Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201517.roa
File: AS201517.roa (raw, json)
Hash identifier: YST5mAMPJv/74lbG4ixcbY82hZXknBpHBQ6vCUmLigg=
Subject key identifier: BA:6B:54:DD:BD:93:C1:7F:88:51:55:C2:28:D3:94:E8:21:27:DC:1E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5F72EF9ABF8012228A1D195361F8B50C78EA68C9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201517.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 201517
IP address blocks: 2a06:a005:1550::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:72:ef:9a:bf:80:12:22:8a:1d:19:53:61:f8:b5:0c:78:ea:68:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=BA6B54DDBD93C17F885155C228D394E82127DC1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:10:41:02:b8:ba:f9:64:c7:d9:f8:f0:33:59:
92:16:70:3f:3f:0f:6b:ae:f6:fc:bc:a9:60:6d:c5:
37:be:3b:1d:3b:12:d0:0d:8b:1b:c6:4a:5a:25:ee:
23:eb:0f:57:5d:88:29:d5:04:69:e3:0c:6a:ca:77:
72:c8:fc:60:75:78:df:b7:aa:02:d5:7d:fa:89:53:
87:a5:8c:ed:fc:19:a1:a9:02:af:84:f7:77:ea:f5:
f5:6b:e3:75:3d:39:80:25:b0:2f:ea:d7:0d:91:a0:
99:1c:34:a9:cd:46:65:5a:a5:9b:f2:a3:1c:38:21:
f3:87:cb:5d:b8:07:50:9c:b7:ec:7e:c3:b9:b5:f7:
93:92:c7:be:b0:f7:aa:16:33:aa:df:11:92:3d:ff:
fb:d4:2f:e8:ef:ca:43:7f:23:bc:d9:4c:9e:49:27:
14:cc:75:89:dc:0d:8c:1f:79:8e:15:44:30:7e:1b:
23:b3:dd:98:e3:80:71:09:ed:8a:58:de:f3:d7:58:
1a:b7:0b:a2:ff:6f:30:53:1d:16:c8:8e:9d:64:5f:
ef:93:27:d9:3a:9e:30:c5:40:cd:b6:fb:b6:59:ca:
d1:0a:6d:8f:e2:20:b5:b7:20:d0:5f:be:74:6a:53:
ca:91:66:99:2a:da:3d:f4:ba:9e:7c:92:b9:07:01:
0c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6B:54:DD:BD:93:C1:7F:88:51:55:C2:28:D3:94:E8:21:27:DC:1E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1550::/44
Signature Algorithm: sha256WithRSAEncryption
46:fc:0d:3a:6b:a0:28:22:45:38:56:e1:32:29:37:17:7a:b7:
ef:63:63:cb:58:14:04:b5:3c:58:b3:68:1d:bb:5d:26:9b:0a:
8c:67:cb:36:f2:7a:72:17:99:76:f1:98:08:db:d4:b9:69:79:
92:95:bf:80:97:70:09:8b:79:f0:37:3b:2e:b2:ba:a0:2c:5e:
90:e0:8a:23:6a:9c:69:0d:7e:86:8a:c9:d5:24:bf:bb:c2:e7:
2a:2a:8e:38:51:fe:76:40:be:c0:60:b2:78:c9:e6:11:39:78:
99:53:14:a8:0a:ae:3e:3a:f0:ad:70:92:f7:3b:7d:f3:07:4f:
8c:8a:e2:7d:0e:47:6a:b3:b2:49:7b:74:25:d9:28:ae:6c:39:
55:34:10:36:9c:70:25:e2:d0:e7:af:ef:4e:05:64:79:63:ab:
62:a4:1f:41:32:00:d2:0a:33:04:a8:c2:e4:05:75:67:ff:49:
7e:3d:07:eb:a0:e2:ad:51:ed:90:d5:04:c5:83:17:10:af:f9:
dd:4c:55:c2:ba:18:55:67:64:36:3e:e4:a7:6f:e6:aa:29:31:
f1:1b:9e:7d:b3:7a:19:35:e6:9a:44:9e:28:b3:ce:20:c3:88:
9d:24:b7:3c:75:1f:cd:6b:c2:f6:30:2c:b2:5b:4e:8d:6c:38:
ce:58:5e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:30 2024 by rpki-client on console-ams.rpki-client.org