Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200169.roa
File: AS200169.roa (raw, json)
Hash identifier: 6z9Iv65Kpsj2gg9HX2X8L53LckDgE8UPp6m/uR4L6tw=
Subject key identifier: 81:2D:65:69:FD:28:53:0A:89:36:8B:A6:0C:5C:9D:83:AC:86:C0:D1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 04456C0237906BEEE97B36319A49DD6B20865A87
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200169.roa
Signing time: Sat 30 Dec 2023 03:44:21 +0000
ROA not before: Sat 30 Dec 2023 03:39:21 +0000
ROA not after: Sat 28 Dec 2024 03:44:21 +0000
asID: 200169
IP address blocks: 2a06:a005:2c90::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:45:6c:02:37:90:6b:ee:e9:7b:36:31:9a:49:dd:6b:20:86:5a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 30 03:39:21 2023 GMT
Not After : Dec 28 03:44:21 2024 GMT
Subject: CN=812D6569FD28530A89368BA60C5C9D83AC86C0D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f0:6d:fc:20:bf:e0:c6:51:07:ee:cf:1f:99:
c3:f2:13:fe:fe:22:1f:ea:d2:06:2a:ce:ec:f2:fe:
ed:9d:a8:ce:00:74:df:d7:ba:90:88:77:40:c4:26:
e6:e2:bb:3b:6a:e4:d7:56:a7:07:26:89:75:d3:77:
41:9f:58:27:ce:ce:ca:0a:c7:7e:fe:4c:e9:62:f6:
2a:8e:cc:2f:f7:12:61:bd:b1:98:f9:6a:89:46:06:
3c:4b:fb:84:9b:df:4d:90:d7:b1:f1:ff:32:dd:30:
35:b1:f1:ef:2a:9f:aa:bb:eb:0e:c4:25:30:cf:8c:
9c:a6:1d:a9:7f:f2:7d:ec:4f:68:3e:01:18:88:41:
e3:5d:40:16:42:c4:82:50:8a:a8:4b:5d:e2:51:ed:
e3:5f:a0:71:30:0b:e5:4f:2c:d6:c7:1a:65:3f:55:
2d:1f:e9:76:40:e3:3a:65:44:59:1e:fc:24:ac:94:
1e:f3:a0:d0:9a:e9:b5:8b:f9:d9:5b:e8:81:67:80:
76:76:e1:db:46:15:d8:c4:ae:90:73:09:fc:ea:18:
a5:bf:d0:88:df:ce:ac:c7:c9:b7:dc:aa:54:d7:38:
7e:c5:d7:6d:ee:b9:46:31:d9:db:9e:9b:ee:1e:31:
c4:d1:6c:b4:bc:78:8b:43:04:c5:d7:39:52:fb:49:
2d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2D:65:69:FD:28:53:0A:89:36:8B:A6:0C:5C:9D:83:AC:86:C0:D1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200169.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2c90::/44
Signature Algorithm: sha256WithRSAEncryption
cc:b6:91:ff:38:7f:01:99:e0:59:fb:1c:a5:2c:a0:a3:00:e6:
46:48:9b:2c:9f:25:6e:94:87:d3:8d:11:7e:e2:32:61:43:8d:
ae:b2:d9:fc:8b:34:1a:47:9f:a3:b2:58:66:cd:95:7f:5c:34:
c0:b2:18:68:99:21:53:07:92:c5:1f:d8:6a:b0:86:5a:76:6c:
9c:da:02:e3:9b:f1:7e:f7:83:52:e2:a0:35:4c:ad:9a:71:4c:
11:ca:eb:8e:65:5d:f3:6d:88:01:2d:78:0c:5e:8e:7e:74:c9:
6e:b3:ce:b7:da:c6:ef:37:3d:bf:75:15:90:42:87:1f:58:07:
c6:7d:41:c3:e9:70:dd:2d:92:47:69:d6:93:f6:29:98:02:24:
aa:ae:71:9f:6a:39:d7:14:1e:1c:6d:e5:b9:f5:df:45:2f:10:
dd:a5:06:5a:46:a6:6a:97:81:11:0e:43:b3:11:74:4d:55:46:
47:3b:94:7c:7c:68:b2:1c:af:c1:e5:a6:c2:d9:6b:83:99:f7:
eb:ce:28:79:4b:4f:f0:c7:c9:ff:ad:e7:f7:5e:ec:24:5d:86:
00:3a:1c:eb:c8:89:b4:6a:e7:30:21:1c:f6:ba:f3:46:98:51:
64:e6:11:ff:78:8a:5e:5a:64:d0:bf:1c:57:15:ec:ff:74:7f:
d9:ee:c6:b3
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUBEVsAjeQa+7pezYxmkndayCGWocwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMzAwMzM5MjFaFw0yNDEyMjgwMzQ0MjFaMDMxMTAvBgNV
BAMTKDgxMkQ2NTY5RkQyODUzMEE4OTM2OEJBNjBDNUM5RDgzQUM4NkMwRDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe8G38IL/gxlEH7s8fmcPyE/7+
Ih/q0gYqzuzy/u2dqM4AdN/XupCId0DEJubiuztq5NdWpwcmiXXTd0GfWCfOzsoK
x37+TOli9iqOzC/3EmG9sZj5aolGBjxL+4Sb302Q17Hx/zLdMDWx8e8qn6q76w7E
JTDPjJymHal/8n3sT2g+ARiIQeNdQBZCxIJQiqhLXeJR7eNfoHEwC+VPLNbHGmU/
VS0f6XZA4zplRFke/CSslB7zoNCa6bWL+dlb6IFngHZ24dtGFdjErpBzCfzqGKW/
0IjfzqzHybfcqlTXOH7F123uuUYx2duem+4eMcTRbLS8eItDBMXXOVL7SS1NAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUgS1laf0oUwqJNoumDFydg6yGwNEwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAwMTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBSyQMA0GCSqGSIb3DQEBCwUAA4IBAQDMtpH/
OH8BmeBZ+xylLKCjAOZGSJssnyVulIfTjRF+4jJhQ42ustn8izQaR5+jslhmzZV/
XDTAshhomSFTB5LFH9hqsIZadmyc2gLjm/F+94NS4qA1TK2acUwRyuuOZV3zbYgB
LXgMXo5+dMlus8632sbvNz2/dRWQQocfWAfGfUHD6XDdLZJHadaT9imYAiSqrnGf
ajnXFB4cbeW59d9FLxDdpQZaRqZql4ERDkOzEXRNVUZHO5R8fGiyHK/B5abC2WuD
mffrzih5S0/wx8n/ref3XuwkXYYAOhzryIm0aucwIRz2uvNGmFFk5hH/eIpeWmTQ
vxxXFez/dH/Z7saz
-----END CERTIFICATE-----
Generated at Fri May 3 20:12:30 2024 by rpki-client on console-ams.rpki-client.org