Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200952.roa
File: AS200952.roa (raw, json)
Hash identifier: YOzu2tSU9I6eS+nW7v30WKGBlfwCKkMk9CFUpvvWVes=
Subject key identifier: 26:36:03:84:6B:0D:7C:57:2C:2D:F3:40:9A:CD:9C:77:1F:7C:D9:94
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0F6EFEC484261251616211930250DDA614D4C638
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200952.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 200952
IP address blocks: 2a06:a005:2570::/44 maxlen: 48
2a06:a005:2630::/44 maxlen: 48
2a06:a005:2640::/44 maxlen: 48
2a06:a005:2650::/44 maxlen: 48
2a06:a005:2660::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:6e:fe:c4:84:26:12:51:61:62:11:93:02:50:dd:a6:14:d4:c6:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=263603846B0D7C572C2DF3409ACD9C771F7CD994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:08:c0:63:a5:92:a7:6f:07:4e:ef:e9:bb:05:
19:36:5f:ec:85:9f:38:2b:e1:4d:e3:ee:7f:2c:fd:
d6:cd:33:01:2e:ad:48:55:e3:fc:73:6b:78:bd:7a:
23:5d:d8:e2:2b:07:f2:5d:fe:2c:bf:0c:96:a1:86:
64:6c:b1:81:9b:e6:e6:11:91:51:98:2a:e0:14:d7:
3b:8d:63:c5:f5:03:9d:d1:f0:be:74:f9:bb:ea:bd:
bf:3a:43:64:d3:3f:e5:50:aa:da:fe:01:e4:e5:26:
39:dd:8c:f4:55:00:98:4d:4e:03:3f:f6:5d:5e:33:
0d:57:68:f3:6a:c8:1c:25:55:36:3c:db:59:5d:36:
a5:49:c4:64:ed:d1:2f:e6:91:5f:ee:7e:f6:5a:63:
56:ae:19:e2:fa:d4:4c:1e:0f:42:89:25:45:fc:c8:
c6:19:fc:c5:33:c0:a5:91:9e:09:63:1e:55:3f:f9:
55:a8:ee:9c:dc:47:ca:8d:70:5a:7e:69:73:ad:d5:
d5:b4:4a:8a:f3:5b:67:e6:bc:19:01:ab:a2:8f:eb:
eb:69:da:20:27:2a:e8:9a:ef:5d:28:f0:19:a4:40:
37:9b:ad:77:53:a7:77:6d:40:4d:68:7f:77:fc:32:
02:ef:81:4f:b9:b2:3f:e8:d2:01:17:4c:bc:90:98:
ea:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:36:03:84:6B:0D:7C:57:2C:2D:F3:40:9A:CD:9C:77:1F:7C:D9:94
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200952.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2570::/44
2a06:a005:2630::-2a06:a005:266f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:39:1c:a9:71:18:a8:b8:af:2e:a2:e6:16:5d:81:e4:95:24:
1f:a8:b3:c2:71:65:09:92:d8:aa:61:83:da:3c:26:b9:52:5a:
05:f8:f5:76:fe:7a:2a:78:9a:23:3b:bc:46:79:da:8a:d0:be:
67:72:e6:c4:4a:f6:cb:5e:34:ea:65:cb:14:ed:57:a1:73:b1:
a2:d3:d1:e1:b3:a2:1c:41:86:4f:e2:41:9e:64:41:8f:43:a0:
15:c1:3c:b5:9c:04:53:40:cb:eb:ff:d0:59:fe:0b:bc:df:e7:
6b:03:8d:d4:fc:89:05:81:88:e0:bc:14:69:f1:a2:02:d0:69:
bb:d6:95:f5:17:bd:d5:c3:cc:6c:11:28:e7:20:ad:d4:44:d6:
51:95:71:74:97:d8:ee:5c:c9:16:c7:82:fa:17:a0:5b:78:f8:
6b:39:84:6e:b0:bb:9c:30:97:1d:33:ec:29:76:6a:8c:b4:b5:
d1:0c:75:55:43:03:35:f5:5d:c7:c6:33:73:69:ad:20:a2:3a:
7f:08:41:60:1f:d6:04:93:e0:b2:c0:11:92:58:80:a7:e7:b2:
90:0c:dc:75:83:5c:2e:de:44:0e:15:57:36:55:66:a0:81:8c:
de:b0:71:08:72:b9:92:55:2d:9e:c7:cc:09:51:28:10:5b:31:
66:3d:8a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org