Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200959.roa
File: AS200959.roa (raw, json)
Hash identifier: CgtkJMbkF+5t/W/GINVOO/Z765DK+ybOnw3FDkO3KtY=
Subject key identifier: 7C:D9:E2:E6:C4:99:05:38:54:CC:5C:F8:0F:EE:28:E5:F6:7F:10:58
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1FB1EB4E3408145FBEED3EE830697654415DAA76
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200959.roa
Signing time: Mon 01 Jan 2024 16:44:21 +0000
ROA not before: Mon 01 Jan 2024 16:39:21 +0000
ROA not after: Mon 30 Dec 2024 16:44:21 +0000
asID: 200959
IP address blocks: 2a06:a005:e50::/44 maxlen: 48
2a06:a005:e70::/44 maxlen: 48
2a06:a005:2040::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:b1:eb:4e:34:08:14:5f:be:ed:3e:e8:30:69:76:54:41:5d:aa:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 1 16:39:21 2024 GMT
Not After : Dec 30 16:44:21 2024 GMT
Subject: CN=7CD9E2E6C499053854CC5CF80FEE28E5F67F1058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:35:57:4a:3d:12:eb:7f:99:3e:db:b7:ae:53:
0d:99:fc:b1:84:9c:b7:cb:ae:e6:d0:b7:12:95:ba:
9f:5b:7a:0e:32:cf:67:06:3b:2f:64:0d:0e:be:4e:
a5:86:07:c9:44:55:38:4e:80:d0:99:fb:8d:21:49:
2d:c2:ac:5e:17:37:13:fd:2c:6c:ab:55:52:8c:77:
75:81:20:3a:34:f9:85:a7:32:45:55:ea:64:b3:31:
d7:52:85:8b:b3:27:5c:08:81:b3:36:68:ad:58:7f:
9f:3b:bf:88:49:81:10:c5:b6:ba:5d:a5:72:d0:c3:
2e:83:2d:d8:91:a0:2e:25:5b:2c:45:45:c9:b9:5d:
25:65:14:aa:0b:c5:6d:55:97:fa:16:26:12:b2:60:
19:c4:cb:ae:e4:86:33:aa:c6:77:aa:57:ff:01:af:
3d:2d:7c:d2:31:13:d5:90:14:86:85:ec:a0:f8:a6:
d6:94:95:f2:d5:c4:4a:7e:97:32:cb:37:9f:f7:3c:
a0:5f:9e:cf:7b:b7:20:bf:e9:bd:59:ab:8e:40:1e:
b1:2a:f2:cb:38:0d:49:11:e6:17:8e:68:13:70:24:
84:36:5d:7b:b1:a5:71:11:10:cb:05:8a:a1:c6:1e:
b6:0c:01:43:34:b9:71:41:35:b6:31:9a:08:1b:9c:
11:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D9:E2:E6:C4:99:05:38:54:CC:5C:F8:0F:EE:28:E5:F6:7F:10:58
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200959.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:e50::/44
2a06:a005:e70::/44
2a06:a005:2040::/44
Signature Algorithm: sha256WithRSAEncryption
2b:87:db:76:07:e2:ce:23:01:6e:96:66:78:c5:1b:f1:1e:95:
5c:bd:fe:6e:14:bb:c0:b0:89:9d:68:a4:ab:17:5b:9c:0e:d1:
c0:1a:8b:4c:57:6b:2a:2f:21:46:e7:fb:6f:4c:9f:41:c9:f3:
30:51:5b:5c:cb:9c:8e:63:ac:39:b6:53:be:84:be:da:a9:2c:
62:23:18:d5:93:13:1f:18:c5:d1:5d:9e:b3:4e:2f:8c:9d:a8:
15:93:b0:2c:40:b9:22:c9:be:e4:57:82:d2:e2:6a:51:c2:91:
0a:72:b2:05:fb:fc:cb:92:09:fb:13:58:86:ba:4a:2f:4b:06:
5e:57:c7:78:1f:b9:8c:a0:da:b1:9e:19:d4:16:7a:59:9d:7a:
a1:52:c6:fc:dd:3b:3d:6c:d5:77:98:52:c9:89:d6:1c:f2:1f:
b8:3b:d6:81:e2:61:70:ff:39:95:01:99:b5:be:1e:37:61:3e:
27:99:83:b7:91:7c:4c:20:82:32:61:61:36:8b:ba:ba:00:51:
da:94:8e:7f:6c:0e:f0:8c:4c:78:69:65:fa:35:71:f6:d8:dc:
31:26:02:7e:a6:73:69:3e:2a:e8:de:49:e3:ec:99:b8:77:bb:
67:5d:36:ee:9c:cf:de:f2:fc:31:02:f2:e6:08:69:91:8e:04:
81:9d:e2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:23 2024 by rpki-client on console-fra.rpki-client.org