Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199840.roa
File: AS199840.roa (raw, json)
Hash identifier: uWPyaADi5JtDgbtSP/uAhkdLoIuecqxN6Yg2Edoh2e4=
Subject key identifier: 4F:43:E4:5D:6B:B5:8B:6C:B3:53:00:A0:A5:00:D3:85:92:EE:AE:93
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4B87173137F5A599133EF10D34C47AA183210AD8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199840.roa
Signing time: Tue 20 Feb 2024 01:44:24 +0000
ROA not before: Tue 20 Feb 2024 01:39:24 +0000
ROA not after: Tue 18 Feb 2025 01:44:24 +0000
asID: 199840
IP address blocks: 2a06:a005:4d1::/48 maxlen: 48
2a06:a005:d20::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:87:17:31:37:f5:a5:99:13:3e:f1:0d:34:c4:7a:a1:83:21:0a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 20 01:39:24 2024 GMT
Not After : Feb 18 01:44:24 2025 GMT
Subject: CN=4F43E45D6BB58B6CB35300A0A500D38592EEAE93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:df:ed:14:8a:93:a0:0b:48:8a:3a:11:ff:21:
30:7d:c8:e5:6e:bb:15:a7:4f:7b:c0:bb:db:31:57:
3e:21:42:03:72:5e:df:3b:4b:40:33:34:de:dc:36:
19:e7:aa:2b:ab:9c:a6:3e:4b:45:bd:c9:da:a8:2a:
47:ba:d1:f7:b4:d8:a2:e8:79:9e:81:bb:f7:ca:4a:
dd:97:5d:8c:f4:5c:43:99:3f:33:6b:aa:87:0e:b7:
2e:91:1a:9a:0a:dd:00:69:c2:cc:83:96:69:65:93:
2b:06:dc:21:5c:4a:e3:4b:16:b0:8d:2d:a1:c9:02:
c6:23:cb:b0:c1:93:ac:41:09:b4:22:33:32:d6:7d:
ca:0a:48:eb:04:8c:c0:db:26:d4:89:9a:de:fc:10:
a0:17:63:bd:6f:e4:ee:05:b9:7e:c3:f7:de:7b:ea:
ec:92:f4:5f:61:d2:4d:ef:f2:a5:a0:15:5c:c7:2d:
8e:a5:84:b0:d6:f1:84:69:2c:4d:ae:d7:65:ca:b4:
75:75:1a:c7:c8:1e:d1:c9:5c:29:15:51:00:f9:16:
07:2c:e5:97:c4:d7:70:a4:f0:ac:73:5c:3f:a2:3d:
ce:15:f5:75:4f:5d:6c:9d:be:aa:db:24:5b:e1:bc:
09:8a:f7:57:23:f3:f1:4d:9a:62:cd:00:99:86:f8:
ae:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:43:E4:5D:6B:B5:8B:6C:B3:53:00:A0:A5:00:D3:85:92:EE:AE:93
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199840.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4d1::/48
2a06:a005:d20::/48
Signature Algorithm: sha256WithRSAEncryption
3a:d9:01:52:af:bc:9a:52:c4:8d:96:4c:f5:6f:18:4c:dc:10:
65:da:f9:dc:35:4b:b2:24:05:8d:2e:53:d2:89:82:50:45:81:
6a:21:46:ce:09:ee:4e:ab:0f:39:9d:12:0c:0c:7d:94:25:32:
7b:ae:d7:3d:01:d9:d5:8e:c2:99:f6:ba:3d:9e:83:55:9c:51:
16:1f:be:1b:03:0c:88:b9:76:b2:c1:2d:37:68:8b:87:c3:06:
24:69:47:ae:de:53:0d:20:fb:f7:14:c6:aa:61:51:a0:59:c1:
57:73:fe:e0:e7:74:c2:1c:76:d4:8c:92:d4:c3:db:49:04:d3:
f4:25:eb:47:c8:0b:c5:2b:be:b5:72:12:3f:98:0d:d5:4b:e2:
16:a9:7e:88:ba:de:ce:0a:9c:91:88:b7:fd:38:27:23:54:9b:
33:f1:61:1c:fa:12:32:ae:c9:c0:47:78:9f:d6:2d:1e:1b:4c:
fa:4f:54:ad:80:26:bb:e2:f6:72:26:4f:09:9e:d3:f8:98:85:
04:33:b4:8a:83:f4:72:98:5a:1d:44:b5:76:3c:68:70:a6:0a:
e6:5d:31:28:ae:5c:66:4d:28:44:da:39:b1:17:a4:ea:ef:46:
d0:4c:cb:9c:1c:de:f8:be:d7:75:5e:f1:d0:36:ab:01:5f:87:
15:64:bb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org