Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201444.roa
File: AS201444.roa (raw, json)
Hash identifier: 048+iSQbR4RYuMC8louOeqBK8zWrPK4mwczDAgKsMvA=
Subject key identifier: 91:5D:A6:6E:05:EC:DC:D0:83:D6:F1:34:A2:A4:E3:7F:2D:87:37:F3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4F63A44B2EB95769F9BC64B8CB44E1E9CA854911
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201444.roa
Signing time: Tue 05 Dec 2023 05:44:21 +0000
ROA not before: Tue 05 Dec 2023 05:39:21 +0000
ROA not after: Tue 03 Dec 2024 05:44:21 +0000
asID: 201444
IP address blocks: 2a06:a005:d44::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:63:a4:4b:2e:b9:57:69:f9:bc:64:b8:cb:44:e1:e9:ca:85:49:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 05:39:21 2023 GMT
Not After : Dec 3 05:44:21 2024 GMT
Subject: CN=915DA66E05ECDCD083D6F134A2A4E37F2D8737F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:2d:a8:a3:6c:73:54:44:f5:7c:09:1f:ac:
46:bf:e5:a9:05:14:6f:ff:ce:0f:42:b9:5a:8e:3e:
dd:ba:bb:34:5f:f6:b3:2f:bf:6d:fd:5c:32:5d:16:
90:1b:8c:b6:cb:5f:df:65:98:47:be:96:7b:2c:99:
67:f7:d2:6a:e1:56:45:ce:1b:8f:40:91:56:a8:09:
06:ee:2d:7a:50:cc:1a:be:5e:9d:4a:c4:e3:bd:72:
d3:b1:7e:3d:c3:b6:8e:c9:6b:8a:b8:40:82:29:43:
ad:00:8e:c0:66:8b:4a:e9:8a:44:11:24:82:32:29:
a9:34:2c:32:28:66:2c:19:a3:f5:91:a6:74:bb:c7:
80:94:87:9b:53:cf:d8:3b:f5:b2:05:e4:bd:2e:7d:
95:b5:b7:46:e0:e5:85:ed:fc:af:10:8c:db:88:80:
06:9f:9e:3c:cb:9b:20:30:8a:a6:c7:9a:02:6d:1c:
75:c1:75:26:97:bf:5c:7e:1b:35:eb:23:8c:14:5e:
b2:ac:ef:a2:3e:66:c2:26:60:a9:90:62:9c:87:c0:
72:1c:da:54:21:13:9f:44:47:e2:12:47:3a:22:0f:
41:8e:29:2f:4e:c6:58:27:2d:43:14:c2:0a:a3:9c:
98:d2:22:32:79:88:39:03:cb:76:38:80:6f:28:16:
5e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:5D:A6:6E:05:EC:DC:D0:83:D6:F1:34:A2:A4:E3:7F:2D:87:37:F3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201444.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d44::/48
Signature Algorithm: sha256WithRSAEncryption
c3:3c:10:ff:91:9b:ab:e6:5b:2a:f0:04:44:f7:36:b5:d7:a9:
45:7b:5b:8d:df:22:4a:a5:50:02:4c:57:7e:28:1d:ec:87:52:
7f:45:6f:cd:5a:2f:06:4a:bf:72:f4:8a:84:0b:c8:05:71:95:
cc:cd:6a:07:dc:25:59:14:79:da:8d:af:65:dd:f3:8f:f5:fd:
71:73:da:e9:0d:e6:a8:c2:23:d9:87:70:6e:0e:40:39:7c:66:
2e:99:71:e5:7e:9d:99:bd:6b:38:da:1d:5c:3b:7c:ed:78:fb:
d8:70:9e:fc:02:e5:63:bd:f7:6b:59:77:35:f4:89:e8:47:8e:
dd:19:9b:54:67:ac:e1:d2:33:03:cb:e7:49:91:4a:01:52:45:
f3:c8:55:c2:bb:30:a4:d7:9a:a2:c1:03:7e:bd:14:da:04:eb:
d3:b5:6c:30:a2:24:0a:7c:91:21:80:7b:d5:8c:89:63:50:5e:
f9:bc:61:43:b5:37:fc:e0:41:87:2c:ab:74:69:ab:14:6b:ec:
da:2f:84:bd:9e:13:c0:a4:b3:ea:37:30:b9:b8:9d:26:0b:82:
12:3b:d6:45:bd:7d:4c:5d:40:b3:78:36:81:eb:d3:0f:7f:89:
80:ab:24:6a:39:c9:7b:fe:12:32:4b:27:17:7a:e4:c0:e1:10:
83:fe:18:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org