Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
File: AS201763.roa (raw, json)
Hash identifier: B/iHL7a2J6WhCZ7JpGEaGxLf3GF5Sy8BIp4rmodoPYU=
Subject key identifier: 48:C4:B9:CA:43:66:46:6A:CA:D2:DE:B1:32:5A:7E:9C:9A:61:5E:03
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7BFBD23EA493502D1D8AED80E09A49953A8155C1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 201763
IP address blocks: 2a06:a005:27f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:fb:d2:3e:a4:93:50:2d:1d:8a:ed:80:e0:9a:49:95:3a:81:55:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=48C4B9CA4366466ACAD2DEB1325A7E9C9A615E03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:f6:ef:13:90:8b:80:7c:19:e1:d5:64:f3:
b1:aa:29:a5:d3:bf:0c:3c:fc:0b:4f:d0:f7:07:80:
ee:d1:7a:47:54:30:15:84:30:ad:a9:ce:f6:08:97:
d1:3c:d7:82:c7:9d:89:59:0d:f6:d2:4c:5a:2d:d0:
5d:8f:d7:c2:69:a8:5a:d8:d4:be:82:45:f2:05:9f:
26:b0:62:ea:ff:b1:61:cf:92:9d:f0:34:9b:fd:24:
25:e5:48:6d:fc:1d:dd:15:6f:0f:b7:ad:f4:91:e7:
91:dd:b3:e6:4f:09:d3:24:b9:74:ab:84:a5:3e:67:
26:f2:65:2e:4e:0c:c4:0c:69:fe:78:2c:18:3f:54:
02:b3:ab:3b:42:83:6c:80:14:43:c6:fb:76:e9:b5:
97:71:70:e4:99:9e:c9:40:d5:15:ad:58:d0:5c:bc:
3a:1b:9f:2e:09:94:dd:ea:e8:c8:5a:ad:2b:09:83:
e9:5f:8a:c8:8a:49:ca:89:a0:67:ef:86:80:3b:67:
56:6d:e0:04:58:d7:8a:92:50:0c:41:db:73:54:47:
2f:70:15:28:1d:4b:a9:80:3d:4e:42:16:e9:3b:24:
10:5d:bd:7e:3e:2d:9d:25:dc:66:a4:fd:25:d1:8b:
ee:4c:d4:76:87:b1:59:e9:83:81:38:bc:d6:6e:43:
95:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C4:B9:CA:43:66:46:6A:CA:D2:DE:B1:32:5A:7E:9C:9A:61:5E:03
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201763.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:27f0::/44
Signature Algorithm: sha256WithRSAEncryption
66:6a:2c:04:7a:29:72:26:65:ab:9d:09:e4:44:8a:88:b1:fc:
30:ea:e5:92:17:44:79:cc:d0:61:39:bb:5a:59:55:0a:82:d9:
71:13:d3:e3:88:e0:dc:24:e6:a2:48:74:3a:8b:c8:7d:54:bf:
25:69:b5:03:40:06:59:45:80:11:e6:3e:cd:91:5e:2c:f8:bc:
e0:a2:dc:10:76:98:c4:84:09:f7:a2:03:2c:4d:cd:7c:74:b2:
d8:53:28:fe:e5:ac:be:b5:9a:5d:6b:b4:6b:d0:6e:40:82:0b:
4a:c9:5b:01:46:31:5b:76:de:93:3b:55:34:19:f0:d0:bc:82:
0e:6a:32:b1:08:6b:60:26:69:41:83:ca:20:72:3d:d7:15:6d:
df:12:86:b5:78:21:10:8d:24:3c:27:bf:a7:9e:17:5a:b1:46:
da:c4:54:48:2a:8f:14:fc:3d:53:3f:3b:e9:fc:b3:c5:92:0d:
9a:16:58:62:53:4e:8d:91:34:64:22:11:97:71:c4:35:2b:cc:
74:48:56:5d:6c:3d:41:6f:51:0d:9f:6a:bc:42:43:62:5d:f5:
bd:65:af:41:d6:fd:3e:51:6f:f4:34:fb:a8:b8:a6:1c:bc:09:
45:ab:b0:d2:ff:e3:51:74:0c:80:fa:1d:5b:49:d9:db:63:97:
84:61:5b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:23 2024 by rpki-client on console-fra.rpki-client.org