Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198408.roa
File: AS198408.roa (raw, json)
Hash identifier: k9q34Yc8samuQWJoJj0czOzXfZg7wjfZM+BL1Pw4h/A=
Subject key identifier: 23:E4:6B:36:32:E5:81:29:72:E9:12:18:84:39:69:4B:5D:BF:E8:1A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 36F4FFF885B2409BFB31C264B7AAF7EE6419BEF4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198408.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 198408
IP address blocks: 2a06:a005:858::/46 maxlen: 48
2a06:a005:1190::/44 maxlen: 48
2a06:a005:26c4::/46 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:f4:ff:f8:85:b2:40:9b:fb:31:c2:64:b7:aa:f7:ee:64:19:be:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=23E46B3632E5812972E912188439694B5DBFE81A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:51:7b:c3:e9:f8:4a:84:77:21:02:04:84:12:
60:a4:31:8d:10:5f:fb:18:23:c0:e2:cc:ca:94:f5:
f6:c6:cf:58:8a:65:50:36:ce:2f:70:18:55:47:6c:
43:50:30:ba:22:87:8b:c8:83:57:ef:11:7b:f8:94:
6d:51:60:54:9f:24:04:6f:44:c0:10:ec:87:61:53:
5e:92:bd:5a:ee:a0:60:7b:a2:be:e6:fe:a2:bb:eb:
10:10:49:92:05:8a:db:3b:12:85:00:e3:4e:0f:7e:
aa:3d:fa:59:ef:13:28:40:7e:66:ea:59:60:4b:05:
49:e5:97:ee:35:3a:91:4e:a6:f6:b9:38:f4:a0:d0:
c6:b4:2c:94:4f:70:13:07:30:b5:cb:28:f4:11:37:
69:4b:12:24:5f:cb:0a:cb:f7:73:89:80:8c:63:7a:
f0:fa:d2:5e:24:70:d7:a7:d1:d9:cb:06:87:22:a9:
d3:3d:46:ad:35:06:14:0c:76:02:9d:48:db:3f:4c:
70:e2:5f:26:bb:ff:ad:bb:6c:ca:9f:7c:81:c5:01:
10:7b:a1:43:90:6a:9d:96:38:9a:8b:2d:20:23:f1:
6f:06:34:9f:94:19:cf:58:37:21:82:3c:fb:86:9e:
1e:57:45:a4:9f:39:81:c3:7f:4d:10:c3:af:07:a7:
37:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E4:6B:36:32:E5:81:29:72:E9:12:18:84:39:69:4B:5D:BF:E8:1A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198408.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:858::/46
2a06:a005:1190::/44
2a06:a005:26c4::/46
Signature Algorithm: sha256WithRSAEncryption
44:68:65:e2:fd:34:f5:5d:01:e0:4e:bd:38:72:55:70:28:62:
d3:ed:f6:0b:53:e1:3d:91:9c:db:61:95:17:11:fe:8d:1e:62:
4b:42:79:44:47:35:f8:7e:b9:bc:63:b7:7c:d8:e3:24:29:98:
e4:63:4d:1d:9e:4e:a2:45:b4:1e:9f:aa:30:9e:29:e5:a0:46:
75:dc:a8:58:40:0b:e6:c0:ff:b1:30:dd:c4:ed:7a:0a:41:56:
1f:d0:fc:84:5e:1f:42:08:b8:0c:1e:d7:31:b0:f0:1d:49:42:
c8:26:21:cf:7e:5b:5e:d2:f6:42:28:ce:08:42:0f:d5:63:d9:
eb:84:27:bb:fd:ba:f5:bc:24:30:94:31:22:76:51:46:f4:76:
8b:8b:48:30:de:f5:8a:00:55:3f:cf:c2:5b:50:fd:89:56:fb:
a6:85:4a:45:39:cc:33:24:29:e4:05:48:8d:fb:bb:17:4c:5d:
35:b1:4a:9e:5f:bf:f4:da:49:9e:ed:2a:d2:63:8f:fe:68:59:
0f:9e:c5:88:c4:23:21:96:29:5c:ff:d1:a0:08:0b:ba:aa:03:
2c:99:b9:80:a8:3c:d4:3f:22:ea:c2:c2:bd:23:07:f5:8f:98:
46:2d:76:9c:f6:85:d6:f2:7a:12:3b:1f:4f:98:7e:c5:18:3e:
87:a9:48:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:09 2024 by rpki-client on console-ams.rpki-client.org