Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200180.roa
File: AS200180.roa (raw, json)
Hash identifier: /T0rfj+p6zTnX7oMKkrcDcLzG1Im40+uZlXddq41VQc=
Subject key identifier: 58:C0:14:5A:9D:7D:0F:E5:4D:71:9E:A9:98:36:FF:1F:4F:61:94:51
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4617D580046F65ADE7E9708CC354FC3E71CA5DDE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200180.roa
Signing time: Wed 27 Dec 2023 09:44:21 +0000
ROA not before: Wed 27 Dec 2023 09:39:21 +0000
ROA not after: Wed 25 Dec 2024 09:44:21 +0000
asID: 200180
IP address blocks: 2a06:a005:1c7a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:17:d5:80:04:6f:65:ad:e7:e9:70:8c:c3:54:fc:3e:71:ca:5d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 27 09:39:21 2023 GMT
Not After : Dec 25 09:44:21 2024 GMT
Subject: CN=58C0145A9D7D0FE54D719EA99836FF1F4F619451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:8c:04:78:3e:ca:82:bf:da:ba:a2:ca:c8:
2c:0a:bc:f2:94:4c:b8:33:03:51:06:5d:9d:d7:e3:
81:e6:e2:1c:8c:e8:df:8c:62:bf:87:06:5b:c3:29:
82:30:e0:61:13:96:80:5a:14:fe:4e:9b:d2:af:8e:
97:44:9a:3e:37:45:68:f1:b0:1a:21:24:7c:78:63:
b0:f7:c8:18:91:22:cf:15:da:47:01:00:f4:64:8c:
6d:d1:1b:8e:e0:09:95:22:b6:79:05:bb:b5:60:ca:
b6:0c:fa:61:cd:b9:50:69:b1:15:63:98:43:22:c7:
0d:2c:45:de:aa:a6:5f:6f:b9:0d:a6:c5:0b:a6:09:
9c:85:b5:4d:e0:dc:9a:e4:6f:ef:28:43:96:9f:2e:
51:0f:3f:6a:54:ac:46:e7:be:89:3c:5c:27:bc:a9:
3f:ef:93:3c:63:bd:e6:1a:aa:b1:20:58:6a:58:99:
81:39:bd:78:76:9f:5d:bd:e3:70:4c:1a:e6:a2:7e:
e8:89:21:a4:38:87:4e:4b:df:6d:80:30:e4:4b:21:
21:81:42:4a:bc:c7:81:e8:4f:6f:76:17:90:59:ed:
ea:90:19:5f:b5:56:e7:77:de:cc:91:f4:5b:92:ab:
4a:3f:ae:10:a0:ba:8d:21:ca:e9:28:92:85:0a:9a:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C0:14:5A:9D:7D:0F:E5:4D:71:9E:A9:98:36:FF:1F:4F:61:94:51
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200180.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c7a::/48
Signature Algorithm: sha256WithRSAEncryption
7a:31:87:bd:1c:a3:40:d4:ed:13:82:87:54:99:25:88:5f:fa:
31:52:46:0b:c6:e6:07:55:2d:ff:cf:ae:dd:7a:b5:d1:23:83:
f3:5e:5f:be:d1:2f:f7:4f:68:9d:1a:f5:f0:ad:45:70:bb:4c:
43:7f:7a:55:1f:00:07:2b:d8:6d:96:f2:a0:e0:e6:7f:2b:8a:
c2:a5:78:a4:19:7d:0f:cd:bb:3a:a5:4e:8e:3f:ec:98:85:59:
e7:46:10:c7:af:d5:9d:0c:73:b1:27:e0:91:d8:da:34:4f:1c:
00:74:38:a6:90:44:cf:76:f1:f8:4d:c4:c1:4f:3c:fa:22:69:
80:e5:e0:5e:a4:fe:ff:b0:aa:ed:e9:a3:6d:c0:16:3f:68:10:
e9:22:1a:17:e2:58:7e:2b:b1:18:e8:2c:eb:34:94:23:f3:66:
eb:e7:09:12:fe:b8:d4:c4:91:4b:bd:b1:b5:d3:b9:9a:c3:2b:
4c:5f:19:a6:94:ab:7d:1d:4f:32:64:06:f4:08:58:a9:40:1a:
2b:24:0c:9e:a2:0c:9f:a9:cf:0b:74:de:fd:f1:4e:78:02:d4:
c7:55:7b:9a:35:51:93:0a:b5:44:09:ac:a1:67:9f:f9:e7:f8:
ab:51:2e:45:cb:63:d0:d7:c0:b5:c6:5e:05:6b:3f:f7:f2:24:
a8:8b:1e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org