Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199950.roa
File: AS199950.roa (raw, json)
Hash identifier: YNBWxY+Eeg/90E7LHsJbdECCI8cghJlS2SoFZ0m498I=
Subject key identifier: 94:F8:38:90:5B:3E:18:04:64:B7:FC:2C:B9:A8:72:AE:F1:12:2A:89
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 29DA86BCB76E4B7FE20FE787A0EACFC593A6787E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199950.roa
Signing time: Sat 13 Jan 2024 08:44:21 +0000
ROA not before: Sat 13 Jan 2024 08:39:21 +0000
ROA not after: Sat 11 Jan 2025 08:44:21 +0000
asID: 199950
IP address blocks: 2a06:a005:5e1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:da:86:bc:b7:6e:4b:7f:e2:0f:e7:87:a0:ea:cf:c5:93:a6:78:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 13 08:39:21 2024 GMT
Not After : Jan 11 08:44:21 2025 GMT
Subject: CN=94F838905B3E180464B7FC2CB9A872AEF1122A89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c4:21:b0:3e:e4:c5:5a:a7:4f:dd:fd:26:bc:
84:bf:ee:c8:ca:6f:00:82:c3:9a:4b:db:f7:b9:9a:
09:9b:a8:f5:7a:44:c4:c1:d3:e5:1c:83:8e:bd:dd:
cf:34:e0:c2:01:ac:cd:ef:b5:cb:b2:c0:d3:61:25:
1a:e5:78:7d:41:a8:4b:8f:18:f1:19:88:f7:1f:bf:
e0:4c:5c:0f:27:8c:7a:7e:91:f0:98:b4:31:10:71:
18:9a:05:8a:b1:b4:d3:7c:9d:3e:5d:bc:90:88:91:
27:5b:ad:59:f5:b8:c3:6b:b0:65:83:37:0b:78:6e:
b0:1b:1a:ab:d7:72:8a:0f:32:ea:5d:60:98:8e:d1:
06:bb:e1:b9:19:ee:f3:dd:ac:5f:cb:17:31:bc:e3:
ee:4d:eb:10:a4:5b:71:52:14:14:78:c4:d3:0b:48:
46:02:ae:74:14:b9:43:ec:62:cb:b2:ca:a1:80:9c:
9d:ec:10:58:2d:cf:db:1c:6f:41:f5:26:33:c5:69:
b7:94:9e:f6:9a:00:4f:00:a0:0a:c3:85:9c:85:03:
e2:94:7c:fc:68:d0:0c:92:7c:2e:68:1f:f4:85:93:
f2:ab:63:b3:fe:0b:97:63:8a:3c:b3:d4:55:08:3b:
8b:42:b4:49:48:bb:96:28:0f:3f:c3:0c:6a:38:23:
35:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F8:38:90:5B:3E:18:04:64:B7:FC:2C:B9:A8:72:AE:F1:12:2A:89
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199950.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e1::/48
Signature Algorithm: sha256WithRSAEncryption
79:43:f5:21:95:d4:5d:51:b4:b7:52:17:d4:72:96:14:25:6e:
84:c2:45:94:ad:9b:9e:81:c9:3f:b2:79:eb:bc:14:f8:98:ee:
37:e2:2b:a5:66:6f:54:7f:95:3b:6f:bd:47:2c:f8:43:77:04:
02:3e:32:68:90:fe:9c:72:df:1a:c9:78:58:10:b9:19:25:e3:
ea:cb:3e:dd:5e:ab:b7:ac:e2:90:dd:1d:f4:2d:46:ba:1e:3f:
af:cd:f3:e8:00:4f:4b:ed:04:e4:70:a0:65:b2:1a:35:16:50:
b4:5c:4c:a9:bd:77:e1:fa:fe:b0:c2:46:cd:b4:2b:29:fe:4b:
48:69:44:cd:1e:a5:30:de:63:60:d2:67:b0:ab:d5:7a:5b:c9:
de:df:a7:1a:97:9d:19:47:73:fe:d8:f2:6b:da:8d:bf:7a:e0:
b6:e3:98:f7:5f:5a:cf:ec:b6:b7:6d:3f:2a:91:1a:79:c4:a5:
10:9c:b9:c1:01:11:a1:db:7e:fb:20:1a:07:c2:70:d5:50:04:
0b:d1:59:73:87:e3:bf:ed:bf:5f:21:0d:1c:e7:0c:67:2f:7c:
1b:23:89:5d:33:54:bb:55:69:df:fd:33:68:e1:12:3b:3d:78:
33:d8:1a:ec:6a:ea:1b:38:6e:6e:fe:00:5b:0e:24:34:94:b6:
b2:37:62:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org