Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200266.roa
File: AS200266.roa (raw, json)
Hash identifier: ebMv4uIz1ZTlbZ8Sh/90Bk5u5VOZlF2G3DmpBs8J/co=
Subject key identifier: 4B:BD:88:A4:DA:C2:B6:92:C4:BC:56:34:3C:85:7A:99:39:CE:EC:8D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6372230C6BF384A6490751383681F9D745731E3E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200266.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 200266
IP address blocks: 2a06:a005:ba1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:72:23:0c:6b:f3:84:a6:49:07:51:38:36:81:f9:d7:45:73:1e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=4BBD88A4DAC2B692C4BC56343C857A9939CEEC8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:db:f3:85:eb:6d:53:17:81:1f:b3:c4:57:3e:
36:81:39:d7:00:8f:d7:a0:d5:29:85:31:8c:26:84:
bb:e4:c5:e5:8d:c2:01:f1:bc:dd:32:be:77:5d:c1:
1a:d5:2a:fd:37:ab:38:04:94:22:d5:91:d4:62:79:
22:7d:c1:46:85:f3:c6:bf:21:44:83:50:dc:31:83:
fa:ec:c9:8b:7e:91:42:0b:b8:69:37:77:2f:53:69:
8b:7a:e4:bb:9b:74:e6:21:ac:69:21:85:dc:18:e1:
5d:60:86:65:b0:32:d8:49:31:56:5f:84:5a:0e:9d:
ee:40:9a:15:27:c1:0e:83:c4:96:d7:45:25:ce:6b:
9c:e0:66:ae:c8:91:90:31:32:f2:87:9b:db:c4:3d:
eb:1a:65:17:69:f7:5c:08:f8:69:67:fe:4d:8b:d9:
e9:f9:df:3b:25:b2:2e:9e:94:c8:3e:4b:25:80:16:
19:2a:e1:40:93:8a:5d:af:7d:43:0a:6f:49:a6:0f:
d4:92:b2:4e:23:f5:7b:02:18:f2:3a:88:0c:0f:b0:
3c:60:2a:c4:0b:d1:5a:a5:d8:bf:a1:d4:98:eb:18:
10:5d:63:a3:4a:46:de:a1:db:e7:49:e9:5d:82:98:
af:73:3d:d1:d4:3d:8d:6c:b7:2a:89:48:f0:7f:97:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BD:88:A4:DA:C2:B6:92:C4:BC:56:34:3C:85:7A:99:39:CE:EC:8D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ba1::/48
Signature Algorithm: sha256WithRSAEncryption
c5:44:3e:00:c6:04:78:11:7b:eb:18:66:e6:b9:8c:1a:4a:32:
c6:b2:9a:0f:d2:f4:2a:7e:64:c2:17:39:2b:39:b3:c8:33:af:
88:59:1d:92:d5:6b:c5:cb:3a:05:16:f7:f8:48:04:d8:52:64:
97:af:58:05:36:c9:f3:e9:ba:2e:e7:94:15:07:95:09:ed:2b:
2f:99:a8:0b:7b:99:de:ed:6d:11:70:d9:38:ce:0a:2f:d6:fe:
4f:52:19:87:ac:f7:18:51:8d:1d:ca:82:55:30:24:34:a7:47:
b9:7b:8e:69:04:e3:92:9c:ca:64:f4:9d:91:a2:9b:29:29:fc:
fd:68:96:88:ce:c4:30:3f:be:89:ed:7d:b0:43:ba:35:e8:cc:
d7:5a:b7:0e:72:e9:6b:03:d6:49:2d:75:a4:a2:8d:15:99:5f:
96:79:72:64:aa:ef:46:ab:6a:8a:14:84:80:ea:45:f7:27:a7:
60:39:25:a3:45:1f:b9:e6:e3:c7:e4:80:b6:53:ef:f3:ba:37:
38:6b:de:79:6e:78:b9:87:68:f4:42:ad:3d:56:ac:76:f9:e7:
e4:40:d1:96:4c:fb:52:90:0e:86:ce:64:4d:fd:4f:e7:16:01:
25:39:7c:e9:92:6c:8b:80:c4:69:71:e0:1c:f1:ca:98:7e:d3:
fa:d0:ff:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org