Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200949.roa
File: AS200949.roa (raw, json)
Hash identifier: 5AY8sSC8U4dZ27KoR1NctDDhpMrjxHHmzSdrI1H10wY=
Subject key identifier: 70:38:56:E8:3F:34:1A:E5:30:D6:2C:EB:40:F3:53:E7:8A:8E:05:54
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 50C2B909061E30F15075C9D237C1577402C88121
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200949.roa
Signing time: Wed 24 Jan 2024 18:44:24 +0000
ROA not before: Wed 24 Jan 2024 18:39:24 +0000
ROA not after: Wed 22 Jan 2025 18:44:24 +0000
asID: 200949
IP address blocks: 2a06:a005:1880::/44 maxlen: 48
2a06:a005:2490::/44 maxlen: 48
2a06:a005:24b0::/44 maxlen: 48
2a06:a005:28a0::/44 maxlen: 48
2a06:a005:28b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:c2:b9:09:06:1e:30:f1:50:75:c9:d2:37:c1:57:74:02:c8:81:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 24 18:39:24 2024 GMT
Not After : Jan 22 18:44:24 2025 GMT
Subject: CN=703856E83F341AE530D62CEB40F353E78A8E0554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:02:a7:8f:b7:ba:cb:68:fc:3a:63:ca:d9:1e:
81:a3:c2:32:2a:c5:46:06:b5:a4:6e:eb:25:c6:6e:
fa:96:d5:af:f9:14:6d:6d:b5:4c:1f:cc:a9:ea:8a:
d0:2b:97:d0:cd:18:05:a7:4f:a4:19:9b:54:08:b9:
41:8d:42:5c:10:6e:be:74:d4:02:22:90:e8:47:01:
f0:9a:0e:1e:3f:5d:1e:94:91:98:ee:bb:f0:24:fa:
e1:0f:6e:12:cd:0c:a5:34:82:49:d9:2b:94:43:a1:
3d:6c:7d:11:d9:7c:d6:c7:2a:10:25:1f:f5:9a:c6:
fc:4b:7b:13:28:ae:99:cf:e6:20:e3:40:56:1d:30:
19:a5:ba:62:d1:f4:16:68:e2:65:ac:81:37:13:44:
c2:83:83:91:51:ca:6c:c6:e4:2b:c7:b5:6f:9b:ac:
5d:dd:7d:cc:fa:fd:c4:2e:97:45:aa:78:42:4d:97:
6d:34:8e:de:f2:e0:0c:47:bf:77:dc:ca:88:1a:21:
40:25:6e:0f:5d:46:f1:cb:4b:d0:f9:33:c6:cf:a5:
1a:ad:1a:1e:28:9a:33:11:ac:49:3a:b0:33:ad:ed:
a5:08:bc:66:af:4f:b6:1b:4b:89:69:47:6c:fd:c8:
bb:48:33:f0:50:e3:22:d3:42:f1:a1:25:00:76:e3:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:38:56:E8:3F:34:1A:E5:30:D6:2C:EB:40:F3:53:E7:8A:8E:05:54
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200949.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1880::/44
2a06:a005:2490::/44
2a06:a005:24b0::/44
2a06:a005:28a0::/43
Signature Algorithm: sha256WithRSAEncryption
0e:aa:fa:95:67:b8:44:c1:f8:d0:99:91:b5:f5:c1:8b:47:62:
f4:46:3c:be:cf:8a:78:e3:23:24:25:b7:3b:71:40:d0:a5:5e:
46:35:32:c7:7a:4c:29:de:88:7c:67:a1:3f:5f:b6:c4:7c:e2:
7c:30:98:0c:52:9f:34:8e:8b:f5:9e:b0:17:9d:6b:f1:9a:69:
81:12:7d:9e:a6:2c:01:d3:27:8b:61:1b:4e:bb:27:79:0f:6e:
4b:72:ca:aa:74:4b:2e:d3:fa:46:33:ca:be:09:66:09:07:5f:
3d:90:8e:0a:f3:b2:3f:be:e9:83:86:bd:a9:dc:04:6f:4b:d0:
05:e7:da:81:ed:07:e1:4b:9b:6b:72:21:22:a5:cd:e2:30:af:
4f:db:87:76:93:8b:65:9f:de:1c:39:ae:8d:e5:69:92:84:ae:
8a:04:3b:be:ff:3c:69:2b:71:d7:fe:f1:21:05:08:27:43:a1:
b0:69:6e:11:32:d6:6f:04:79:2c:16:11:9e:3f:88:3d:5f:85:
ec:0d:86:f3:01:cc:8e:9c:12:c9:ce:17:d5:f5:6b:73:21:1f:
11:ad:21:be:cd:ee:54:39:9f:56:02:13:a9:13:72:5a:59:4b:
16:2f:28:cd:d9:5a:ad:15:cb:a4:c4:d7:eb:60:16:ed:66:99:
f3:3e:e0:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:20 2024 by rpki-client on console-ams.rpki-client.org