Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
File: AS200536.roa (raw, json)
Hash identifier: MIqlB/Xwz0RGpNe2AXjqg9C+5mNxQCsWNOAEGGtcFTQ=
Subject key identifier: AC:9C:4E:DB:E0:04:C2:FD:59:17:BE:3A:9C:C4:B5:45:94:6C:F8:BF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6BB40AF8F300BF6CC95F0E6E41E35F12B2C124E2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
Signing time: Fri 13 Dec 2024 02:56:29 +0000
ROA not before: Fri 13 Dec 2024 02:51:29 +0000
ROA not after: Fri 12 Dec 2025 02:56:29 +0000
asID: 200536
IP address blocks: 2a06:a005:f80::/44 maxlen: 48
2a06:a005:28f0::/44 maxlen: 48
2a06:a005:2920::/44 maxlen: 48
2a06:a005:2950::/44 maxlen: 48
2a06:a005:2980::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:b4:0a:f8:f3:00:bf:6c:c9:5f:0e:6e:41:e3:5f:12:b2:c1:24:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:29 2024 GMT
Not After : Dec 12 02:56:29 2025 GMT
Subject: CN=AC9C4EDBE004C2FD5917BE3A9CC4B545946CF8BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9f:c3:fb:31:4b:e9:1e:fb:0b:de:26:89:21:
5a:01:bd:91:2a:df:5d:e0:a9:de:c4:38:ce:7c:62:
d6:31:70:95:da:83:51:0b:cb:e6:57:3b:b3:59:39:
cc:ce:0e:17:7e:83:0f:73:4a:d4:6b:71:7c:47:8f:
72:b0:08:51:84:a2:fd:bc:50:ac:df:3a:a6:c8:a2:
70:f1:cc:63:64:37:2e:16:66:8a:0c:e9:e4:e5:af:
4d:1e:94:3c:29:6e:cf:1c:9b:8a:f1:2b:6e:71:36:
dc:cd:d3:f2:f4:86:32:c1:d6:e0:a8:19:56:1a:da:
36:7a:8f:00:7b:99:b6:05:e1:b4:e6:e5:c7:d7:71:
6d:8a:37:72:42:87:c0:ff:46:3c:5a:ce:b6:52:ed:
ef:be:09:c4:83:0e:67:20:03:ca:7e:c5:e0:32:14:
a0:a2:4f:2f:1c:21:53:2e:1d:51:ee:57:f4:c5:96:
9e:df:9a:98:56:49:d6:73:fc:0a:64:27:44:3b:be:
fc:f7:be:3a:8c:85:30:bd:1c:fb:36:5f:b1:6f:c0:
d8:41:fc:49:82:59:74:f1:14:92:0c:0b:05:c0:eb:
0b:28:5e:7c:39:22:58:47:03:54:1b:cf:57:fd:74:
c9:29:5a:16:64:81:5b:31:49:d6:50:d3:01:f1:d9:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9C:4E:DB:E0:04:C2:FD:59:17:BE:3A:9C:C4:B5:45:94:6C:F8:BF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f80::/44
2a06:a005:28f0::/44
2a06:a005:2920::/44
2a06:a005:2950::/44
2a06:a005:2980::/44
Signature Algorithm: sha256WithRSAEncryption
2d:ec:ce:74:85:1d:4a:c4:27:d3:fc:81:54:ba:36:4a:ee:d4:
8a:29:89:43:6f:21:45:19:cc:cf:3b:fb:e9:3d:76:35:a8:57:
17:8f:6b:d5:61:c0:d6:61:75:3f:0c:f3:9c:6c:d8:2f:92:e0:
5c:87:67:97:80:cf:f5:c3:b5:bb:3d:53:d2:e8:be:2b:79:ab:
14:82:f9:5d:8b:88:78:79:f1:3f:21:1c:86:67:33:fb:de:3a:
f7:bc:ae:be:22:50:f2:82:3a:c9:a6:5d:fe:b1:18:72:56:ef:
42:bf:99:f7:f7:8f:ad:8a:aa:2e:0a:47:f5:0c:27:66:bf:7d:
46:2c:c6:da:55:62:9c:dc:39:96:ef:a8:f6:98:59:c4:a4:3b:
c8:c0:ec:73:c5:e3:f8:c0:96:6e:41:ec:29:28:09:70:82:39:
98:82:af:f3:2f:27:9d:73:a2:61:26:0a:05:c3:a8:c3:58:5b:
82:d2:51:c6:99:82:b1:04:fd:c2:e6:09:09:68:87:cc:7d:36:
c7:aa:20:6f:ba:7b:19:67:17:d2:9e:d2:36:e1:dc:55:a1:aa:
19:7d:43:b9:51:c2:19:fd:98:96:1a:65:f4:a9:a5:ca:e8:73:
3e:4f:91:15:00:99:12:ff:3f:8d:8f:c7:47:95:1f:7d:3e:f1:
7a:94:e2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:04 2025 by rpki-client