47:39:fd:7d:
3c:47:c7:ee:33:c7:8c:b3:23:bc:63:09:03:f3:08:
4e:32:30:b8:04:0b:7d:74:3b:b5:8c:00:6f:db:b1:
0c:b4:b3:d6:6c:62:6a:20:34:b3:f9:7a:de:8a:05:
04:eb:26:4c:44:87:7a:87:69:64:ae:83:5f:5f:b9:
71:86:ee:ff:ae:08:65:98:72:a0:cd:b1:a2:06:d3:
70:1c:40:06:1a:4e:91:cf:8b:17:0e:4a:36:33:35:
78:aa:f6:92:a4:10:14:68:bb:da:0c:8c:c2:70:6c:
f4:8c:c0:1b:77:f8:65:40:42:5b:67:a0:c9:20:24:
ee:fa:6a:b5:29:7c:45:45:e8:fb:09:30:d9:98:ec:
8f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:99:01:66:85:16:21:C6:DB:86:92:8D:26:FE:32:8C:F0:A5:50:B7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142553.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:560::/44
Signature Algorithm: sha256WithRSAEncryption
c8:99:43:4e:21:0d:bf:44:e3:73:a6:ae:3c:73:53:b4:18:0b:
b8:3a:9c:ed:ad:18:1d:43:da:68:e7:67:ca:fd:33:3f:57:ef:
36:66:46:cf:df:17:f9:b9:50:7d:6f:c8:85:cd:bc:e4:5b:ab:
86:2f:51:20:c9:78:ea:eb:e0:e3:f4:7e:a8:53:5c:e7:7a:f4:
20:6c:71:99:22:3a:17:9b:f8:22:18:ff:99:3d:06:fb:41:88:
ab:65:16:54:72:cf:5b:05:96:e8:c1:1d:cb:65:9e:3f:50:21:
06:c4:96:ef:26:89:c9:21:d0:56:45:a8:6d:04:af:ea:46:be:
e7:e5:a5:45:05:19:29:6c:04:ec:fb:56:fa:fa:bf:75:3c:26:
0e:9c:b6:0b:4c:db:ed:fc:aa:43:93:d0:4c:95:3d:4e:83:a6:
09:8c:2a:15:d2:b9:ff:68:9d:1d:73:00:14:77:95:f8:88:78:
3e:e5:94:c7:5c:4b:18:b1:1c:2c:15:ab:09:c7:e9:fb:56:95:
42:09:64:20:4c:b5:ff:98:f1:20:94:af:eb:0c:cc:79:c6:e8:
e8:98:68:54:06:f7:21:c8:cb:e5:a6:29:b6:dc:a8:53:61:92:
1d:57:f4:a1:b8:da:25:7c:ef:7a:2c:fe:8e:bb:8b:7b:fc:35:
6d:cc:4e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org