Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS149835.roa
File: AS149835.roa (raw, json)
Hash identifier: 7dQRq7HbfAavPEBU7fpRJyhQLZ38UxbMgwksIXGBzhU=
Subject key identifier: 1C:0D:7B:0E:A1:67:84:2E:66:E7:DC:52:F8:F8:DA:E6:6C:0B:B6:2B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 07F92F6CDA881B1F9A8B3CB788D57D092A7B4249
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS149835.roa
Signing time: Fri 13 Dec 2024 02:56:30 +0000
ROA not before: Fri 13 Dec 2024 02:51:30 +0000
ROA not after: Fri 12 Dec 2025 02:56:30 +0000
asID: 149835
IP address blocks: 2a06:a005:10a0::/44 maxlen: 48
2a06:a005:2860::/44 maxlen: 48
2a06:a005:2870::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:f9:2f:6c:da:88:1b:1f:9a:8b:3c:b7:88:d5:7d:09:2a:7b:42:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:30 2024 GMT
Not After : Dec 12 02:56:30 2025 GMT
Subject: CN=1C0D7B0EA167842E66E7DC52F8F8DAE66C0BB62B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ce:46:4c:2d:49:8c:9b:22:02:01:25:b1:1b:
b3:90:93:a7:c2:e5:ec:22:64:59:3d:61:45:6c:9d:
12:fe:36:a2:7a:8a:1f:02:9b:64:42:b5:a3:e5:c0:
73:41:79:14:b6:eb:ac:c6:39:16:b3:6a:1f:a4:a5:
07:33:3c:cc:5a:9e:5c:2e:e0:c3:7b:62:65:d9:f7:
e5:8c:93:b1:62:1a:f1:18:12:50:68:2e:e4:4d:fa:
77:01:31:e8:e6:07:20:22:bf:9b:aa:c2:be:70:9e:
d6:19:c5:01:77:c6:28:92:50:1c:c1:c0:0e:8a:c3:
bf:14:30:20:db:db:e9:58:8b:7d:e8:b6:a0:f7:78:
ac:27:d0:fb:5f:c8:dc:0b:1e:e7:61:28:40:44:f4:
6d:cd:e2:ff:fd:86:af:f5:36:3f:c1:1d:ff:e3:0c:
a6:16:16:3e:bf:07:dc:0d:f0:52:5d:3b:4c:6a:45:
6e:71:7d:26:a1:06:e6:7f:57:71:1d:20:7c:e6:7d:
91:cb:52:af:a3:59:16:66:e2:a8:13:25:d4:25:99:
01:07:f3:85:3b:82:f7:3b:a3:8d:10:20:ad:26:8f:
79:98:ac:74:e2:96:2b:c9:1f:6c:9a:ba:68:f9:0a:
1c:c8:e9:30:47:c6:e8:5c:98:90:e3:e4:79:56:a6:
22:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0D:7B:0E:A1:67:84:2E:66:E7:DC:52:F8:F8:DA:E6:6C:0B:B6:2B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS149835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:10a0::/44
2a06:a005:2860::/43
Signature Algorithm: sha256WithRSAEncryption
0d:63:13:00:ec:2f:4a:7b:68:b1:5c:4c:bf:d7:c4:35:36:15:
f4:e2:68:53:f3:cd:0d:e5:71:cb:81:30:9b:4e:c4:6d:38:49:
62:16:53:50:8e:f4:b7:53:e9:08:60:84:f2:15:a2:5c:45:d1:
6a:47:e0:e0:79:de:b5:ab:7a:be:c7:be:f7:77:ee:7f:e3:88:
68:0c:42:78:79:a5:90:1d:d5:db:5d:08:1a:a0:0d:4b:e5:54:
05:a9:38:c9:b7:4e:80:88:cb:ba:c6:e1:d5:7b:53:b1:a4:5e:
a4:06:8d:13:23:72:60:54:30:49:6b:4f:2d:82:68:7d:89:ff:
40:2e:48:ae:a5:0b:7d:70:8a:ac:3a:c4:e8:7d:10:42:2b:12:
5c:fd:b0:d4:09:b4:33:cb:88:ec:42:e5:09:b5:d3:6a:dd:ac:
7e:27:48:57:ba:34:75:fc:61:9d:53:a3:fd:eb:63:dc:bb:bb:
4f:a9:8a:17:60:71:56:fe:11:1d:19:c5:cb:6a:d6:c4:77:11:
b2:c5:d3:dc:5a:9b:31:d4:b7:be:48:55:c8:f2:ba:59:7f:58:
2c:a8:6c:ac:cd:59:e5:43:b7:68:89:53:ab:16:68:83:15:ca:
48:b3:f6:f1:23:cb:b8:6c:63:46:4b:a8:06:89:38:42:6b:41:
ea:85:af:1b
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIUB/kvbNqIGx+aizy3iNV9CSp7QkkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMTMwMjUxMzBaFw0yNTEyMTIwMjU2MzBaMDMxMTAvBgNV
BAMTKDFDMEQ3QjBFQTE2Nzg0MkU2NkU3REM1MkY4RjhEQUU2NkMwQkI2MkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5zkZMLUmMmyICASWxG7OQk6fC
5ewiZFk9YUVsnRL+NqJ6ih8Cm2RCtaPlwHNBeRS266zGORazah+kpQczPMxanlwu
4MN7YmXZ9+WMk7FiGvEYElBoLuRN+ncBMejmByAiv5uqwr5wntYZxQF3xiiSUBzB
wA6Kw78UMCDb2+lYi33otqD3eKwn0PtfyNwLHudhKEBE9G3N4v/9hq/1Nj/BHf/j
DKYWFj6/B9wN8FJdO0xqRW5xfSahBuZ/V3EdIHzmfZHLUq+jWRZm4qgTJdQlmQEH
84U7gvc7o40QIK0mj3mYrHTilivJH2yaumj5ChzI6TBHxuhcmJDj5HlWpiKHAgMB
AAGjggH7MIIB9zAdBgNVHQ4EFgQUHA17DqFnhC5m59xS+Pja5mwLtiswHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MTQ5ODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEH
AQH/BBwwGjAYBAIAAjASAwcEKgagBRCgAwcFKgagBShgMA0GCSqGSIb3DQEBCwUA
A4IBAQANYxMA7C9Ke2ixXEy/18Q1NhX04mhT880N5XHLgTCbTsRtOEliFlNQjvS3
U+kIYITyFaJcRdFqR+Dged61q3q+x773d+5/44hoDEJ4eaWQHdXbXQgaoA1L5VQF
qTjJt06AiMu6xuHVe1OxpF6kBo0TI3JgVDBJa08tgmh9if9ALkiupQt9cIqsOsTo
fRBCKxJc/bDUCbQzy4jsQuUJtdNq3ax+J0hXujR1/GGdU6P962Pcu7tPqYoXYHFW
/hEdGcXLatbEdxGyxdPcWpsx1Le+SFXI8rpZf1gsqGyszVnlQ7doiVOrFmiDFcpI
s/bxI8u4bGNGS6gGiThCa0Hqha8b
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:50 2025 by rpki-client