Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200227.roa
File: AS200227.roa (raw, json)
Hash identifier: 6Oehzc18ey/es0gQVEDXvWLYnzxfE9boSF0m6BC7LnY=
Subject key identifier: 44:EA:B0:33:1B:A5:A0:6B:4C:D9:59:4D:D0:22:17:4B:BE:18:FA:7F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3D0C25832625B49B561D2829BDF3D3F1EC5B8AB2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200227.roa
Signing time: Sun 03 Mar 2024 05:44:24 +0000
ROA not before: Sun 03 Mar 2024 05:39:24 +0000
ROA not after: Sun 02 Mar 2025 05:44:24 +0000
asID: 200227
IP address blocks: 2a06:a005:5a5::/48 maxlen: 48
2a06:a005:b64::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:0c:25:83:26:25:b4:9b:56:1d:28:29:bd:f3:d3:f1:ec:5b:8a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Mar 3 05:39:24 2024 GMT
Not After : Mar 2 05:44:24 2025 GMT
Subject: CN=44EAB0331BA5A06B4CD9594DD022174BBE18FA7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:57:f8:cf:05:3a:c6:a7:f9:1f:5d:79:6b:39:
1c:90:f4:be:c0:e2:d0:84:1f:a8:3a:e4:35:3a:b2:
0e:01:80:0d:0a:27:85:18:33:db:65:8f:ed:b9:f8:
c3:ff:1f:ed:61:cf:e4:dc:5a:3e:86:30:8c:b6:4a:
b5:fd:b5:c3:7e:23:84:d5:48:55:a7:c1:7f:72:f8:
02:21:12:d8:6a:3e:fb:02:e5:3f:64:d8:5a:fe:1a:
e0:4a:0c:51:34:4f:0d:ae:c8:81:51:a5:39:17:47:
21:fc:84:c4:4b:4e:05:4c:e2:da:84:32:6e:28:bd:
6c:56:48:8b:36:a4:8d:7b:38:9d:c4:a4:1d:77:94:
db:12:0d:6b:f0:94:27:4a:ee:4b:c7:ae:70:a3:6c:
05:44:e8:bb:c8:eb:3b:18:63:84:c0:83:63:81:2b:
ef:df:ac:15:00:63:54:c2:39:e8:fe:62:ff:d0:cf:
8b:76:57:4a:e8:e5:43:8c:86:0f:6f:1e:93:5c:13:
3d:e9:00:fe:c5:3f:4a:ad:e1:30:f0:e7:87:57:f1:
4f:2f:b1:86:1f:ee:5b:d0:02:58:f7:33:68:5b:55:
25:02:0d:be:41:81:5c:13:cf:1a:83:ed:77:84:c0:
31:7f:76:d3:3e:f2:d4:0a:0c:4f:29:64:eb:71:8e:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:EA:B0:33:1B:A5:A0:6B:4C:D9:59:4D:D0:22:17:4B:BE:18:FA:7F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200227.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5a5::/48
2a06:a005:b64::/48
Signature Algorithm: sha256WithRSAEncryption
07:7d:cc:f4:2e:ab:33:9e:16:f2:47:b7:91:ef:c5:56:21:ed:
c9:f7:f6:96:e1:57:e0:46:e6:f2:84:f2:2a:6b:78:27:7e:bc:
0e:68:0a:c0:b5:16:a6:35:1a:c7:eb:a2:fb:bf:11:9b:3e:b5:
38:9b:6c:b2:68:5f:dc:c8:d9:b2:51:1d:55:a6:09:58:13:2a:
c3:57:6c:e1:ca:44:2d:ff:6e:40:5b:1a:c2:42:08:e9:d7:93:
98:de:5b:46:b8:6e:9e:74:e7:e6:4b:00:3d:19:83:ca:a7:f6:
a5:b0:d0:d0:e0:e3:f6:be:94:ee:b0:b1:0c:d4:7d:73:0f:20:
72:96:13:76:cf:5e:68:1b:74:79:95:98:7a:45:5e:d8:bf:fd:
47:bd:67:46:f5:18:53:9f:b1:0f:f5:7c:f4:11:b6:55:58:cf:
8c:19:37:6b:07:9c:ea:ad:b1:59:5b:73:db:cf:8a:92:52:0b:
65:4d:da:b4:4e:30:96:46:95:bf:c0:3f:92:18:9f:e9:d4:49:
50:f3:37:11:01:d1:1d:35:f5:5f:67:79:30:2b:be:35:e2:3c:
2b:62:47:0e:f3:aa:c4:ba:ad:ff:01:cb:c3:a6:57:45:59:28:
4c:1c:7d:db:c2:28:8e:fd:18:97:8d:e4:6e:63:25:85:99:f7:
96:e7:5e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org