Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
File: AS200766.roa (raw, json)
Hash identifier: mk3rUf44pXxua6AZw+ehNWPWaI1x34dMJhmPsjCt2Hw=
Subject key identifier: 14:A9:16:62:2D:8C:87:60:5A:07:A0:1A:7E:79:50:8F:EF:33:B4:48
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 64392D2521DE6FDC332F29C099194C666557D721
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 200766
IP address blocks: 2a06:a005:116b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:39:2d:25:21:de:6f:dc:33:2f:29:c0:99:19:4c:66:65:57:d7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=14A916622D8C87605A07A01A7E79508FEF33B448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:22:75:ea:e2:d5:54:b7:f5:9c:8d:30:09:
7c:e1:d9:06:99:f3:47:f9:15:ca:bc:fa:6e:4a:de:
8a:7f:f8:03:f3:cd:09:84:95:7b:7a:b4:70:be:7d:
33:92:c0:10:e1:85:4f:a7:51:e4:ed:37:80:cc:c8:
71:bc:dc:41:ba:eb:25:8f:0a:fd:b1:ea:c3:04:b5:
85:d4:da:94:a3:a4:5b:c4:84:3f:0e:18:31:a4:4d:
85:1f:6b:0a:71:45:97:6d:c2:8a:a9:a1:d5:d8:78:
61:bd:1c:10:63:af:fc:46:17:a5:ad:9c:6a:e2:24:
52:c8:b7:48:8f:b8:b7:6b:4a:d7:c9:00:2c:d5:1e:
16:e1:4a:01:e2:a5:68:72:26:76:77:ee:5c:98:cb:
53:53:81:7f:54:2b:09:22:26:09:ad:bc:83:b4:69:
5b:62:a6:fe:25:45:47:a9:58:16:b2:cc:0a:cf:1c:
44:f4:9a:b5:c5:7c:35:0e:62:10:34:01:73:43:78:
3c:dc:6a:f5:93:82:f7:f6:a3:6c:79:0e:8e:1e:f3:
87:9a:a2:d8:43:fc:57:18:17:72:d9:32:91:ae:df:
64:5a:61:99:06:23:49:a8:cd:b2:a0:0c:cd:a2:be:
e8:69:a3:07:2e:c6:cf:27:76:ed:76:36:6d:a4:00:
93:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A9:16:62:2D:8C:87:60:5A:07:A0:1A:7E:79:50:8F:EF:33:B4:48
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:116b::/48
Signature Algorithm: sha256WithRSAEncryption
6b:e5:6b:41:ef:c7:32:2e:d9:eb:ca:38:84:b5:e1:c3:9f:14:
4b:5b:1b:6e:64:37:ef:94:15:fe:da:dc:ec:8c:8f:0c:d6:94:
cc:37:23:9c:a1:6a:80:5d:02:0c:4f:17:ff:de:d0:a8:33:ae:
52:1b:73:6c:3b:5d:ba:1b:99:72:0f:dc:56:40:74:44:ec:0a:
40:b7:07:d4:ed:ab:b9:7f:09:89:87:f4:ef:ec:7d:e1:49:5c:
b4:70:db:1b:11:ae:59:f1:68:89:97:cd:00:79:60:24:02:e9:
c4:af:92:7a:fd:9d:be:72:fd:5c:99:5c:70:b9:ab:5b:d1:09:
aa:22:e5:74:58:86:98:51:d8:24:c1:28:3c:1c:70:9c:cd:3e:
9f:aa:18:4a:47:f3:f0:d0:66:39:20:b6:26:65:12:e6:e0:36:
ec:77:30:76:4e:16:7e:bc:56:e7:6b:fa:38:a8:04:24:9b:69:
33:a1:cb:98:de:0d:a1:d9:d7:37:3f:5c:e2:d8:16:0f:20:14:
8c:f1:45:a3:95:65:c7:21:f9:df:0e:e1:1f:74:93:d1:e9:72:
01:1a:e6:09:77:36:09:bf:95:a7:62:bb:9c:25:84:fa:68:6a:
92:fe:51:1e:3a:32:bf:8d:40:b6:5f:b9:3c:c3:e6:bc:84:b9:
1f:7d:4a:e6
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUZDktJSHeb9wzLynAmRlMZmVX1yEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUwMjM5MTNaFw0yNDEyMDMwMjQ0MTNaMDMxMTAvBgNV
BAMTKDE0QTkxNjYyMkQ4Qzg3NjA1QTA3QTAxQTdFNzk1MDhGRUYzM0I0NDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrHyJ16uLVVLf1nI0wCXzh2QaZ
80f5Fcq8+m5K3op/+APzzQmElXt6tHC+fTOSwBDhhU+nUeTtN4DMyHG83EG66yWP
Cv2x6sMEtYXU2pSjpFvEhD8OGDGkTYUfawpxRZdtwoqpodXYeGG9HBBjr/xGF6Wt
nGriJFLIt0iPuLdrStfJACzVHhbhSgHipWhyJnZ37lyYy1NTgX9UKwkiJgmtvIO0
aVtipv4lRUepWBayzArPHET0mrXFfDUOYhA0AXNDeDzcavWTgvf2o2x5Do4e84ea
othD/FcYF3LZMpGu32RaYZkGI0mozbKgDM2ivuhpowcuxs8ndu12Nm2kAJNhAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUFKkWYi2Mh2BaB6AafnlQj+8ztEgwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAwNzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBRFrMA0GCSqGSIb3DQEBCwUAA4IBAQBr5WtB
78cyLtnryjiEteHDnxRLWxtuZDfvlBX+2tzsjI8M1pTMNyOcoWqAXQIMTxf/3tCo
M65SG3NsO126G5lyD9xWQHRE7ApAtwfU7au5fwmJh/Tv7H3hSVy0cNsbEa5Z8WiJ
l80AeWAkAunEr5J6/Z2+cv1cmVxwuatb0QmqIuV0WIaYUdgkwSg8HHCczT6fqhhK
R/Pw0GY5ILYmZRLm4DbsdzB2ThZ+vFbna/o4qAQkm2kzocuY3g2h2dc3P1zi2BYP
IBSM8UWjlWXHIfnfDuEfdJPR6XIBGuYJdzYJv5WnYrucJYT6aGqS/lEeOjK/jUC2
X7k8w+a8hLkffUrm
-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org