Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
File: AS200230.roa (raw, json)
Hash identifier: caw29ffVL/TNUSSXjv12VrNLXzqZdkm5amVWTvvRD88=
Subject key identifier: 03:50:0B:9C:38:87:E7:8E:C4:0E:08:2A:ED:D9:8A:C0:6A:75:B2:3F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5B8DCF2051A5C12A87B4FF848C915EFF27DE81CC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
Signing time: Tue 12 Nov 2024 20:40:12 +0000
ROA not before: Tue 12 Nov 2024 20:35:12 +0000
ROA not after: Tue 11 Nov 2025 20:40:12 +0000
asID: 200230
IP address blocks: 2a06:a005:2ae0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:8d:cf:20:51:a5:c1:2a:87:b4:ff:84:8c:91:5e:ff:27:de:81:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 12 20:35:12 2024 GMT
Not After : Nov 11 20:40:12 2025 GMT
Subject: CN=03500B9C3887E78EC40E082AEDD98AC06A75B23F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:41:c9:61:49:0d:b9:07:c7:3b:9e:90:2e:
1e:a6:40:1f:ef:11:45:c8:7a:ea:21:81:f7:15:59:
07:f0:d6:e6:b4:e1:6b:b6:27:eb:cb:d7:b6:b1:f2:
b5:87:c6:27:54:bd:0d:ce:45:e2:71:7d:22:03:be:
f9:9e:1b:48:d8:4b:c6:fa:45:7f:bb:bf:48:ac:ef:
ff:7a:da:5c:a1:cd:b0:79:57:a9:95:10:10:d7:d4:
85:e1:e9:49:14:0b:e9:f6:f2:d7:a7:a9:8e:10:b5:
9e:d5:32:e9:61:21:1d:12:ba:61:bc:2c:7d:d2:2d:
c5:be:48:8e:d8:7e:a7:ac:59:99:73:22:16:6d:12:
6f:b7:b0:be:c1:2f:b9:3e:f3:58:a4:a8:8b:27:45:
1c:54:69:03:f5:85:2c:3c:d3:41:a8:86:1d:bd:a4:
81:c5:ba:68:de:6a:98:d7:6c:c9:bf:39:50:e7:ad:
50:e8:c7:59:ee:96:34:4e:fc:d5:b0:52:ae:f3:f0:
6a:03:24:10:19:7d:d4:e1:c5:74:0f:a8:91:9c:75:
cf:b4:00:06:34:2a:14:95:43:9d:e9:a5:51:3c:3b:
65:5a:c5:87:c3:7e:12:94:60:b5:c2:85:75:b5:61:
0d:a3:42:77:68:c3:7a:ba:5f:31:45:80:94:8c:01:
6a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:0B:9C:38:87:E7:8E:C4:0E:08:2A:ED:D9:8A:C0:6A:75:B2:3F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2ae0::/44
Signature Algorithm: sha256WithRSAEncryption
c9:03:33:b0:c1:74:74:6f:6c:24:1f:a9:8b:77:cf:14:f5:cb:
66:2a:72:e0:f6:59:36:6a:9d:b1:3c:c0:eb:ef:7a:f3:5a:db:
dc:73:4a:b9:04:40:66:89:2e:75:ff:fb:ab:04:07:94:ba:ff:
59:87:36:38:db:52:c7:4f:e4:ff:b9:55:08:4b:74:93:64:26:
fe:3a:c4:80:5b:a2:de:d5:77:13:45:7d:45:27:e3:6e:1c:d4:
31:bf:2b:26:44:41:e2:72:02:e1:7b:04:25:38:9a:2e:fc:b3:
7a:55:74:00:ce:54:bb:19:b7:6d:2d:55:c6:d3:a7:00:ef:9f:
c2:3a:f8:56:4c:9e:8c:d7:02:1d:f3:6e:87:7c:68:58:19:6e:
69:07:e0:5e:b6:dd:d4:e4:1a:97:1b:81:8f:fd:38:96:fd:97:
91:37:62:23:fd:b3:c6:1a:6d:ed:a2:0b:38:98:fd:d8:67:fa:
34:f0:00:50:54:14:ff:4c:6c:ed:1e:58:77:35:1d:21:4a:d8:
02:87:c8:d8:3a:30:dd:7e:32:0a:4c:64:dd:ff:72:7a:13:6d:
dc:2d:a7:e1:91:c5:97:d7:e2:f6:a8:8d:0c:de:b2:06:87:26:
08:ea:e4:e3:15:ff:b5:ba:50:15:bb:9c:27:ff:b7:52:7f:d8:
c3:f1:71:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org