Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200237.roa
File: AS200237.roa (raw, json)
Hash identifier: OlyS9noYafwZSLto4zhxW8YcLc6APsJciHDVjRDf5JU=
Subject key identifier: 45:95:AF:BC:9F:BB:F8:02:E3:DD:E1:65:A8:76:6A:D6:20:EE:4A:B4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3F74871F7437BD053F70A20C9615E04E15DDC4C7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200237.roa
Signing time: Thu 07 Dec 2023 16:44:21 +0000
ROA not before: Thu 07 Dec 2023 16:39:21 +0000
ROA not after: Thu 05 Dec 2024 16:44:21 +0000
asID: 200237
IP address blocks: 2a06:a005:d4c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:74:87:1f:74:37:bd:05:3f:70:a2:0c:96:15:e0:4e:15:dd:c4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 7 16:39:21 2023 GMT
Not After : Dec 5 16:44:21 2024 GMT
Subject: CN=4595AFBC9FBBF802E3DDE165A8766AD620EE4AB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f6:4e:a5:a7:72:29:33:64:a0:bd:c6:64:bd:
df:df:ba:c6:48:db:30:80:73:0d:77:50:df:17:db:
83:a5:89:fb:c6:2a:8e:e4:2b:75:a9:56:a7:20:14:
fd:23:48:88:e8:76:1f:d9:b2:e8:a0:54:c2:59:c0:
32:e4:48:1d:3c:e1:30:f7:8a:68:a7:bc:ae:4b:1d:
54:76:fa:2e:17:35:41:ee:a9:a1:3d:9c:47:66:6a:
56:e3:49:70:bb:34:75:f1:4f:5e:ac:a1:12:eb:35:
c2:ae:d0:6c:36:7a:fa:22:0c:7f:92:08:b1:38:02:
77:9c:ee:23:b4:3d:a0:ed:69:c6:2f:7d:7d:3a:07:
9d:8f:9a:9c:eb:ea:89:4a:6c:86:39:52:97:e8:7c:
64:8d:82:fc:27:09:e3:28:24:0e:5c:67:3f:ff:4b:
8b:ed:cb:3b:00:59:87:cf:7f:b5:f8:8c:63:bc:e6:
74:29:32:00:b5:82:d7:ae:b5:fe:4b:9d:42:dd:f2:
86:fe:d0:09:81:40:d7:f0:9d:eb:a2:5a:c5:12:40:
b5:ff:b9:33:2f:97:51:c9:87:b6:da:7a:c7:dd:51:
6e:28:39:25:e5:a8:c1:f6:f3:e5:3e:bc:82:e9:35:
63:fe:28:21:16:ec:b3:b2:53:f8:90:2b:04:9b:1a:
73:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:95:AF:BC:9F:BB:F8:02:E3:DD:E1:65:A8:76:6A:D6:20:EE:4A:B4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d4c::/48
Signature Algorithm: sha256WithRSAEncryption
c7:0e:ea:05:3c:f6:9a:31:4e:c5:22:a1:71:dc:e6:81:23:d6:
5c:6a:45:32:43:3c:ad:d5:ed:6b:06:29:8d:1b:89:89:f2:9f:
09:17:b8:b5:ca:9f:86:27:e4:02:c0:e0:84:6d:68:20:83:0c:
d7:08:e4:e5:65:eb:e7:18:a0:5a:0f:ad:0a:cc:49:49:0f:61:
61:63:5a:7f:5a:6e:47:b1:3b:f6:e7:dd:1f:dc:95:a3:a8:c6:
71:d0:d3:49:87:bd:1f:ba:ae:4f:5c:9a:29:fc:0a:f5:4c:bb:
70:58:17:4a:0d:77:48:f6:20:42:5b:8c:56:6f:90:9a:53:4e:
a3:66:e1:97:d2:12:b0:7a:78:8b:67:7b:52:c4:af:2a:28:a2:
bc:1c:ac:36:c3:6b:71:65:f1:e8:c7:30:4c:ea:55:59:cc:e0:
7e:77:37:e6:58:c5:3f:e8:b1:42:11:f4:f3:25:aa:8a:75:53:
13:0f:97:f4:85:b7:f3:96:de:c0:c7:66:92:d3:f7:16:e1:45:
7e:e8:f1:73:86:97:2e:40:c1:62:18:07:d9:48:19:e0:32:75:
00:4d:58:55:6d:74:fd:e1:62:fb:bf:95:7c:b7:d9:91:67:d4:
00:b6:25:47:f9:a1:c8:de:1a:eb:cc:6a:00:a8:45:6b:21:4a:
3f:52:a7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org