Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200447.roa
File: AS200447.roa (raw, json)
Hash identifier: ERztTgfFksCsR9ruemNRXG2jBRU6RsdSW4oz9XZAgVU=
Subject key identifier: 21:8F:65:B5:D8:F5:5F:3F:91:13:25:C9:40:11:B4:1B:B4:E7:5C:D9
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4037DB5363691D25273E52FCA7FC5BC11C549BEC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200447.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 200447
IP address blocks: 2a06:a005:a16::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:37:db:53:63:69:1d:25:27:3e:52:fc:a7:fc:5b:c1:1c:54:9b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=218F65B5D8F55F3F911325C94011B41BB4E75CD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c0:40:2b:1b:82:ac:e7:8d:ba:3d:7e:04:ee:
73:78:9c:a1:07:b5:02:24:a2:28:21:3a:dd:f4:29:
b1:f8:07:3e:dd:69:25:d4:c8:04:0e:e1:4a:51:38:
b4:a4:a5:b6:1a:63:53:03:92:6a:fd:60:6c:d1:ce:
b3:1b:5b:0a:33:75:37:f2:e4:08:c0:da:3f:69:d2:
b9:47:19:01:dd:8a:c0:b9:24:e8:dc:25:d4:f8:9b:
48:ea:8c:25:b8:9b:b0:ef:60:58:7e:1a:0c:22:d1:
c3:93:f8:15:55:c8:5e:32:2c:84:1a:2b:10:5b:bd:
62:80:4f:af:e2:0b:9c:1c:f0:92:15:de:4f:54:a2:
a5:b7:f4:ba:5b:fc:a7:a1:73:72:1f:e9:3d:c6:65:
90:13:1d:4f:7b:6a:bd:5a:af:dd:e0:89:69:02:b9:
c3:44:4c:2a:af:be:1d:53:7d:6d:b9:fa:1a:c5:5e:
83:ed:01:4a:ee:4d:27:dc:99:a0:08:20:f8:99:78:
fd:3c:6a:4d:5f:d7:df:b0:c1:34:68:03:2f:36:3e:
0c:dc:c6:8c:76:be:d3:a0:df:99:0e:29:cc:8c:40:
63:57:30:25:71:68:99:80:ec:d0:1f:10:d6:d5:4a:
5c:9a:bf:8c:5d:fd:07:e5:86:5b:29:9c:70:9f:fb:
8d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8F:65:B5:D8:F5:5F:3F:91:13:25:C9:40:11:B4:1B:B4:E7:5C:D9
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200447.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a16::/48
Signature Algorithm: sha256WithRSAEncryption
98:1e:0a:6f:a5:c6:24:ce:11:a1:78:f3:93:db:5c:49:13:1a:
58:8c:ac:3e:de:d4:9a:35:f7:04:ae:fb:d5:c5:ea:b6:b6:ad:
52:a2:e8:e7:ea:dd:1e:d3:cd:76:9a:c2:bf:2c:07:a1:5a:76:
08:2a:ee:83:a3:79:b9:28:85:83:1b:4d:46:b9:ca:5d:cd:2a:
36:fa:96:74:4f:78:e7:68:e6:6e:51:16:83:02:da:fd:3a:1c:
46:26:5e:8c:88:f1:8b:19:7a:e0:85:6a:e3:c4:f0:d7:7a:65:
97:7f:8a:94:2d:80:9f:2e:7b:57:ff:69:6e:e5:52:6b:98:a3:
27:4c:28:c4:9e:cd:05:ba:66:b2:e0:9c:20:f3:9f:0f:a6:d0:
54:83:9b:d9:96:6b:9f:e5:3d:82:96:46:47:51:62:33:98:ed:
ba:fb:30:dc:40:5d:10:6e:11:14:e8:9f:09:63:53:ac:bf:7a:
4e:7d:55:a2:e8:68:c9:a3:13:cd:21:ff:3d:44:85:2a:11:90:
b9:a0:89:fb:13:7f:79:c9:76:fc:54:74:61:bf:4d:5a:bc:6d:
c2:37:7b:e6:f8:46:df:c4:98:f6:62:d5:d7:66:04:e7:c2:a3:
30:fb:fb:6b:5e:c4:47:1b:35:76:49:ca:bd:6b:44:27:0a:f3:
f7:c9:46:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org