Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200885.roa
File: AS200885.roa (raw, json)
Hash identifier: pp+Us0r3qQgu6iImE4MzmItJifvYc7IWMxx3+WJkyDg=
Subject key identifier: 0D:CB:BD:D0:07:5C:30:07:CE:BC:45:78:2D:D1:45:15:F8:84:DC:54
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 78E5F072B91881AFE2D9937E76CE9C27B7FF2B75
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200885.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 200885
IP address blocks: 2a06:a005:5::/48 maxlen: 48
2a06:a005:26d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:e5:f0:72:b9:18:81:af:e2:d9:93:7e:76:ce:9c:27:b7:ff:2b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=0DCBBDD0075C3007CEBC45782DD14515F884DC54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4b:dc:f2:1d:b4:8a:f2:bc:15:0f:c8:04:15:
5c:ef:a8:0a:53:0e:85:87:d0:69:42:64:d6:d0:3c:
ca:50:2b:5d:d1:a8:93:69:54:e1:9a:1d:a0:c3:d9:
fc:cd:13:af:32:fb:88:6a:67:58:1e:15:be:01:ae:
94:2a:0b:ae:e8:a9:d3:c1:4a:35:f6:bc:3e:55:16:
f3:56:97:37:94:81:c7:65:aa:30:24:08:a5:1d:64:
5f:89:b3:c8:63:6d:22:4e:bd:2d:2f:98:1c:22:5e:
0e:4c:d5:fc:5f:f6:5c:4d:ed:6f:22:c7:ac:c6:b2:
59:14:08:b9:39:a7:00:db:41:28:ef:9a:91:6b:f8:
19:bc:5a:bc:3d:3f:12:f5:8a:fd:1a:77:ca:37:4b:
b9:58:b6:15:fd:2f:ba:b6:eb:c5:f4:96:e0:a9:d1:
48:4c:fb:fb:7e:89:74:1d:0f:f6:28:dd:8a:bb:47:
c0:30:52:aa:ba:3e:67:a6:58:1b:56:d6:9c:df:23:
0b:bb:76:13:6c:a7:aa:ac:33:55:2a:4a:ed:ab:c6:
40:e7:a1:73:48:d9:4a:9f:8a:30:cb:ca:de:81:59:
c5:40:fa:e5:6f:09:fe:eb:f9:48:72:cd:21:74:31:
83:9a:d2:67:82:a9:0c:7c:ff:7a:d8:b1:16:00:96:
eb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:CB:BD:D0:07:5C:30:07:CE:BC:45:78:2D:D1:45:15:F8:84:DC:54
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200885.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5::/48
2a06:a005:26d0::/44
Signature Algorithm: sha256WithRSAEncryption
85:e3:45:f8:c3:1c:22:9a:51:fd:aa:58:5c:73:16:cb:e0:56:
e3:36:29:dc:b0:b6:d1:30:ad:5e:2e:0a:32:e3:80:9b:7e:9b:
e8:86:06:d7:30:a2:7b:0d:e5:85:84:87:13:ed:96:de:96:67:
c4:6c:99:ec:a3:71:63:25:09:93:89:6a:46:e5:9f:31:55:0f:
04:a9:10:09:58:1c:bf:ba:4e:a0:9a:bc:cb:b4:25:62:55:43:
2f:2a:c8:90:63:8d:3c:9f:99:82:2d:d5:d4:16:33:a7:97:99:
ca:25:7d:51:63:b5:a6:69:ce:37:f4:c4:22:59:e0:d5:76:37:
90:7e:5e:4c:63:44:6a:96:5f:7f:fb:6d:3d:11:e9:ca:cf:f1:
b8:45:be:17:87:a3:77:af:d6:36:72:7d:67:da:ca:14:44:31:
62:0f:75:30:57:3f:c6:bb:72:f0:a3:2a:e9:b9:b6:f1:d8:e3:
dd:5f:a3:d8:fe:f7:28:46:7f:bb:6c:b6:60:77:53:82:ce:26:
cc:52:99:ca:12:7e:01:90:16:27:34:fb:6c:cc:d1:f2:cd:3b:
f3:7a:c6:02:46:cf:35:34:8f:ca:4c:00:8e:66:b0:5e:10:13:
97:ae:2e:ac:dd:79:39:04:dd:32:bb:6a:a9:4b:eb:f3:05:c3:
87:36:f8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:23 2024 by rpki-client on console-fra.rpki-client.org