Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202002.roa
File: AS202002.roa (raw, json)
Hash identifier: IPGsXTyaLbiCl0zdEnTg4FsTTq+Y3VHDFy7gSpEj8Gc=
Subject key identifier: 9F:4C:A0:A6:C5:E0:DE:BA:C3:29:23:8A:34:33:2A:13:0B:76:D1:AA
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6F12864E546512AD5A8F4FD302851E929AF627F5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202002.roa
Signing time: Fri 13 Dec 2024 02:56:30 +0000
ROA not before: Fri 13 Dec 2024 02:51:30 +0000
ROA not after: Fri 12 Dec 2025 02:56:30 +0000
asID: 202002
IP address blocks: 2a06:a005:cf0::/44 maxlen: 48
2a06:a005:2d20::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:12:86:4e:54:65:12:ad:5a:8f:4f:d3:02:85:1e:92:9a:f6:27:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:30 2024 GMT
Not After : Dec 12 02:56:30 2025 GMT
Subject: CN=9F4CA0A6C5E0DEBAC329238A34332A130B76D1AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:d8:c3:29:40:e1:95:78:3f:17:94:bf:e8:
47:ae:5a:78:ae:ff:8c:a5:0c:9d:35:28:b8:46:dd:
1a:0f:4d:72:1d:a5:9b:4b:a1:94:db:ea:ed:cf:4f:
98:f3:b3:a2:d9:b0:ef:4c:d6:93:e1:64:84:6f:0f:
28:5b:b5:25:3c:1d:b9:5b:10:e4:26:83:55:aa:2c:
f8:79:fd:b4:b6:1d:b6:ad:19:58:ee:d3:c9:aa:12:
72:3a:7f:37:66:12:81:67:a9:0e:e8:d6:43:6b:6f:
f9:e7:e6:22:5c:81:4e:e3:32:ae:56:b9:6b:36:dd:
9c:f6:c7:1f:29:4c:99:05:4c:8a:4f:d4:8c:f1:64:
6d:c1:3f:82:5a:2e:64:4b:8a:69:13:28:2a:d2:c7:
4e:91:ce:98:9c:13:b6:5e:3e:a4:fd:37:16:c2:c3:
ea:cc:7d:0a:63:5e:0d:1b:63:fa:d7:78:fe:33:93:
0a:43:13:86:80:71:9f:5d:b0:b0:5f:1e:79:f3:c7:
f1:d4:0d:a8:92:98:a9:1f:bf:73:45:5e:f2:92:a9:
85:fb:88:51:a1:f3:14:9c:c6:06:85:74:c5:96:2f:
84:fc:9c:e5:21:d7:9b:98:e4:bc:c1:73:0c:57:20:
3b:f3:a4:38:7e:fe:39:ed:2b:28:65:6a:65:de:37:
26:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4C:A0:A6:C5:E0:DE:BA:C3:29:23:8A:34:33:2A:13:0B:76:D1:AA
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202002.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:cf0::/44
2a06:a005:2d20::/44
Signature Algorithm: sha256WithRSAEncryption
d3:6e:d2:a0:26:41:13:60:ea:a6:cc:a7:8b:d4:8c:98:b1:80:
76:ff:9b:51:61:29:79:eb:c2:f3:a3:a9:7d:44:2b:6d:e1:09:
a0:2d:8f:92:c3:b5:73:41:37:b8:af:72:4a:d9:f5:23:e2:7e:
d7:93:d1:68:94:37:cd:42:51:9c:0b:1f:af:fc:f8:f3:89:c2:
03:e9:b3:f3:03:ef:4d:9e:5f:3e:06:f1:65:57:33:f4:91:e3:
3e:0d:44:0c:22:c1:0f:41:06:91:ff:e0:ac:a3:46:cb:f3:57:
d0:de:be:6c:4b:8c:40:d7:18:7a:bc:41:52:ef:c6:5c:6e:e0:
ff:d1:70:21:8e:29:5b:7f:e3:5d:95:22:35:4b:2d:c3:a3:0c:
f0:df:e4:54:02:47:a4:ea:56:39:f8:65:9b:f6:dd:4a:f5:c0:
8d:6c:39:f8:ec:cf:da:63:47:85:b2:81:ab:32:70:20:7f:72:
c2:f1:3f:f5:ff:9a:08:11:3d:36:2d:e4:37:9e:76:32:48:98:
bd:44:0f:ab:25:4b:1b:55:ec:ac:0d:a7:25:9e:b2:a1:d8:e7:
ca:7d:40:7d:8d:c2:f5:15:89:9c:8d:9a:67:21:66:36:85:c7:
dc:84:14:7a:87:ca:87:70:b5:4a:c1:e7:70:8f:44:90:48:a6:
83:f3:88:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:39:24 2025 by rpki-client