Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200731.roa
File: AS200731.roa (raw, json)
Hash identifier: uN8y3PAYxid3lxNQoRunydcyrZqC8Oxr0edOvNE+VTM=
Subject key identifier: D9:F6:51:D4:FA:D1:E8:B2:8A:3D:37:96:D5:FC:38:76:5E:84:6A:F8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0D938C25E531E451D82BE32040092913DA1F693C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200731.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 200731
IP address blocks: 2a06:a005:116c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:93:8c:25:e5:31:e4:51:d8:2b:e3:20:40:09:29:13:da:1f:69:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=D9F651D4FAD1E8B28A3D3796D5FC38765E846AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:f7:55:43:cb:d9:ae:32:f6:2c:6f:a8:42:
d6:e6:31:cf:6a:9d:26:60:6f:8e:69:6c:28:43:a1:
c0:7c:81:1d:f0:48:4d:7b:ef:cb:55:cd:27:e5:39:
16:52:49:83:99:29:b4:5d:ef:51:68:04:23:48:35:
41:9d:63:14:35:06:0f:7f:46:9f:c2:d3:4a:b5:aa:
f6:dc:29:c4:7c:32:e7:f7:f0:f5:7b:82:ce:96:ae:
ad:ca:02:ca:de:40:f2:b7:c4:9e:de:a2:64:15:1f:
7f:bd:fb:08:86:62:f5:b8:3f:38:b9:91:17:6d:9a:
c1:05:06:76:19:c8:50:ec:4a:31:35:a5:68:0a:6e:
ed:47:fe:26:6d:46:1a:7b:2d:25:62:4e:49:20:0b:
31:c7:20:a4:dd:54:ff:08:03:fc:a3:48:ce:e2:fd:
73:99:7f:b8:e6:12:a9:f0:b2:54:5c:9d:0d:1f:f0:
b2:d0:1e:3a:0d:d5:d8:25:6c:6d:9a:0a:1b:6f:db:
b2:67:45:f4:87:1a:df:5c:c6:4c:e1:ce:fe:d5:01:
b9:43:fe:77:80:1d:d2:15:8e:b5:d9:6c:ad:34:13:
e2:f5:12:fd:f6:cf:90:10:da:96:f3:a2:93:9c:1f:
03:cc:88:24:e8:5c:7e:63:42:ef:d0:47:88:2d:7c:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F6:51:D4:FA:D1:E8:B2:8A:3D:37:96:D5:FC:38:76:5E:84:6A:F8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:116c::/48
Signature Algorithm: sha256WithRSAEncryption
13:12:48:9b:37:82:9f:40:25:1c:36:4e:9b:aa:d6:53:57:90:
59:ce:36:4a:54:4a:f3:02:b8:ad:75:bc:16:db:a9:f7:9f:f4:
60:1c:b1:ed:03:4f:88:d9:ee:06:82:b3:52:2d:c9:7a:0f:f6:
df:88:f3:d4:1b:e4:11:02:1d:01:d6:d4:2f:30:2e:d0:50:e5:
dc:54:78:63:c1:3a:39:18:21:c2:56:49:32:de:de:9c:36:19:
69:eb:5e:85:72:0c:d6:19:71:8d:fd:3d:84:0a:7d:15:d8:d6:
5c:91:51:30:05:8a:1a:12:6d:f0:bc:b3:20:c6:e9:ca:d6:72:
04:d5:52:a5:f8:4b:08:72:d6:d3:9e:4d:ec:ea:e6:7b:4f:44:
88:3c:69:69:96:32:ad:c1:79:d4:d4:3c:10:3e:3c:d7:e1:ef:
e5:8e:59:80:39:14:b9:85:c5:eb:dc:76:32:11:5b:19:6e:7a:
ae:27:d6:8b:ae:2b:06:f2:7f:32:3e:a5:68:90:8e:41:3b:9a:
36:94:2b:e8:11:8f:b4:d2:56:2a:77:55:06:34:8b:6f:4e:3c:
83:85:3b:50:2d:9e:d3:20:bd:a6:05:24:dc:4d:56:45:94:35:
80:d1:98:b3:d9:f5:ad:23:4c:cd:3f:9e:88:63:79:51:99:31:
0a:bf:86:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org