Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199741.roa
File: AS199741.roa (raw, json)
Hash identifier: rOhhyMP+lt2I8nk4CbAwhU36Euavze2RFwL+5fCEeP0=
Subject key identifier: AB:08:33:58:91:DE:F5:A1:87:BA:6B:7D:94:53:D2:D6:04:52:60:A4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7E5445DE1EB7170AAF504841B037BC75B6FEDD20
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199741.roa
Signing time: Mon 29 Jan 2024 12:44:24 +0000
ROA not before: Mon 29 Jan 2024 12:39:24 +0000
ROA not after: Mon 27 Jan 2025 12:44:24 +0000
asID: 199741
IP address blocks: 2a06:a005:15dc::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:54:45:de:1e:b7:17:0a:af:50:48:41:b0:37:bc:75:b6:fe:dd:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 29 12:39:24 2024 GMT
Not After : Jan 27 12:44:24 2025 GMT
Subject: CN=AB08335891DEF5A187BA6B7D9453D2D6045260A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:19:af:46:f0:cc:ae:9d:4c:83:91:77:6a:04:
91:f4:a1:40:87:f2:04:9c:d1:61:fb:ed:b3:9e:de:
c2:3f:88:e1:5d:41:fc:1f:e7:a8:15:a4:73:d2:99:
0c:dd:5e:c9:40:ea:89:24:c4:0b:65:5d:91:fa:43:
f9:04:18:44:9a:ca:73:a5:5c:ed:a6:41:0e:34:16:
af:6b:d4:ef:9e:77:b8:85:ab:87:6a:34:ef:b6:c6:
21:ba:1b:68:18:80:9a:82:a1:89:a1:8a:49:68:1a:
35:ba:b7:c3:af:8c:cf:87:82:23:81:ed:e5:1f:e5:
7b:75:1e:01:47:67:8c:54:24:e0:a2:ac:6d:6b:08:
a0:f7:6c:0e:2c:0a:ca:23:3e:1e:ce:49:a0:b6:99:
01:a1:f7:81:fc:47:2f:b8:8d:51:de:de:ce:88:59:
2c:2a:6e:73:9a:e7:45:21:d3:d1:5c:4b:f6:2c:d3:
2d:89:4d:ea:5e:4f:66:ed:b9:1d:96:8e:dc:a9:41:
41:f5:42:33:02:64:f6:47:2d:da:48:bd:2b:2e:f1:
4e:cc:5e:4a:d8:38:8e:4b:dc:5a:65:ee:1a:7a:08:
6d:49:e3:76:3d:28:37:99:b3:43:3e:0e:02:0c:5a:
1d:97:44:79:54:1a:d7:97:da:f0:52:2b:36:51:d3:
b3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:08:33:58:91:DE:F5:A1:87:BA:6B:7D:94:53:D2:D6:04:52:60:A4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199741.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15dc::/48
Signature Algorithm: sha256WithRSAEncryption
39:e8:8b:68:75:53:13:b9:5b:6f:84:f9:02:dc:c5:37:7a:db:
b1:99:aa:0a:95:74:26:cb:4e:6d:00:e3:66:6e:c3:bc:e9:ba:
db:f1:b8:4c:22:91:b6:14:9e:72:66:a9:77:f5:b2:15:2f:7b:
1c:48:f9:42:45:1a:ea:32:d4:5e:90:d7:97:82:7f:b6:8d:43:
7e:47:9b:f3:7d:71:8a:77:1a:78:b8:1b:df:c3:a8:00:4c:42:
9a:95:a2:90:62:a7:33:36:ff:fb:e8:5f:1f:27:a9:49:1c:a5:
e6:db:91:58:c1:75:56:f3:f8:c7:3e:48:d2:26:0c:45:79:77:
3c:20:8e:0c:5b:4a:06:02:ad:ad:1e:e6:8d:b6:f3:fc:16:78:
45:67:89:77:82:4b:f3:4e:fb:3d:91:48:ca:83:aa:50:d6:1f:
e4:d4:47:2e:55:f1:2a:31:51:23:8a:15:da:b9:30:3b:a8:d7:
11:01:3b:70:1b:93:03:6d:08:01:25:74:dc:48:59:ae:36:52:
75:28:f2:3b:f4:d8:49:f5:1a:de:46:87:07:81:5f:df:fc:c6:
b9:d4:f8:aa:78:d4:90:b0:55:04:71:8a:21:2e:97:7b:5e:d9:
05:06:1f:13:78:2a:2f:96:0d:93:c5:bd:c0:e3:54:a9:74:4e:
e6:4d:68:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org