Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200153.roa
File: AS200153.roa (raw, json)
Hash identifier: c8xW4aiL5Ax6jkXziq1oBHUJ5e99kInuMU/Xn7/YPGM=
Subject key identifier: EC:2F:17:33:F1:34:37:5F:E5:CD:D9:B1:CA:B9:2A:01:9E:C9:1C:3F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7FE5DFFF4B7741749C3AB7EA5A62FEAE5A1525E0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200153.roa
Signing time: Tue 26 Dec 2023 19:44:21 +0000
ROA not before: Tue 26 Dec 2023 19:39:21 +0000
ROA not after: Tue 24 Dec 2024 19:44:21 +0000
asID: 200153
IP address blocks: 2a06:a005:1873::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e5:df:ff:4b:77:41:74:9c:3a:b7:ea:5a:62:fe:ae:5a:15:25:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 26 19:39:21 2023 GMT
Not After : Dec 24 19:44:21 2024 GMT
Subject: CN=EC2F1733F134375FE5CDD9B1CAB92A019EC91C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:53:a4:47:21:2c:29:62:0a:7f:13:53:3a:
c0:88:34:22:ee:63:69:7c:0f:ad:ea:85:01:51:a9:
94:10:29:fe:e4:03:fa:19:d9:ab:38:cd:f5:7c:4a:
98:e6:21:0a:28:48:16:be:24:22:30:c0:7a:4f:d1:
89:ca:f9:fd:d4:71:21:92:8a:33:25:ce:79:06:1d:
42:15:57:8c:8f:a0:2f:11:80:2b:31:73:50:d7:c6:
40:22:04:79:dc:0c:cd:47:95:16:1f:ee:2d:81:32:
c6:23:71:94:df:66:a3:5b:f5:b9:6c:4a:c0:24:d5:
bc:e1:a1:3f:99:79:66:31:d3:12:53:a9:ce:5e:67:
1b:39:a1:b7:d7:72:5a:55:3b:8f:89:cd:ae:5f:c8:
b3:f6:73:31:d7:6e:ee:ea:e3:ba:cf:0e:84:5b:9d:
8e:ac:e0:35:17:19:24:3c:44:1d:7b:1b:bf:36:a2:
b2:3c:8a:ab:b5:da:38:4a:e4:95:14:aa:85:6d:e2:
25:69:fa:de:46:a3:45:ad:2b:05:71:00:33:17:4a:
57:7b:28:40:ca:30:7e:10:96:09:ef:91:8d:39:dc:
73:b1:48:10:30:98:e8:7e:83:4e:49:4a:eb:39:55:
70:5e:31:c3:13:af:17:77:65:f6:08:83:60:a5:7c:
e2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2F:17:33:F1:34:37:5F:E5:CD:D9:B1:CA:B9:2A:01:9E:C9:1C:3F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200153.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1873::/48
Signature Algorithm: sha256WithRSAEncryption
39:d1:bb:78:02:c9:98:b6:e8:6d:58:da:b7:df:23:76:0d:45:
11:fd:96:17:0a:31:1c:c8:16:69:49:4c:5b:30:68:50:a6:8c:
96:ff:72:27:be:81:64:59:e6:48:cf:56:52:e7:8e:45:e1:af:
4d:d8:59:b1:76:e4:32:7f:fd:b1:05:e2:12:cf:14:ff:2e:f8:
99:3f:73:0b:8b:de:f5:42:ee:f5:32:bf:de:e2:77:96:7b:3e:
f0:3a:c5:83:f1:05:d8:29:c6:03:17:bb:7c:9e:cd:6e:10:11:
68:cc:d5:aa:b5:3a:63:93:17:1e:2e:48:3f:0b:c7:25:9f:49:
9e:49:a5:92:a4:a6:d9:ad:0c:50:94:30:f9:a8:c4:dc:fe:3f:
c9:4d:f0:58:4e:2b:92:25:b6:6f:03:90:e5:42:3e:a9:54:4b:
f9:89:48:0e:ca:44:22:d7:f9:8f:80:c8:91:60:ad:80:13:f3:
c0:ef:e5:f9:18:d2:5a:04:22:46:cd:33:17:3d:cb:33:0c:fc:
f1:ec:08:d0:75:db:65:6f:95:ba:5e:01:58:ea:cc:f7:62:f1:
0d:e0:98:98:95:30:67:63:3f:e0:54:78:60:1e:4f:82:32:8f:
f2:83:d9:a0:dd:e2:40:bb:79:b9:10:15:24:2f:7a:6e:23:4b:
5d:5d:b4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:55 2024 by rpki-client on console-fra.rpki-client.org