Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200965.roa
File: AS200965.roa (raw, json)
Hash identifier: LvFZfS+Zwr+UEGJC6HDqQDJYr8YlG1Z6zX/TUW/lKW0=
Subject key identifier: 1A:5C:40:90:85:EB:1B:23:21:6C:EB:C5:77:85:2C:A5:D4:A2:EC:EE
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4B2EB12B89146BC3B0C9ECCBC74A9F843BE522F8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200965.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 200965
IP address blocks: 2a06:a005:24a0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2e:b1:2b:89:14:6b:c3:b0:c9:ec:cb:c7:4a:9f:84:3b:e5:22:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=1A5C409085EB1B23216CEBC577852CA5D4A2ECEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:1a:11:7b:49:07:e9:30:72:98:f0:ca:ad:
fb:dc:37:1f:85:99:1d:75:ee:ae:21:0f:e7:da:df:
3e:f1:79:13:f6:7f:4e:33:58:c5:68:a7:1f:f5:64:
ae:50:92:24:02:70:1d:d4:de:74:cd:c9:b1:0b:94:
49:ab:dd:2a:c4:c9:f5:01:96:f2:d9:9d:4d:b5:19:
d3:60:fc:42:89:2c:29:eb:fb:02:cd:11:b8:c9:1c:
3f:bd:f5:cb:cd:f3:66:90:4c:6a:b4:9e:92:3a:b5:
6f:38:dd:dc:29:ae:ac:4e:d0:94:0c:75:2e:4c:d2:
be:f0:01:c0:4c:b7:e2:2a:cd:4e:a2:a1:cc:86:03:
92:e0:73:ac:5a:74:b4:6b:e5:df:c1:03:2a:85:47:
fc:75:dc:14:8f:85:66:52:42:6b:2a:01:1e:95:77:
08:36:ce:db:81:34:d7:aa:6a:3c:d5:78:51:13:4e:
d2:d0:5f:aa:8e:7d:bc:ca:b5:5f:7b:50:57:d9:df:
d8:52:54:95:b2:dd:49:3e:07:9f:5c:ae:27:41:0f:
f7:a7:aa:0f:d7:98:85:50:3c:61:3b:b6:15:d8:44:
93:e6:dd:80:ef:75:26:d8:da:21:c7:a3:73:18:48:
86:77:3d:33:6b:e7:a7:3c:fb:84:52:ab:ba:20:98:
05:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5C:40:90:85:EB:1B:23:21:6C:EB:C5:77:85:2C:A5:D4:A2:EC:EE
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200965.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:24a0::/44
Signature Algorithm: sha256WithRSAEncryption
a8:17:aa:47:cb:21:ec:f1:b6:36:79:aa:a2:b1:c5:04:1a:56:
fe:e9:48:ba:7d:5b:29:b6:7c:b6:a5:c3:d7:30:2e:67:4c:15:
26:dc:36:2b:a7:22:ba:f9:49:b7:0d:2e:21:4d:3a:b4:b6:27:
86:72:bd:a4:f9:c6:a0:3e:fe:c4:54:74:16:24:a7:90:e2:a6:
4d:1b:44:87:b6:6b:07:a5:f6:fd:3a:01:10:ae:35:78:97:87:
de:f0:66:01:e4:17:b9:9d:83:a6:a7:4f:8e:85:ef:e7:75:24:
6b:4e:18:cd:96:7d:47:db:b5:4b:89:32:2b:b6:73:6c:ab:70:
7a:5a:f4:bb:01:f6:a2:c2:d1:62:c8:bb:e7:86:57:78:82:b7:
6e:58:00:47:c4:c7:6d:22:fd:7c:9d:da:1b:a5:de:8e:3d:d8:
20:11:0c:ab:10:07:ef:ec:e9:8e:4b:a4:6e:0a:e9:a2:49:16:
5d:77:33:ab:d3:0c:94:3b:39:94:df:9b:da:f4:f0:72:c4:b2:
45:4a:d7:f2:8d:de:fa:94:37:03:da:7a:73:3c:2b:67:b9:b8:
a4:65:1b:08:d5:af:e1:de:e3:d1:20:13:66:55:9f:87:3e:ac:
04:c7:be:4a:c7:23:83:6d:2f:82:6d:ce:64:dd:e6:22:88:e0:
5b:89:b2:14
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUSy6xK4kUa8OwyezLx0qfhDvlIvgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUwMjM5MTFaFw0yNDEyMDMwMjQ0MTFaMDMxMTAvBgNV
BAMTKDFBNUM0MDkwODVFQjFCMjMyMTZDRUJDNTc3ODUyQ0E1RDRBMkVDRUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJohoRe0kH6TBymPDKrfvcNx+F
mR117q4hD+fa3z7xeRP2f04zWMVopx/1ZK5QkiQCcB3U3nTNybELlEmr3SrEyfUB
lvLZnU21GdNg/EKJLCnr+wLNEbjJHD+99cvN82aQTGq0npI6tW843dwprqxO0JQM
dS5M0r7wAcBMt+IqzU6iocyGA5Lgc6xadLRr5d/BAyqFR/x13BSPhWZSQmsqAR6V
dwg2ztuBNNeqajzVeFETTtLQX6qOfbzKtV97UFfZ39hSVJWy3Uk+B59cridBD/en
qg/XmIVQPGE7thXYRJPm3YDvdSbY2iHHo3MYSIZ3PTNr56c8+4RSq7ogmAX3AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUGlxAkIXrGyMhbOvFd4UspdSi7O4wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAwOTY1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBSSgMA0GCSqGSIb3DQEBCwUAA4IBAQCoF6pH
yyHs8bY2eaqiscUEGlb+6Ui6fVsptny2pcPXMC5nTBUm3DYrpyK6+Um3DS4hTTq0
tieGcr2k+cagPv7EVHQWJKeQ4qZNG0SHtmsHpfb9OgEQrjV4l4fe8GYB5Be5nYOm
p0+Ohe/ndSRrThjNln1H27VLiTIrtnNsq3B6WvS7AfaiwtFiyLvnhld4grduWABH
xMdtIv18ndobpd6OPdggEQyrEAfv7OmOS6RuCumiSRZddzOr0wyUOzmU35va9PBy
xLJFStfyjd76lDcD2npzPCtnubikZRsI1a/h3uPRIBNmVZ+HPqwEx75KxyODbS+C
bc5k3eYiiOBbibIU
-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org