Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
File: AS147297.roa (raw, json)
Hash identifier: VfB8JTqrMxvnJoY0EddAnEA+bEfERmBPac8lidSt+rs=
Subject key identifier: 34:BB:2F:E5:B0:A4:6B:41:B9:13:5B:75:BC:95:0D:26:A8:FB:F9:15
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 358B55E2385DB1DBB703F21A1BA2789834B7248A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 147297
IP address blocks: 2a06:a005:48c::/48 maxlen: 48
2a06:a005:48d::/48 maxlen: 48
2a06:a005:48e::/48 maxlen: 48
2a06:a005:48f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:8b:55:e2:38:5d:b1:db:b7:03:f2:1a:1b:a2:78:98:34:b7:24:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=34BB2FE5B0A46B41B9135B75BC950D26A8FBF915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6e:1f:a4:8b:cd:7c:91:46:07:af:e6:62:09:
a6:cb:94:21:83:1a:68:bc:8d:ee:71:e6:31:05:d3:
05:0f:85:63:f8:28:b9:9f:21:a1:d1:5c:85:6c:2f:
83:04:9c:c2:b6:43:d7:88:09:b2:2a:ff:39:bf:9b:
15:37:79:a7:95:32:7a:63:8d:32:8a:92:9f:14:f9:
01:42:af:6a:39:e9:fa:7b:53:42:08:fa:21:9e:18:
2c:35:90:b7:61:f2:92:61:e1:92:4d:32:11:bf:ff:
d6:0d:f0:c3:5a:36:5f:76:34:de:8f:52:a7:d1:0a:
90:1a:aa:32:28:e3:05:85:3f:d2:e1:d9:ba:6a:34:
bd:07:f0:fb:9f:22:fd:45:b6:d4:aa:6e:38:16:2d:
78:d3:ef:9f:ac:8b:a0:df:2d:53:85:3b:11:49:5d:
8c:a7:68:df:7b:70:6a:ac:32:17:68:8f:e4:e9:12:
8e:7d:b6:59:14:fd:9d:a6:b2:0c:f9:29:08:e4:23:
35:ef:63:66:e4:05:ad:69:fa:bd:f3:2e:cb:f1:e1:
ac:1d:3a:53:44:ec:55:55:af:b7:bf:58:33:37:4c:
d3:21:c1:4b:0b:c1:dd:ef:09:41:07:4d:2e:12:3b:
c1:c0:33:8c:e3:ee:e2:b2:3d:b8:c5:61:fb:c4:c3:
e9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BB:2F:E5:B0:A4:6B:41:B9:13:5B:75:BC:95:0D:26:A8:FB:F9:15
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:48c::/46
Signature Algorithm: sha256WithRSAEncryption
ce:b2:01:63:38:96:e8:03:c6:fb:43:40:8e:f4:75:d5:c5:c6:
3d:0f:db:c3:94:01:34:1f:e1:82:ed:37:a1:85:96:5a:b2:a6:
93:79:88:bc:71:7e:01:b2:f7:6f:8b:b3:0c:23:ec:74:00:54:
37:db:e5:e2:fe:d1:09:ee:0b:8d:ee:34:70:e2:f3:df:a8:e5:
1a:bc:f4:9a:f2:8a:7e:55:5a:a7:52:b6:34:42:55:8a:08:fa:
02:ea:8a:c1:a2:c4:e4:fb:9b:0f:7a:e8:97:41:3d:39:ee:e7:
58:bd:35:d3:65:e8:ac:6b:6a:3a:bb:2a:30:76:aa:93:c7:36:
aa:c5:10:71:69:1d:f7:43:19:71:3e:0a:1d:16:8c:1c:da:f1:
35:ed:f0:8a:7a:2f:36:68:00:d3:9d:7b:fd:56:3b:cc:7a:dd:
93:76:c3:95:de:e7:6a:e5:c9:0d:ee:4e:12:99:d1:20:9d:62:
cb:62:bb:92:d4:39:a1:a3:56:7d:02:88:d4:87:fb:2c:61:52:
1b:83:00:cf:07:7d:58:7e:34:99:06:49:5e:d8:84:38:fd:f0:
a8:42:ad:4c:e2:4c:24:77:05:41:b8:5d:b1:cc:2b:61:11:30:
18:a7:3b:cb:f5:1f:27:ca:ee:1b:da:c1:58:7d:3d:c9:c4:e4:
9a:cd:91:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org