Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
File: AS200766.roa (raw, json)
Hash identifier: 3mKwW0/bRWl4+1j2ejwzUefwjdFssI7UopRpNewjPFY=
Subject key identifier: FF:9F:EA:6A:60:7C:A1:44:27:76:9F:6C:7A:9C:0B:0B:B3:00:FC:62
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1E1D74956CB7C7BDE72F573A273C69FCFE71AA18
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 200766
IP address blocks: 2a06:a005:116b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:1d:74:95:6c:b7:c7:bd:e7:2f:57:3a:27:3c:69:fc:fe:71:aa:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=FF9FEA6A607CA14427769F6C7A9C0B0BB300FC62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e9:ef:6f:ce:31:27:01:2e:95:ac:34:c5:55:
5f:09:e4:49:e2:50:65:6b:c4:fc:b9:4f:5b:e1:12:
47:70:43:64:d1:ec:41:89:c6:bd:4b:2f:d3:36:9f:
89:5e:19:39:4b:a8:ea:33:5f:8f:13:2a:75:0d:76:
f1:6f:d3:f4:1f:63:91:57:6e:54:c2:fe:bd:04:22:
b8:83:46:23:3c:62:d9:5e:1b:8a:c6:1a:66:9b:4e:
1c:bb:f6:ae:f7:67:37:ee:6c:78:41:85:12:cb:67:
ed:78:b2:c9:6b:a9:80:94:2f:24:87:6b:ca:db:b9:
7e:24:1b:4e:2b:7b:c0:d3:12:eb:dd:47:42:39:b2:
91:02:95:e2:9e:1b:90:d9:8e:56:5f:2d:89:70:bd:
46:af:f2:f7:59:3e:58:91:c2:37:64:b9:e4:5a:28:
f4:74:a8:da:18:9a:3d:bf:08:44:19:3a:a3:4a:61:
c7:c8:8a:df:de:97:df:0e:67:7f:70:06:a5:fe:ba:
28:e1:9e:f4:b2:6c:11:09:d8:38:26:1e:42:2d:5a:
32:40:31:c5:bf:8d:ac:46:5e:c0:33:cf:6c:e0:7b:
30:87:e6:81:a3:a6:cd:74:70:6c:49:08:18:88:cb:
7b:be:6b:a5:04:6b:f9:c5:9c:b2:a6:e2:24:2f:13:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9F:EA:6A:60:7C:A1:44:27:76:9F:6C:7A:9C:0B:0B:B3:00:FC:62
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:116b::/48
Signature Algorithm: sha256WithRSAEncryption
a5:d1:12:fe:6e:8c:4c:50:c1:be:7f:74:91:8e:b0:40:e4:0b:
82:ab:e9:4d:17:a3:17:4b:08:63:a4:ff:4e:d8:6d:19:92:69:
0f:6f:0b:22:03:ec:43:57:02:c2:a0:44:3b:37:9d:c5:40:3c:
fa:01:a6:89:47:fe:e0:64:0a:b3:81:0d:7f:72:30:20:17:24:
77:be:2f:6f:2f:0c:4d:a9:0f:6e:10:d6:e0:3a:1a:0e:52:4e:
9c:c0:72:3f:4a:fb:e9:52:89:41:07:56:57:1c:da:67:3a:81:
f0:b7:08:7f:10:98:83:95:49:42:2d:8f:f7:42:da:51:5f:6b:
d0:7c:b2:6f:f7:7d:b3:93:90:98:ed:67:6b:84:ad:06:a6:9c:
d4:4f:71:e3:fa:bb:a9:ea:10:16:e2:2b:8e:29:00:7a:cc:dc:
2a:d9:cf:31:21:1c:d5:02:f0:d9:b8:79:03:8b:47:1e:52:5f:
4f:f6:a3:5d:93:a4:a3:99:c4:9a:5b:81:53:c7:8f:9d:c4:d3:
51:ca:f1:24:fb:90:a8:ee:fd:71:f6:c9:7a:3d:2b:fd:f9:fe:
2e:7c:5f:47:c5:1f:0a:7a:62:b1:25:51:a5:ad:57:19:8d:22:
93:92:d1:62:fa:af:cf:ce:d0:1c:27:bd:3a:86:96:73:9b:8d:
4b:99:68:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:45:52 2024 by rpki-client on console-ams.rpki-client.org