Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199676.roa
File: AS199676.roa (raw, json)
Hash identifier: Rc5KMbsBp9noPQ6wpa7rTKdeZzUZOFJC47Q6qutEum4=
Subject key identifier: C2:C7:62:EA:B8:6C:C5:A0:CA:A2:ED:D3:D3:A8:FA:D3:50:48:7F:8B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1A32FC5060CBB24532EC5903A0EFB1A739008FB1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199676.roa
Signing time: Thu 01 Feb 2024 11:44:24 +0000
ROA not before: Thu 01 Feb 2024 11:39:24 +0000
ROA not after: Thu 30 Jan 2025 11:44:24 +0000
asID: 199676
IP address blocks: 2a06:a005:1877::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:32:fc:50:60:cb:b2:45:32:ec:59:03:a0:ef:b1:a7:39:00:8f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 1 11:39:24 2024 GMT
Not After : Jan 30 11:44:24 2025 GMT
Subject: CN=C2C762EAB86CC5A0CAA2EDD3D3A8FAD350487F8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:22:c8:f1:41:82:81:b4:f8:70:09:0f:b9:4d:
29:38:52:12:ee:99:c2:d7:34:52:e7:73:3d:ad:c2:
b9:15:3f:7d:d9:e2:e3:7c:2b:d4:72:a2:df:3d:3a:
bb:4b:91:13:8a:8f:24:a7:96:ab:5f:aa:b1:26:23:
b8:03:09:de:cb:f9:70:69:54:2c:07:70:1b:f7:49:
19:f8:eb:ed:56:2c:ad:fd:42:db:68:77:5d:ba:7c:
be:37:41:88:fb:86:25:49:f5:13:3b:46:0c:12:34:
f9:d3:78:d1:97:d1:48:db:f5:29:89:aa:06:69:79:
3d:78:2a:77:fd:db:85:d6:51:04:eb:71:f0:13:6e:
2e:2e:1c:18:7c:88:de:e2:86:b6:2a:46:c6:32:7d:
9d:bf:69:e4:b7:36:46:a7:18:97:d9:b4:57:db:32:
78:71:ba:4e:2f:b9:db:01:0b:96:73:03:86:b3:f6:
59:f4:19:67:40:90:dc:a6:a7:bd:52:e8:81:d8:75:
c3:af:d4:4d:e4:44:0c:43:88:9b:25:d2:29:f9:b7:
18:72:5b:29:b5:70:79:be:61:04:d6:52:9e:e1:64:
93:05:44:f9:1f:9e:c7:f8:df:ac:e0:27:4d:c7:eb:
02:21:cc:a0:48:5a:d5:01:27:c1:4d:cc:8d:71:a9:
f5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C7:62:EA:B8:6C:C5:A0:CA:A2:ED:D3:D3:A8:FA:D3:50:48:7F:8B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199676.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1877::/48
Signature Algorithm: sha256WithRSAEncryption
6a:2e:ec:ce:4f:d9:eb:5c:20:d6:d9:72:9d:1e:b5:dd:43:52:
04:4e:3e:93:a1:d3:e0:54:1f:ef:33:09:b4:40:94:5c:18:3e:
63:1c:97:a1:be:d8:1c:04:3e:4c:1b:92:aa:45:7c:d5:9d:df:
b8:f3:0b:ce:88:8b:06:1f:52:8e:d2:21:54:4e:1e:f0:c6:ef:
e5:cc:1e:cd:76:64:ff:16:8c:61:86:6b:2f:83:db:47:77:9b:
be:69:43:ae:57:13:a6:be:c8:94:11:07:ae:c0:22:f1:61:c1:
9e:ca:1c:6a:58:ff:c0:1b:72:3f:63:f9:09:3b:c2:a8:ce:d1:
23:3c:e8:a3:e3:7c:48:33:ca:00:7a:19:b3:dd:e7:f5:ce:c5:
14:81:35:8d:30:38:e2:8e:e5:08:b8:00:9e:78:bd:d5:24:46:
32:0e:f4:26:3f:93:0c:54:4b:08:9d:ec:59:38:a2:15:8b:30:
ad:d3:70:0d:ea:d7:05:73:dc:a8:97:55:5e:29:99:d5:95:dd:
06:60:b0:31:be:12:bf:6c:4a:4c:64:a3:36:8f:6f:cc:1d:cf:
9d:c1:b5:91:e4:ed:dd:76:44:68:c4:80:a2:f8:f2:ff:71:8d:
21:a4:fd:d8:c4:9a:1b:36:b5:ec:34:72:cd:69:e9:55:d8:6c:
3c:41:34:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:11 2024 by rpki-client on console-fra.rpki-client.org