Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS19625.roa
File: AS19625.roa (raw, json)
Hash identifier: fCp87X3d+/KOVJOBcog2b2uyX+7ZPZ6DEFoKM3Hx94c=
Subject key identifier: AD:25:DF:A4:DC:96:F3:F9:F8:B3:17:4A:C7:40:18:FB:D3:68:17:39
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 05B46EAFE0EB38D745CFC24A10EBD02D81AA4BA6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS19625.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 19625
IP address blocks: 2a06:a005:1530::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:b4:6e:af:e0:eb:38:d7:45:cf:c2:4a:10:eb:d0:2d:81:aa:4b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=AD25DFA4DC96F3F9F8B3174AC74018FBD3681739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:85:7a:02:bb:c8:08:d3:44:04:3b:cb:c8:79:
70:ac:fd:9d:4d:4c:28:98:59:c4:ff:fe:02:ff:93:
25:aa:7d:db:69:50:7d:a8:ab:d7:62:27:6b:03:b1:
de:96:cf:f4:57:d9:de:13:31:d1:2c:e9:d5:ed:28:
be:ab:60:81:dc:f2:44:48:f4:8b:32:2a:d5:52:d8:
7e:6a:88:c2:a5:2f:8f:bb:46:04:44:a2:b4:9f:67:
10:dc:61:09:49:96:72:2c:ea:91:b9:fe:39:b4:ea:
5a:5e:fd:ac:4d:ba:02:d9:9f:06:4a:f7:39:b9:4b:
3b:dd:3d:78:b1:18:4e:c2:72:cd:c4:43:2c:c0:f5:
af:a4:b1:d9:e1:e0:b7:7c:33:6a:36:01:15:cb:cd:
e9:a2:86:ff:58:7d:87:af:64:72:d0:72:d8:e5:47:
4a:0d:c1:54:7d:33:95:81:8e:4e:e7:f9:7e:05:b8:
f6:be:08:9b:bb:c0:fa:90:d5:9a:6e:a1:43:fb:58:
ed:47:4e:46:dc:a1:47:f6:21:10:c7:8c:61:c7:09:
3a:b5:b7:b4:9a:8c:95:70:7c:83:0b:bd:a2:5c:8b:
30:22:71:4c:1b:79:60:1d:ac:c6:50:32:2f:3b:92:
25:c4:bc:46:7f:5d:5d:b7:7a:ef:23:f1:b3:c0:04:
bf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:25:DF:A4:DC:96:F3:F9:F8:B3:17:4A:C7:40:18:FB:D3:68:17:39
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS19625.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1530::/44
Signature Algorithm: sha256WithRSAEncryption
69:27:7a:73:2e:a3:2c:6f:af:db:49:00:81:54:36:13:c2:9c:
42:c3:d0:d0:5f:be:1f:a7:48:27:3f:6d:22:6f:3c:4a:9d:4d:
f3:b2:24:65:74:b0:23:28:fa:6d:7d:ad:56:ce:c6:55:b3:a3:
b3:05:f5:da:e8:35:43:91:6b:8f:3a:5d:38:99:ae:06:4e:b3:
4f:c3:16:09:b3:45:36:13:25:df:a1:14:53:5f:d6:8d:41:77:
58:27:63:4a:4b:e6:92:2c:e0:3c:9d:d9:06:5c:69:6a:fb:cc:
28:7b:29:6e:4e:79:8d:aa:52:8d:9d:d3:6b:a0:46:92:6b:a9:
41:a9:11:b3:96:ce:d6:2b:e9:3a:24:fa:e7:c3:f3:34:60:51:
a9:64:cc:a6:26:2b:09:c4:3e:81:7b:1c:58:93:ea:3b:5a:e1:
24:0f:9f:19:ad:65:f7:c1:1d:75:ef:08:e5:1f:8f:88:ee:a0:
5c:c0:e2:1a:8f:5f:89:16:e4:04:2e:45:10:14:21:d9:c1:05:
ab:b0:80:8d:05:05:9e:68:9f:08:dc:14:41:9a:5c:e8:18:dc:
8b:cc:ab:7a:ee:82:2b:ad:c5:9a:18:20:f8:54:e5:a6:05:cd:
6d:84:6f:f3:ed:ff:7f:a4:f5:36:8a:54:c2:3a:ab:18:e6:fd:
05:52:71:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org