Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200158.roa
File: AS200158.roa (raw, json)
Hash identifier: JGsumITjP23dhoCQlW18oj3LYXj4aGDuDUVAr1zITcA=
Subject key identifier: 81:0D:04:77:9A:D8:9B:07:5B:E8:3B:3C:FE:63:4C:E9:14:80:26:21
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5BE1817AB7253F9123926A9AA57504F8185C7156
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200158.roa
Signing time: Fri 29 Dec 2023 08:44:21 +0000
ROA not before: Fri 29 Dec 2023 08:39:21 +0000
ROA not after: Fri 27 Dec 2024 08:44:21 +0000
asID: 200158
IP address blocks: 2a06:a005:1c7d::/48 maxlen: 48
2a06:a005:2be0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:e1:81:7a:b7:25:3f:91:23:92:6a:9a:a5:75:04:f8:18:5c:71:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 29 08:39:21 2023 GMT
Not After : Dec 27 08:44:21 2024 GMT
Subject: CN=810D04779AD89B075BE83B3CFE634CE914802621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:38:3d:fc:9e:a8:c7:b2:90:ac:5e:b7:df:d6:
bf:a8:ad:1b:06:b2:30:21:eb:35:4e:1d:66:4e:6a:
1c:13:96:7a:d7:0d:66:32:b2:1a:30:82:73:9a:da:
65:b0:9b:eb:ae:61:67:7d:61:07:96:c0:b7:46:7d:
ff:da:1e:88:5e:68:b1:de:52:37:58:29:17:d0:21:
20:a9:27:05:d4:f7:04:a3:1e:48:2a:b1:9f:cc:c4:
1f:b9:04:c2:1b:3e:9f:59:1c:21:41:95:7b:45:e1:
bd:82:35:ef:d6:3e:ed:e4:fe:94:35:89:4d:d8:42:
e0:4c:bc:a9:0e:2c:07:23:df:69:97:40:e8:05:4d:
b1:5b:4f:e2:24:db:fb:98:ab:7f:92:5d:7b:70:84:
85:c6:ea:3b:24:73:e4:f4:a2:e8:40:fe:e0:79:00:
b3:3d:9d:d0:3d:c3:68:e3:01:d0:6d:7e:f5:66:5f:
c7:d1:58:a2:4d:dd:6e:4f:bf:81:ee:02:f8:50:4d:
8a:c7:03:0c:a0:f6:2c:d9:f0:c7:57:b9:2b:44:7e:
05:67:4e:43:fb:8a:2c:04:94:57:73:7d:3e:b3:4b:
90:e6:8f:5a:45:43:20:e0:4c:46:e6:07:ec:a8:ab:
b9:38:ae:72:80:b8:19:a8:54:8e:ed:ad:e2:0f:38:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0D:04:77:9A:D8:9B:07:5B:E8:3B:3C:FE:63:4C:E9:14:80:26:21
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200158.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c7d::/48
2a06:a005:2be0::/44
Signature Algorithm: sha256WithRSAEncryption
bc:8d:a4:41:90:45:e9:4f:68:39:03:90:93:a5:06:b4:9a:c8:
65:e0:19:be:d1:84:10:d4:fe:28:a6:bd:b8:21:b2:91:2d:46:
39:f0:8a:cf:99:c0:28:cb:b5:5e:7a:03:54:03:b8:a3:46:37:
e8:52:63:32:2d:1c:48:1c:b6:d1:1e:9a:8d:be:da:f7:91:fe:
20:20:4e:07:03:56:22:55:ae:5c:d9:dd:85:66:80:1e:a4:7c:
6c:47:ed:cd:f6:4b:c0:af:b8:ec:ff:68:ea:57:1f:40:4d:63:
05:18:ba:40:fe:da:c1:9e:01:a1:24:6c:ee:4c:b0:c5:ae:03:
8a:69:f6:f6:49:58:e5:f4:bf:f9:7e:87:7c:b6:0b:e4:e1:c4:
dc:eb:8b:cf:e2:68:ea:28:c6:34:49:25:b8:dc:3d:2c:9e:c3:
1c:46:a5:74:c6:17:2a:03:e4:26:78:99:12:c0:5d:db:de:82:
95:f5:0b:b5:84:0f:eb:52:76:6f:5e:fb:82:d4:f8:95:ed:4c:
34:aa:47:a1:20:ef:97:bc:36:d9:f1:98:ac:86:0a:a2:0d:76:
50:ac:d8:1b:04:3e:7e:b9:6d:1f:90:77:35:7d:13:44:f9:f7:
0f:62:df:d1:e4:0b:bd:a8:1e:67:3d:09:1b:24:29:63:a6:57:
27:97:74:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org