Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202197.roa
File: AS202197.roa (raw, json)
Hash identifier: QTyLB9eJ+AOWbA4FRCQSTelf+McjO7xBgNDWSCEaMgI=
Subject key identifier: AF:3E:30:44:AC:C4:6E:B6:4A:9F:F0:4F:C2:3E:72:1A:6A:6B:7C:0E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 24389CBDEE1675827DCA4D8229E6034D77010133
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202197.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 202197
IP address blocks: 2a06:a005:1fc0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:38:9c:bd:ee:16:75:82:7d:ca:4d:82:29:e6:03:4d:77:01:01:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=AF3E3044ACC46EB64A9FF04FC23E721A6A6B7C0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:7e:ab:9a:bb:d8:ae:bf:7b:bf:f3:96:fa:
6a:bb:f7:53:b4:b0:b8:8e:eb:34:49:4f:f9:e3:40:
1c:43:b9:91:ec:c7:b5:ea:1f:b9:69:2f:57:a0:fc:
de:68:a0:6e:ec:bb:c9:7e:cc:5e:db:f5:ff:60:e7:
f5:a2:71:2c:cd:03:fb:ef:e0:c8:78:91:80:c0:b8:
82:96:f8:c6:cf:0a:61:bc:b7:f5:03:fe:a1:a7:ea:
fe:08:63:1d:99:bc:5b:4e:4c:40:1e:15:13:f5:67:
19:6b:b6:d7:5a:23:3b:0a:1e:fe:8e:56:35:9b:cf:
ed:77:eb:62:6c:f3:05:fa:99:a6:29:fe:71:35:e8:
b8:57:a6:f4:99:6a:7f:83:a0:d1:a1:e4:78:99:5b:
e3:d2:6a:e0:62:9b:f7:d2:66:e6:dc:53:81:34:37:
26:45:02:fb:d7:63:77:0e:dc:b8:bd:99:1f:a6:62:
e6:c9:7a:56:b8:9f:5a:81:f2:d5:80:d9:8c:48:43:
ab:0c:ac:48:af:3b:20:80:34:09:78:a4:1d:09:6f:
8b:c2:18:6c:39:2b:37:5f:34:c4:0b:af:51:df:f2:
12:40:dd:f2:4b:ad:11:11:25:79:79:cc:c1:70:90:
9b:2c:3e:b8:4d:1e:c6:d2:42:5f:00:42:b8:ff:6f:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3E:30:44:AC:C4:6E:B6:4A:9F:F0:4F:C2:3E:72:1A:6A:6B:7C:0E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202197.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1fc0::/44
Signature Algorithm: sha256WithRSAEncryption
94:b9:ef:b3:39:6a:cc:a3:20:2f:0e:78:73:df:90:e2:b5:3a:
f1:59:fd:65:05:0f:41:07:fd:f8:25:4e:13:9a:41:4c:cb:d8:
f3:17:9e:37:b3:2f:41:fc:0d:03:4a:22:d5:b7:d4:18:85:cd:
2d:73:a7:9b:01:cd:49:64:e2:57:64:84:cc:2a:58:72:43:6e:
85:68:ab:ef:f9:6b:8d:3b:08:57:d9:64:d4:78:b7:fc:5c:68:
b4:38:a7:52:e8:9c:1c:7e:fd:66:8c:48:e2:55:fa:d7:44:51:
29:f6:0e:25:fd:56:36:8c:2e:5b:de:fa:07:b8:eb:c4:c8:19:
86:78:f1:23:e9:d6:39:3c:8b:8c:e8:66:be:34:b9:92:e3:f6:
3f:25:ad:5f:9f:83:0c:7b:37:ed:2d:9a:2d:a3:e0:13:6d:ec:
da:71:29:fa:14:68:79:c6:7a:bd:8b:47:3c:f7:ff:82:57:1a:
53:48:ee:af:57:83:63:48:bf:0e:a3:68:96:f3:2c:cf:bc:57:
10:f8:e2:62:d7:e8:17:61:4e:1b:c0:cd:58:23:e2:56:d0:a7:
f1:9f:a6:fd:c2:a3:97:77:0a:94:c6:40:ed:fb:8f:08:c7:df:
31:63:ca:ce:f6:cf:84:0f:7a:f2:00:fd:2e:25:47:74:83:2c:
ad:af:c6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org