Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
File: AS202218.roa (raw, json)
Hash identifier: tjCftMMX5TaFRdzKlfUjMuwcniKJUqIUfesa9fq2eYw=
Subject key identifier: D1:C9:21:B8:79:C8:A5:82:53:90:59:BB:FC:1C:DE:E1:74:BB:62:12
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 15833058CF2CE16A393473EF1EA111004CD5A703
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 202218
IP address blocks: 2a06:a005:1c7b::/48 maxlen: 48
2a06:a005:23b0::/44 maxlen: 48
2a06:a005:23d0::/44 maxlen: 48
2a06:a005:23e0::/44 maxlen: 48
2a06:a005:23f0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:83:30:58:cf:2c:e1:6a:39:34:73:ef:1e:a1:11:00:4c:d5:a7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=D1C921B879C8A582539059BBFC1CDEE174BB6212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:9c:52:8f:67:67:12:ff:fb:ac:c4:be:20:
38:d8:02:62:e9:0d:f8:5c:ca:cc:5b:d7:a2:5b:da:
8c:65:a4:53:05:41:d1:3a:d5:aa:be:90:38:da:f4:
e7:c9:fc:70:f2:34:33:1e:e1:d9:80:2d:05:ec:d4:
0c:21:53:aa:2e:47:96:50:45:1e:6f:b9:1a:cd:9f:
62:d8:4e:cc:f1:b2:ac:05:0e:04:5a:d2:e4:64:f1:
b4:7b:34:8f:ac:61:70:74:97:14:b6:a0:8b:cf:a8:
52:c3:85:0a:45:4a:3c:c3:42:0c:f4:c8:1f:e5:3a:
d6:56:92:8e:e3:c4:7e:f3:44:6d:47:c1:84:89:c3:
fc:f7:87:9e:81:43:24:df:ea:65:41:8b:67:67:72:
2f:c1:21:93:1c:ae:ae:6f:24:5b:b3:b6:9f:c4:a7:
b7:cb:ef:e9:fa:3e:52:65:7a:e8:dd:9a:a1:46:fe:
44:47:8d:dc:28:c8:fe:2d:d9:0d:c4:33:59:dc:9d:
cb:7f:e2:dd:a5:8e:d5:ac:be:07:fc:82:96:57:2d:
10:57:5b:55:19:9f:c7:6f:1e:24:73:5b:fc:46:fc:
6b:5d:c7:77:ac:b4:18:34:59:2f:c5:14:df:61:de:
3d:24:52:e8:b1:87:3e:5f:0f:2d:33:32:07:23:ed:
ca:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C9:21:B8:79:C8:A5:82:53:90:59:BB:FC:1C:DE:E1:74:BB:62:12
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c7b::/48
2a06:a005:23b0::/44
2a06:a005:23d0::-2a06:a005:23ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
77:62:9f:d6:8a:20:a7:dc:fb:b2:28:49:3e:44:4e:05:27:97:
56:e4:73:2b:f9:3a:66:88:d4:40:bf:f5:ef:15:5e:8a:52:4c:
7f:d5:47:75:ab:54:ba:c8:6e:c3:37:dd:39:86:c9:63:da:dc:
14:3e:cd:ff:5c:ab:8e:2f:c1:a8:c6:f0:f7:4a:c1:43:08:b7:
d8:ad:a8:81:12:8a:65:83:0d:f3:91:8b:38:87:da:45:02:71:
ae:47:d2:c8:10:dd:f4:43:e6:b8:71:b1:33:85:f1:b5:90:4b:
ca:ae:11:20:31:f3:67:2e:26:28:e3:c5:ed:b8:d3:07:46:b1:
69:a5:4a:bc:44:c3:2a:9c:81:11:e6:6e:63:5e:5b:6b:f5:91:
df:3b:29:22:da:ee:ef:e9:cb:78:10:c0:31:41:95:e9:54:b0:
8e:8d:ef:00:71:8f:16:cd:06:d7:8b:8f:5e:08:4c:df:b6:f6:
85:05:27:72:2c:da:02:35:9b:49:83:21:b8:82:51:db:64:f5:
7e:a4:2a:4f:6a:8d:f9:9b:6e:79:95:0a:da:43:8a:ac:63:37:
51:bb:43:aa:fe:0b:88:08:c7:62:34:2b:db:05:99:0e:67:b5:
c1:2a:eb:65:77:67:87:45:87:58:02:bb:ed:b0:dd:01:9b:95:
c8:33:fd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org