Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
File: AS142594.roa (raw, json)
Hash identifier: 5mRUiil+SNztL7EkjDn5VXSK6cjdDGJqr4DAiEmp1Nk=
Subject key identifier: 68:7F:43:2D:6B:B6:BF:54:6B:8A:F7:13:59:72:04:E1:9F:87:3E:81
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 339D492643C705B9771336D04D9F9A9B82147C8E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
Signing time: Sat 06 Jan 2024 19:44:21 +0000
ROA not before: Sat 06 Jan 2024 19:39:21 +0000
ROA not after: Sat 04 Jan 2025 19:44:21 +0000
asID: 142594
IP address blocks: 2a06:a005:108c::/48 maxlen: 48
2a06:a005:16d0::/44 maxlen: 48
2a06:a005:16e0::/44 maxlen: 48
2a06:a005:1730::/44 maxlen: 48
2a06:a005:19e0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:9d:49:26:43:c7:05:b9:77:13:36:d0:4d:9f:9a:9b:82:14:7c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 6 19:39:21 2024 GMT
Not After : Jan 4 19:44:21 2025 GMT
Subject: CN=687F432D6BB6BF546B8AF713597204E19F873E81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:04:1a:0c:1b:f9:51:c2:29:5a:5b:bf:02:
93:23:d0:1a:52:1f:f8:fb:94:85:88:10:5b:f0:87:
62:e6:ad:4b:17:b6:be:7c:70:41:c7:34:05:50:d8:
cb:a7:6c:f4:1d:45:74:4a:11:36:f3:3a:f8:aa:59:
5d:2f:89:74:86:43:1f:f9:06:84:66:c3:c7:8f:07:
c4:15:ea:15:ac:ce:77:f9:6d:df:10:7b:81:94:37:
08:fc:ea:13:9e:e5:2d:0a:b4:ed:93:8f:84:4b:35:
04:a5:35:c1:a6:3d:16:14:cd:b7:f6:db:3c:a8:7b:
31:65:26:a3:b1:e2:a1:62:61:41:23:c3:42:9d:ed:
36:97:4b:5f:ca:4b:93:5a:77:aa:3f:bd:8f:93:3e:
c3:f5:4e:03:1b:71:2e:ae:a0:27:8e:5c:08:a0:7d:
55:df:bb:51:f4:28:15:62:c0:69:b7:82:98:64:61:
91:be:45:42:3f:db:97:72:b2:ed:da:14:df:78:1b:
50:84:46:eb:24:46:03:12:3e:74:b8:3f:bc:a6:d8:
5e:5f:19:df:75:ea:e1:6e:d2:02:2c:c1:63:04:e9:
0b:01:49:10:e6:74:a3:8e:6f:24:5d:d0:90:a5:8c:
81:1b:30:c7:6e:4e:72:2e:69:39:f8:82:0e:16:0f:
ef:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7F:43:2D:6B:B6:BF:54:6B:8A:F7:13:59:72:04:E1:9F:87:3E:81
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS142594.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:108c::/48
2a06:a005:16d0::-2a06:a005:16ef:ffff:ffff:ffff:ffff:ffff
2a06:a005:1730::/44
2a06:a005:19e0::/44
Signature Algorithm: sha256WithRSAEncryption
9e:d9:67:17:b5:63:39:01:f9:2d:1c:97:3b:81:cc:3b:66:20:
ef:b0:9b:92:16:8c:5f:60:08:46:c0:1c:f3:ba:15:91:e8:da:
31:2a:50:a6:04:d0:10:21:f4:fd:50:68:22:a8:da:2e:8a:50:
81:7b:bc:e5:9d:7c:65:6e:97:80:22:6b:78:e0:16:2d:c4:44:
8a:aa:6f:0b:47:74:c0:2f:e1:9b:4a:eb:a4:a6:b6:9c:a3:5b:
9a:22:d2:cc:50:ee:72:ab:f9:b3:a4:25:a6:79:ad:21:ba:d6:
65:4b:92:0d:ab:b5:13:e8:59:94:82:cc:2d:40:2b:4d:a2:d3:
7c:b9:f8:f9:de:55:c1:ce:a7:c0:22:15:12:13:0e:87:5f:04:
ab:a4:a4:2c:67:09:96:31:d3:94:21:ec:45:19:91:90:80:2d:
80:aa:c9:47:0a:4e:e8:27:42:ae:c6:b5:3f:60:9e:d4:57:92:
30:df:af:ac:04:80:aa:d2:6c:f5:a9:20:43:e5:77:16:dc:6a:
34:33:4d:a7:4d:32:52:11:5a:0a:ce:17:81:13:7b:39:5f:c4:
c2:91:fd:6f:77:de:2e:c9:f5:e7:2b:fc:b6:0f:1a:0b:9d:7a:
17:3b:1a:c8:0f:e4:5d:5d:5d:3d:b6:c1:73:bd:23:60:40:48:
2b:3d:f5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:53 2024 by rpki-client on console-ams.rpki-client.org