Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200872.roa
File: AS200872.roa (raw, json)
Hash identifier: L5pUExmEDQiu/5x+mnIk9iiJ7GNamHLl6ynDtAbVYCg=
Subject key identifier: D5:7F:42:E4:1D:57:2E:AE:01:74:51:61:C4:1F:82:F8:B5:C1:78:24
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0C1E5A1B979895459EC73FD35799DF4FB7B798D2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200872.roa
Signing time: Tue 05 Dec 2023 02:44:16 +0000
ROA not before: Tue 05 Dec 2023 02:39:16 +0000
ROA not after: Tue 03 Dec 2024 02:44:16 +0000
asID: 200872
IP address blocks: 2a06:a005:24f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:1e:5a:1b:97:98:95:45:9e:c7:3f:d3:57:99:df:4f:b7:b7:98:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:16 2023 GMT
Not After : Dec 3 02:44:16 2024 GMT
Subject: CN=D57F42E41D572EAE01745161C41F82F8B5C17824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e1:56:2c:63:c6:c8:7a:05:77:44:bb:b4:66:
50:68:52:3d:4b:01:f4:ee:d0:ea:a2:d8:74:26:d4:
60:64:b8:5f:27:c5:d3:38:19:09:5a:ce:5c:42:a4:
f8:6b:d3:61:06:31:9f:4b:46:ae:50:85:ea:b4:00:
04:cd:9b:c2:d7:08:be:65:fe:14:26:c3:e3:ec:f2:
a3:97:dc:2d:ba:9f:16:04:e4:94:82:bd:78:28:76:
60:05:62:dc:ef:a1:54:3f:06:20:a7:93:f9:91:f5:
3b:74:15:12:c5:fc:d5:3e:9b:d0:a1:03:fa:5c:11:
0e:d7:54:61:9a:ed:2a:fe:9d:dd:34:ae:84:df:8e:
75:77:c8:ef:24:e4:23:ec:e3:f2:5f:91:51:68:7f:
e5:b7:dd:44:9f:e4:fc:bb:40:e2:df:44:13:fd:dd:
b6:d2:7c:f4:36:9c:75:90:7d:e2:53:0e:d8:91:2a:
9d:4c:21:24:66:da:c9:dd:70:0b:46:44:ea:c9:37:
bc:b4:84:7b:06:8c:cd:23:fb:2a:a0:9a:ab:cf:35:
28:e2:38:9b:06:69:f5:5e:57:e2:5e:9d:31:9c:61:
98:9d:1f:f2:73:ad:96:98:0d:70:ad:35:2f:7b:b7:
58:ac:b1:af:2c:8b:a5:95:7a:01:87:f9:c1:b1:40:
12:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7F:42:E4:1D:57:2E:AE:01:74:51:61:C4:1F:82:F8:B5:C1:78:24
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200872.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:24f0::/44
Signature Algorithm: sha256WithRSAEncryption
63:40:21:15:c0:46:10:84:04:64:07:b1:e9:20:fd:ba:82:fc:
d1:e2:08:97:58:f6:34:28:e1:c1:fb:e0:58:92:90:9b:c7:88:
8d:7c:ff:fa:75:98:68:b6:fb:6e:d7:7b:c7:21:4a:8d:57:5f:
92:c5:5e:f3:2c:02:a5:b2:4b:b8:34:36:4d:77:61:a7:66:28:
1b:cd:cf:9d:1f:32:26:ec:4c:df:e2:55:6b:40:e7:03:98:0d:
4d:65:aa:5e:43:1b:60:9b:81:a8:b7:f4:4e:99:e6:8f:17:7e:
81:9d:33:9d:e3:70:93:db:5d:39:ef:e7:fe:21:0e:83:5b:fb:
e9:43:97:8d:eb:f1:86:e0:ac:10:1a:de:48:b4:c6:ac:c0:95:
8f:e8:48:1d:0d:31:ce:93:60:81:1e:90:68:10:95:fd:5a:f9:
ca:20:6f:8b:58:c3:98:61:ff:ba:b0:ad:23:68:56:a9:b9:ab:
b2:d5:7b:63:26:d4:a0:51:53:fe:3d:d2:f4:b2:17:a2:7d:44:
d9:92:3d:15:22:f1:72:f4:0a:12:4a:a8:2d:ce:df:e7:ff:68:
9f:26:75:4a:f6:0d:26:dd:07:80:b6:6e:62:b8:30:84:3c:a5:
95:0d:80:f1:4f:8d:eb:33:4f:53:39:8b:44:4b:f4:1a:05:e4:
38:91:d7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org