Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
File: AS200230.roa (raw, json)
Hash identifier: lD9p61GdfIoG0q1Sc3ZYili0fzE3M2nW5ooF8U4Xp4Y=
Subject key identifier: 84:B8:A5:4C:02:00:4F:D1:20:7C:05:2E:F3:E9:CB:8C:C1:73:14:98
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 09C4D7F5524AF0E5620BF692DF417B7BC99D5948
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
Signing time: Tue 12 Dec 2023 19:44:21 +0000
ROA not before: Tue 12 Dec 2023 19:39:21 +0000
ROA not after: Tue 10 Dec 2024 19:44:21 +0000
asID: 200230
IP address blocks: 2a06:a005:2ae0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:c4:d7:f5:52:4a:f0:e5:62:0b:f6:92:df:41:7b:7b:c9:9d:59:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 12 19:39:21 2023 GMT
Not After : Dec 10 19:44:21 2024 GMT
Subject: CN=84B8A54C02004FD1207C052EF3E9CB8CC1731498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:12:d0:6b:60:1e:c4:23:10:30:0b:7b:bd:a2:
25:b6:9d:32:2e:0a:eb:9a:ff:31:ca:c3:44:ba:d5:
0a:ae:a6:86:d6:e0:c0:ba:8d:9f:5d:d0:1f:41:b6:
00:e6:30:f2:a1:01:60:2c:20:46:79:d9:89:16:1c:
a7:98:3a:76:2c:5f:dc:fa:d6:ad:87:bb:c9:1a:d0:
81:d4:cd:15:d1:3f:0e:31:3a:c2:9b:1e:ba:fb:e9:
b9:dc:ff:5c:f6:f9:88:28:d5:aa:e4:f5:cc:cc:19:
8e:69:fb:03:c8:6d:5a:c1:bd:61:79:43:e3:51:4d:
b5:01:5f:36:46:42:6e:89:80:5f:ba:21:42:2f:82:
e8:eb:89:1a:c1:0b:cd:2e:64:f1:e8:92:da:c2:23:
a1:d6:05:98:5c:af:9e:ed:8e:5f:e1:1e:4a:40:9c:
46:35:23:9b:7d:30:f7:59:90:ef:21:d8:d1:a8:cf:
db:0e:6e:bb:d5:76:c9:f3:52:14:81:1b:1b:33:5d:
d8:71:81:14:e0:95:c7:eb:64:3f:f3:43:7c:bc:d5:
8d:c0:c1:8d:f0:6c:fc:d4:00:64:81:b4:4e:e7:01:
14:0f:8e:c8:47:d4:fe:b4:2e:73:2f:60:96:78:a5:
47:7a:7f:d1:83:59:37:81:7e:1e:13:47:7c:07:73:
02:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B8:A5:4C:02:00:4F:D1:20:7C:05:2E:F3:E9:CB:8C:C1:73:14:98
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2ae0::/44
Signature Algorithm: sha256WithRSAEncryption
6e:04:f2:7d:92:4c:58:eb:66:19:dd:9f:ff:42:41:f6:8b:1b:
ce:8b:6a:38:dc:da:d3:84:81:44:04:91:8c:cb:d7:a8:59:0c:
2f:c0:ce:3e:ba:76:c3:d6:09:83:ca:41:0d:ee:22:6e:a9:e1:
6f:8f:80:cc:2e:69:42:db:e2:b9:26:5b:89:70:fc:0c:a3:c1:
5b:0c:aa:b0:bf:46:04:7a:df:ce:23:eb:da:ff:10:16:de:c8:
96:3d:9a:2d:0a:6f:6f:13:5a:3b:e8:d5:87:c1:c7:4f:3c:57:
4c:94:a3:e7:36:ef:33:00:18:3f:35:27:eb:aa:19:e2:81:9a:
f6:ad:b8:a2:27:12:1b:aa:fe:86:bd:92:e8:2b:0c:3b:cb:6c:
0b:4b:71:b0:8a:82:9e:b3:cd:03:d0:21:75:98:02:25:0b:2d:
7f:16:5c:90:01:4c:93:72:fb:c3:0c:9c:dd:42:a4:df:0e:c3:
54:ea:43:47:27:3b:43:aa:f6:94:16:e2:84:c7:fe:69:d0:da:
61:0e:6e:57:57:47:86:b2:b2:bb:ec:a3:27:06:cc:83:54:06:
4a:b9:22:87:35:82:fb:16:c9:c1:33:3e:6f:bc:ec:46:b8:d5:
ca:dc:76:0a:8e:ad:e7:30:ca:3e:08:bc:0f:e9:8d:fa:a6:cc:
61:72:10:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:30 2024 by rpki-client on console-ams.rpki-client.org