Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
File: AS200192.roa (raw, json)
Hash identifier: 9XsE76ZdG6I+BExDamhYw4KY8lfaV+x5MAJ/fBTrhWQ=
Subject key identifier: 97:67:68:72:40:57:8D:57:FB:A1:D8:DF:68:21:51:D3:F0:01:DC:9A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 53C60F627858DAFBF1EC3EEFD619098D232CED43
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
Signing time: Mon 25 Dec 2023 11:44:21 +0000
ROA not before: Mon 25 Dec 2023 11:39:21 +0000
ROA not after: Mon 23 Dec 2024 11:44:21 +0000
asID: 200192
IP address blocks: 2a06:a005:1274::/48 maxlen: 48
2a06:a005:1680::/44 maxlen: 48
2a06:a005:16b0::/44 maxlen: 48
2a06:a005:1c00::/44 maxlen: 48
2a06:a005:20a0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:c6:0f:62:78:58:da:fb:f1:ec:3e:ef:d6:19:09:8d:23:2c:ed:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 25 11:39:21 2023 GMT
Not After : Dec 23 11:44:21 2024 GMT
Subject: CN=9767687240578D57FBA1D8DF682151D3F001DC9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:83:aa:cf:ec:8a:e0:f9:df:36:19:7d:0b:73:
e8:9d:4a:cd:78:4b:d2:86:87:de:4f:cd:87:12:44:
fe:5e:ef:6e:8d:de:e0:8e:e7:b6:30:e8:38:05:b9:
20:3a:34:af:10:91:fd:6c:e7:46:68:2c:3a:e4:fa:
40:24:48:25:ad:01:d2:fe:56:35:d1:06:0a:0a:fe:
09:cc:b0:34:3d:0f:d9:2a:66:5a:06:4a:5a:91:30:
13:02:0a:fc:07:ed:60:bc:3b:fd:f9:84:11:79:8a:
e7:6b:9e:41:cc:81:63:5c:2a:0f:7f:e6:91:49:22:
ff:27:f2:f0:bc:f9:24:91:39:db:2c:45:b3:a3:07:
e3:37:91:f7:88:22:d8:14:74:25:13:38:7d:05:47:
0c:6f:de:06:60:a4:a4:d2:60:14:4b:48:22:0f:f2:
92:1d:3e:9c:bc:2f:5b:ef:2a:03:48:39:69:03:67:
7c:ef:b3:80:08:d3:5d:1b:02:8e:61:0b:89:e8:4d:
96:97:00:22:8f:7f:2e:f3:d2:04:5b:ba:bc:ed:fb:
3f:57:7e:b4:dc:a0:de:d3:42:1b:62:85:9b:6c:6a:
cb:02:07:da:72:41:18:af:69:66:69:1f:cd:16:42:
ca:bf:1a:e4:ea:b5:f4:ce:25:b1:b5:72:f6:83:b3:
58:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:67:68:72:40:57:8D:57:FB:A1:D8:DF:68:21:51:D3:F0:01:DC:9A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1274::/48
2a06:a005:1680::/44
2a06:a005:16b0::/44
2a06:a005:1c00::/44
2a06:a005:20a0::/44
Signature Algorithm: sha256WithRSAEncryption
cb:2e:e6:8e:8c:2f:e2:8a:3f:52:05:34:76:17:3a:3e:e0:bb:
92:b5:5f:3d:81:32:90:92:95:46:59:7e:ef:4d:fc:7c:3c:78:
8a:b1:17:b8:37:34:a6:07:f7:13:c2:6c:f1:12:b1:3a:14:4f:
17:c7:ae:01:b7:83:b8:fe:d7:c9:d3:a0:a6:ff:62:e7:26:9a:
b4:03:1b:83:fe:77:ed:30:81:38:e5:f0:9b:a4:37:95:07:4b:
0b:66:a9:a7:63:73:74:c2:c2:10:6b:28:61:3e:b4:bd:42:07:
a1:d5:cb:9d:60:20:de:e8:85:56:98:29:09:49:aa:9f:18:91:
f6:8b:a8:45:41:72:b7:84:32:b5:14:7a:2b:bd:24:85:7d:96:
39:94:4e:ab:91:87:83:a3:de:7f:6e:df:bc:01:f0:5a:ee:ad:
1b:70:3f:08:f3:e8:60:bd:1c:0f:c3:38:68:16:dc:ee:9e:a0:
68:e5:86:75:c3:a9:0a:2c:32:6b:7a:39:df:73:dc:ad:e7:65:
4d:6f:4e:3e:25:82:29:b7:6e:c1:90:3a:04:2e:d8:eb:77:d3:
bd:8c:e1:d0:be:cb:07:01:56:a8:b5:a0:0f:a2:21:4a:03:3c:
47:65:63:0e:49:37:f2:30:cc:ca:4a:60:98:2e:17:b5:fd:30:
80:43:b2:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org