Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
File: AS200536.roa (raw, json)
Hash identifier: /FwrCeryGfFXvD/sjT41W3WQ1XDCTF6Rt72xXz18X6E=
Subject key identifier: 40:74:AD:6A:E9:4F:8E:41:06:A7:31:D0:BC:BE:0A:2A:BC:75:9B:1E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 11A34B3BDDF27C6F0DF0C259B8D87CAB568AE0E6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 200536
IP address blocks: 2a06:a005:f80::/44 maxlen: 48
2a06:a005:1700::/44 maxlen: 48
2a06:a005:28f0::/44 maxlen: 48
2a06:a005:2910::/44 maxlen: 48
2a06:a005:2920::/44 maxlen: 48
2a06:a005:2930::/44 maxlen: 48
2a06:a005:2940::/44 maxlen: 48
2a06:a005:2950::/44 maxlen: 48
2a06:a005:2960::/44 maxlen: 48
2a06:a005:2970::/44 maxlen: 48
2a06:a005:2980::/44 maxlen: 48
2a06:a005:29d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:a3:4b:3b:dd:f2:7c:6f:0d:f0:c2:59:b8:d8:7c:ab:56:8a:e0:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=4074AD6AE94F8E4106A731D0BCBE0A2ABC759B1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:3c:f4:c6:8e:d7:df:9a:3a:1f:cc:a8:7e:
52:8d:40:16:1e:9d:8b:5b:10:33:6e:d8:ff:8e:b6:
96:a3:ca:9b:a5:4e:a5:a6:01:38:ff:18:dd:4f:7f:
53:c9:3d:6b:de:db:c2:e5:4e:e4:e9:9e:98:3f:e9:
04:4f:b2:ca:b7:82:e4:88:93:09:bf:97:b9:3b:1a:
04:18:8d:45:49:ed:f7:db:94:b3:50:61:fe:2b:9f:
59:4e:e3:50:1f:4c:bd:05:f8:a1:27:95:ef:aa:5c:
9e:50:31:d7:70:d3:2a:fc:41:32:e8:eb:7e:e2:18:
29:13:13:e8:72:0c:92:33:08:14:38:a0:32:11:ec:
e6:c4:33:4d:6e:0d:3f:e5:25:2f:64:53:d3:1f:08:
7e:86:e9:2a:be:df:9e:78:35:1f:bc:57:91:a0:ae:
bf:fb:dd:c0:0a:ea:8e:03:06:c8:20:c7:f6:44:38:
92:17:35:28:97:e2:33:e2:93:bf:75:8f:4c:aa:27:
bd:f1:01:ba:ea:f8:df:a9:57:ab:0e:ea:a0:04:fd:
c0:51:5f:29:5e:93:61:3d:f9:9d:ee:c6:7b:50:35:
93:54:7a:06:cb:89:20:1c:16:2c:77:47:11:45:b1:
92:db:11:74:ad:6b:01:23:59:38:d5:cd:53:85:41:
7a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:74:AD:6A:E9:4F:8E:41:06:A7:31:D0:BC:BE:0A:2A:BC:75:9B:1E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f80::/44
2a06:a005:1700::/44
2a06:a005:28f0::/44
2a06:a005:2910::-2a06:a005:298f:ffff:ffff:ffff:ffff:ffff
2a06:a005:29d0::/44
Signature Algorithm: sha256WithRSAEncryption
d5:b2:f4:87:33:73:f9:fa:ae:10:cd:44:20:2b:b7:ef:c3:6e:
31:7c:c1:09:75:ac:f7:07:e6:3b:c6:81:46:95:5c:e5:d2:55:
14:28:c5:8a:66:b2:8e:65:fa:12:e4:33:3b:7e:7d:d4:99:eb:
04:07:56:b2:88:ae:cd:3e:f2:94:5b:15:de:95:91:b6:be:df:
92:22:10:66:55:8e:89:7d:d3:12:a2:f9:f0:9b:33:91:36:80:
6c:9e:2f:f4:ce:eb:a4:8d:a5:fa:63:e4:62:d3:91:7d:b2:cd:
69:17:bb:1e:b9:82:80:01:fe:77:99:02:13:a3:58:84:8a:e7:
85:45:33:96:b8:5d:d9:f2:13:45:4e:b2:e3:61:20:f2:91:70:
02:71:41:6e:35:01:44:78:45:91:cb:bd:52:6b:04:46:c4:90:
a5:d9:ed:cb:18:b5:0a:77:d5:0b:1e:62:ce:d9:fa:f4:aa:77:
d7:68:5a:bf:df:66:b3:2d:41:e1:b0:88:1d:09:85:57:7f:5c:
23:35:6d:2f:69:f9:6d:15:9d:eb:4f:b1:e2:fd:81:02:e7:04:
91:5a:bd:7b:6c:3b:17:4a:fc:6c:cb:a8:15:e9:34:4a:c1:44:
9d:63:dc:95:4b:aa:10:f5:e8:66:c0:62:c9:41:3e:eb:af:7b:
c1:24:c1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org