Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200895.roa
File: AS200895.roa (raw, json)
Hash identifier: FcDrNzD0kL8JbyzARSQ1t5S5M70SUF4OtUNodL8vQMs=
Subject key identifier: 76:83:04:A6:EC:51:30:7F:9F:7A:33:FE:BB:F3:7D:DC:19:FC:F5:F2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2AD96E73B396C4AD54812E7F357C8C8128AFB83A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200895.roa
Signing time: Tue 19 Dec 2023 14:44:21 +0000
ROA not before: Tue 19 Dec 2023 14:39:21 +0000
ROA not after: Tue 17 Dec 2024 14:44:21 +0000
asID: 200895
IP address blocks: 2a06:a005:5a2::/48 maxlen: 48
2a06:a005:1890::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:d9:6e:73:b3:96:c4:ad:54:81:2e:7f:35:7c:8c:81:28:af:b8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 19 14:39:21 2023 GMT
Not After : Dec 17 14:44:21 2024 GMT
Subject: CN=768304A6EC51307F9F7A33FEBBF37DDC19FCF5F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:2e:ab:29:32:94:47:46:04:cf:b1:60:3a:
96:a9:ac:0f:2d:40:00:15:b8:e0:de:78:52:94:b3:
3a:b0:3f:58:8d:35:b8:d2:8a:7c:76:ec:8f:d5:04:
5a:1c:76:c1:40:69:b2:14:fd:8c:2b:c3:b0:80:c6:
16:0e:c3:9e:c4:c7:bd:a2:6c:18:70:10:7a:4b:c0:
3f:3e:2f:80:ae:f7:6e:9f:8e:f2:43:cd:59:22:7c:
19:d0:40:b0:44:61:6a:cb:e9:7b:9f:80:a1:db:05:
da:36:90:53:f6:1e:0a:0f:8e:c3:47:bb:e5:03:f6:
8b:70:33:f3:03:e0:70:ed:6d:5f:0f:84:7c:fe:18:
8c:63:e4:6c:e2:12:d6:ff:6f:d9:20:0e:c8:8f:3c:
1e:fc:90:fa:74:23:93:ad:ec:20:cf:40:a7:cc:d8:
06:72:f8:15:e5:ee:b3:d9:19:d4:9e:9e:ee:34:28:
ed:0c:45:c9:d4:e4:53:ac:a5:4f:1b:c0:8e:1a:0c:
8e:7e:20:27:28:85:b6:01:25:9d:73:00:d0:d8:92:
6c:65:be:2b:1c:19:18:6f:d1:e6:65:cb:81:c2:45:
80:1a:bc:11:99:89:72:4f:f3:0d:4b:05:22:19:63:
89:e7:4c:13:42:0b:3c:44:59:c0:21:12:40:56:48:
f9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:83:04:A6:EC:51:30:7F:9F:7A:33:FE:BB:F3:7D:DC:19:FC:F5:F2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200895.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5a2::/48
2a06:a005:1890::/44
Signature Algorithm: sha256WithRSAEncryption
3c:e3:f3:f0:b8:af:c0:28:4a:f5:e7:be:8e:16:e4:b5:54:b9:
a0:81:90:3e:10:c7:38:49:c9:e7:15:f6:2c:29:ff:8e:ed:6e:
61:d1:23:fe:cb:42:1b:92:05:dc:fb:85:95:97:97:be:d9:bf:
eb:24:b7:08:fe:b5:e4:cf:5b:e6:46:d8:b3:c3:93:4d:0b:74:
d1:4c:2e:0a:27:5c:97:7b:89:5c:62:51:8a:77:42:85:9f:c7:
75:c8:52:50:88:0d:d9:de:64:5a:65:08:da:7a:6b:76:62:91:
93:97:7a:e8:5b:b7:6f:0c:fc:72:68:65:dd:a9:7b:97:37:65:
ab:65:7e:4e:ae:b3:5e:a6:f4:d4:b0:bc:b7:2f:74:29:fc:eb:
27:38:4e:d2:30:76:34:1b:1d:1f:3e:67:b4:de:03:74:91:9f:
9a:ad:1b:2a:79:23:ce:8a:c5:37:47:23:c2:bc:c4:ea:84:50:
f9:b2:0a:b3:a8:71:0e:12:22:42:09:ae:bc:eb:5c:78:b0:83:
3d:45:50:0b:59:5a:d7:d1:4c:e2:a2:8d:49:f0:ce:ca:df:a1:
c1:cb:66:1a:9a:9a:06:19:ff:d0:a2:04:05:29:66:8a:10:b9:
f1:2b:95:53:7a:68:9a:fd:f6:5a:db:c4:66:a5:b5:61:4c:87:
fe:5f:b6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org