Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
File: AS142594.roa (raw, json)
Hash identifier: +srpX9Y9wk3NVX3V1z+b6j+0+ru/DQ8sh2nMa9NhdIE=
Subject key identifier: 4C:E5:49:BA:7F:E5:C3:47:F3:69:BC:C0:E4:6B:8D:ED:B5:2C:EF:7A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 429FD30912D79F1D8132CE845D725353F94208B0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
Signing time: Fri 13 Dec 2024 02:56:30 +0000
ROA not before: Fri 13 Dec 2024 02:51:30 +0000
ROA not after: Fri 12 Dec 2025 02:56:30 +0000
asID: 142594
IP address blocks: 2a06:a005:108c::/48 maxlen: 48
2a06:a005:16d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:9f:d3:09:12:d7:9f:1d:81:32:ce:84:5d:72:53:53:f9:42:08:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:30 2024 GMT
Not After : Dec 12 02:56:30 2025 GMT
Subject: CN=4CE549BA7FE5C347F369BCC0E46B8DEDB52CEF7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:b8:d3:32:0e:0d:b1:21:e6:fd:05:b3:94:
32:be:b2:05:c3:5e:f1:6e:25:4c:8a:cb:bf:d4:a9:
c3:e4:8a:b7:f3:88:2e:68:49:50:82:29:60:9d:ad:
eb:1b:1d:38:b9:86:7a:ad:aa:60:bd:eb:9b:d2:6c:
58:af:a7:c1:5a:cb:31:02:f7:fe:91:c4:68:ee:10:
e9:b9:f6:98:31:89:27:c0:0b:40:51:aa:0d:26:a9:
a4:50:a9:dd:75:4b:85:33:c6:cc:de:78:ba:8b:a2:
6f:ae:3b:c9:9f:f7:0b:83:c6:79:e5:fc:6b:ef:7a:
16:53:a7:81:db:0f:b0:ca:cb:be:03:43:85:50:91:
e3:11:d2:89:6a:8e:c9:3c:6c:54:6f:51:7c:84:2f:
ef:5a:27:db:d3:5e:37:1e:15:01:ed:7a:c0:a7:67:
70:8c:b2:78:ed:8b:9c:39:0d:1e:75:a9:e7:6b:82:
73:95:9e:70:f6:ff:db:a2:61:a4:07:60:3e:2b:f9:
3e:81:ce:e2:e0:65:02:85:5a:ff:7d:fa:af:47:d6:
b8:9e:c4:0d:8c:20:d0:77:c8:a4:bb:4d:44:8f:be:
41:4a:43:69:8f:33:c5:a3:65:c3:d7:81:f1:af:8b:
32:98:d5:87:96:0d:9d:46:cc:53:da:c7:92:bf:79:
ae:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E5:49:BA:7F:E5:C3:47:F3:69:BC:C0:E4:6B:8D:ED:B5:2C:EF:7A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:108c::/48
2a06:a005:16d0::/44
Signature Algorithm: sha256WithRSAEncryption
a2:d3:fd:1b:cb:88:6b:48:49:ca:29:c0:41:08:2f:2e:04:95:
b7:e3:be:dd:ff:c3:e9:38:67:e2:ed:16:d4:cc:4a:1f:9e:d8:
ae:fd:fc:11:84:59:a4:98:0c:94:5b:9e:15:12:dd:03:40:74:
ef:22:59:f1:92:2f:3c:7c:dc:89:08:2c:30:4f:cf:9e:44:f5:
75:ff:d6:7c:74:a8:83:e6:d4:38:cd:22:2c:f2:3e:ae:d6:bb:
14:83:ce:5f:a2:b9:ce:cd:6c:07:03:9c:76:89:fe:76:66:49:
1e:2f:7a:df:cf:06:06:da:e5:dd:99:df:45:61:89:b5:4e:22:
22:c9:61:cc:a6:af:8c:30:38:98:f6:34:7b:43:fb:08:30:f6:
50:e0:b6:f5:d7:d1:01:e2:a3:c6:f5:7a:f2:ee:67:84:34:2a:
8b:9b:e9:bf:40:56:54:cf:f2:22:d9:54:ec:24:44:32:18:e3:
3c:b0:a4:1d:65:eb:db:a4:f9:f4:d8:94:0c:bd:8a:f9:b6:58:
51:c5:fd:16:2b:c4:06:e4:00:b5:52:f7:4f:41:2d:98:70:9f:
ed:c0:96:51:35:10:41:37:5d:ed:e0:54:cb:32:76:05:f7:ec:
62:48:9f:14:1f:c1:fd:4a:ea:c0:5c:9a:d6:e4:e7:05:e0:31:
79:c7:6c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:42:24 2025 by rpki-client