Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
File: AS201763.roa (raw, json)
Hash identifier: EOx1vZEycWhWMIEAGu7QumFBWxiRMmT+h11ceWrHqoE=
Subject key identifier: C1:33:DB:C1:0E:BD:00:B4:B0:4D:F4:C3:58:69:84:A7:6E:B8:78:8B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 41A65B5E4978C6C9D060EF055A092D02CEA4DE6A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 201763
IP address blocks: 2a06:a005:27f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:a6:5b:5e:49:78:c6:c9:d0:60:ef:05:5a:09:2d:02:ce:a4:de:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=C133DBC10EBD00B4B04DF4C3586984A76EB8788B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:92:81:8c:66:bc:ff:ed:6b:d5:25:f6:66:
f8:21:02:80:2b:8f:f5:d0:82:df:c5:e8:bf:13:6e:
a4:a0:97:42:68:2c:27:1e:69:8d:c0:ef:04:2d:e6:
6e:3d:a2:8c:57:27:9b:0f:88:e1:80:43:6f:62:9b:
71:24:27:8e:62:4d:8a:5a:1e:9d:90:1c:3e:9d:0e:
84:89:d1:ff:7a:85:86:8b:41:d4:c9:5e:c0:e8:c1:
74:61:27:58:0f:82:20:09:ab:53:f1:75:ea:c7:3b:
47:de:e8:e2:04:41:bf:8d:bb:bd:68:ef:5d:bb:82:
7c:ee:77:82:a5:13:32:c9:c4:6c:c5:93:fb:ff:7e:
69:c2:bd:59:4c:c4:68:47:45:7c:79:f1:f8:c8:02:
f3:7a:43:a6:5a:86:f4:92:c3:e7:27:12:6c:56:7a:
17:5c:c5:f3:30:c9:e3:e4:79:69:2e:93:5c:a2:dc:
c3:5f:ed:02:df:5b:d6:01:30:c6:c3:57:84:be:54:
d4:7e:d5:07:b2:fd:74:cb:d9:89:6b:a4:51:46:01:
7a:46:36:10:11:27:ff:13:22:6b:fe:97:d2:1f:d9:
3b:d7:78:4b:e4:fb:16:46:1e:05:4c:90:f4:68:94:
04:cb:2d:32:53:5d:76:46:36:2f:a0:fe:c8:7d:02:
82:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:33:DB:C1:0E:BD:00:B4:B0:4D:F4:C3:58:69:84:A7:6E:B8:78:8B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:27f0::/44
Signature Algorithm: sha256WithRSAEncryption
a0:ba:bf:a2:52:a0:62:11:48:f5:32:95:43:2e:08:18:bf:c7:
16:5d:d7:87:52:2e:5d:1b:f2:98:6b:d6:bc:7b:7a:19:1a:a2:
a0:36:ae:41:25:fc:20:8f:32:9f:ad:d0:08:04:f5:2e:8a:85:
1f:ef:60:b8:bd:2d:31:7d:dd:f4:dd:b0:29:4e:4d:2f:48:d2:
68:b2:90:b0:4f:c6:ee:b4:94:08:cf:8c:77:ae:b6:7a:07:33:
36:ce:e9:b3:e9:79:8a:67:03:af:96:a2:cc:6c:22:53:41:f8:
2f:ca:6e:ee:bc:fb:29:44:62:af:01:16:57:4e:35:5b:6d:ef:
2c:b0:7d:f4:26:01:f0:81:b8:b7:53:0d:34:e0:95:ee:4c:a6:
14:1e:6f:0a:0d:de:9e:03:27:f9:3b:15:d8:ed:44:50:21:89:
00:f9:c3:7b:75:33:51:42:0f:e9:b4:10:cb:9e:fb:52:58:73:
08:11:22:23:1a:52:3c:79:94:8e:1f:c7:f2:60:e4:64:f1:07:
29:75:96:82:5f:4a:28:4b:1d:30:c2:dc:6e:1f:16:67:7e:cc:
05:c9:46:18:59:8d:78:a5:dc:e4:44:ec:48:ce:fe:e7:70:7f:
60:04:27:b3:dc:fb:69:0a:f7:79:b9:43:da:f4:d8:e5:55:e9:
92:d9:20:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org