Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS18428.roa
File: AS18428.roa (raw, json)
Hash identifier: It3G/8pYe0gOLAfNjcw7d2jEFXv5uMK8VWJLi6SoZ48=
Subject key identifier: 2A:2A:3E:8B:5A:C5:31:24:63:08:5F:1F:EA:A1:F4:EF:8E:45:58:E8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 148BE65433BD2FF92833ABF60469913C9961FDA4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS18428.roa
Signing time: Mon 25 Dec 2023 18:44:21 +0000
ROA not before: Mon 25 Dec 2023 18:39:21 +0000
ROA not after: Mon 23 Dec 2024 18:44:21 +0000
asID: 18428
IP address blocks: 2a06:a005:25f0::/44 maxlen: 48
2a06:a005:2610::/44 maxlen: 48
2a06:a005:2620::/44 maxlen: 48
2a06:a005:29c0::/44 maxlen: 48
2a06:a005:2bb0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:8b:e6:54:33:bd:2f:f9:28:33:ab:f6:04:69:91:3c:99:61:fd:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 25 18:39:21 2023 GMT
Not After : Dec 23 18:44:21 2024 GMT
Subject: CN=2A2A3E8B5AC5312463085F1FEAA1F4EF8E4558E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:07:80:87:35:5d:6f:0b:95:ab:bd:b7:1c:e9:
51:f4:3f:fb:e5:ce:1a:b9:d4:bd:6e:8f:29:1c:53:
d9:7c:26:71:21:2b:38:a4:ad:8e:5b:03:eb:1d:39:
d9:33:2f:eb:1a:eb:e8:f8:38:ae:a6:18:e7:92:39:
5a:90:87:9f:81:c8:9e:ef:0c:5d:3e:da:1f:58:6b:
28:c5:58:d4:99:59:03:3d:b1:40:52:8c:25:40:45:
8f:4b:85:a8:3a:48:48:2a:18:cc:8b:ab:e9:2b:31:
8d:2a:e3:2c:14:7f:da:00:f2:dc:3c:c4:f2:09:97:
2e:a4:38:70:56:d8:77:31:de:ab:24:11:9e:fe:44:
0e:f5:69:c5:08:36:a2:c3:50:8e:f7:dd:0d:4e:25:
a2:91:61:59:1a:bf:74:a8:cf:44:d8:1e:67:66:2c:
43:4c:46:9d:23:a1:53:c6:14:16:88:8c:8e:5b:c4:
73:4d:65:7f:91:ea:37:7f:6a:dd:16:f2:82:a6:a2:
a0:27:cc:13:c8:22:f8:a8:5d:ee:45:a5:25:7d:5a:
50:ad:ec:1a:cf:ce:a0:2e:16:20:61:4b:7e:35:34:
52:11:7e:84:28:a9:78:68:5e:88:8f:ca:74:e8:f3:
d5:25:fe:be:45:dc:3e:f6:26:c4:96:02:37:6f:62:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2A:3E:8B:5A:C5:31:24:63:08:5F:1F:EA:A1:F4:EF:8E:45:58:E8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS18428.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:25f0::/44
2a06:a005:2610::-2a06:a005:262f:ffff:ffff:ffff:ffff:ffff
2a06:a005:29c0::/44
2a06:a005:2bb0::/44
Signature Algorithm: sha256WithRSAEncryption
01:1e:ab:8b:7b:5d:a9:fd:d8:f3:20:ab:c7:33:92:75:99:34:
b7:ff:b0:76:a0:3e:18:47:a4:45:08:19:4e:b1:ce:66:00:8f:
47:c3:e9:74:81:18:ce:54:79:bf:b5:79:99:88:05:11:21:8d:
1a:5d:92:ee:24:f7:fd:1c:e8:bf:58:36:9a:0f:7e:4f:48:db:
43:54:6f:5d:cd:07:de:75:b3:92:3b:f9:e4:21:86:f2:7f:6c:
00:54:3b:df:9f:73:a0:22:d0:1b:17:d7:1b:89:37:b9:6b:21:
6c:d6:d8:0c:15:6e:6d:0f:6d:1f:9b:9b:16:ee:7f:3f:76:41:
00:4c:43:63:71:9d:ce:a9:f0:74:da:5d:33:dc:43:8e:3e:f5:
88:39:e7:0b:fa:54:ce:bb:f6:db:54:b5:76:3a:59:6e:d1:e2:
12:01:b1:98:65:07:af:1a:38:53:43:86:fc:44:b1:a8:21:70:
c1:a5:f0:b9:19:16:76:05:07:10:11:fa:cb:58:0d:4c:03:6c:
fc:02:d1:60:9b:45:c3:c5:37:c2:a8:40:74:bb:cc:29:6a:06:
86:cd:d0:64:20:b9:fb:f6:06:64:c9:b8:af:53:6d:66:0c:6b:
a7:2a:91:93:36:42:bd:27:d2:82:ff:5d:64:0e:85:4a:e7:18:
1a:bc:98:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org