Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
File: AS202222.roa (raw, json)
Hash identifier: GRKfOpbkyR8fwAjC0l02BrVtR8E3dWGydKbKNXUCOHQ=
Subject key identifier: 25:3D:3D:3C:D3:8F:C2:28:AD:C0:3A:64:A0:49:7C:9E:77:92:4C:15
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4E73C66910E49EBA0FEDB0EDF17F3D928C30F4BB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
Signing time: Tue 05 Nov 2024 03:39:59 +0000
ROA not before: Tue 05 Nov 2024 03:34:59 +0000
ROA not after: Tue 04 Nov 2025 03:39:59 +0000
asID: 202222
IP address blocks: 2a06:a005:d2c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:73:c6:69:10:e4:9e:ba:0f:ed:b0:ed:f1:7f:3d:92:8c:30:f4:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:34:59 2024 GMT
Not After : Nov 4 03:39:59 2025 GMT
Subject: CN=253D3D3CD38FC228ADC03A64A0497C9E77924C15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:e9:80:43:86:49:d6:42:c4:87:c7:0c:f0:
2e:b6:2f:cc:ec:ac:24:50:2d:49:4d:65:77:8a:26:
92:33:3a:5b:67:63:b6:9d:de:55:a1:8e:2e:e0:a9:
8f:6c:6e:99:6d:f5:b7:9c:2c:07:51:98:ae:e8:e0:
23:5d:0c:2d:3e:3d:27:33:b4:eb:32:9f:d9:a1:a2:
cb:63:eb:58:c0:a2:e7:0b:ca:2e:48:6b:88:ce:80:
b5:81:bf:de:c6:92:8b:30:9b:ab:63:f3:51:3f:bc:
79:78:86:f0:88:37:f0:1f:a4:8a:6f:80:0d:8f:fe:
49:bd:a0:5b:fa:42:96:4f:d0:98:d4:44:9a:ba:24:
44:67:42:d8:c9:65:3c:b6:60:db:45:4f:f0:d3:a0:
8a:c6:6f:d7:c4:1f:d7:05:ab:5c:1d:13:e4:1b:4f:
37:57:29:00:2a:bf:59:69:89:f0:9c:5c:bf:e1:4a:
9b:0f:0e:5d:fc:ce:13:0b:37:a0:58:62:fa:ff:7d:
96:10:08:58:91:76:0f:c8:58:bd:d0:a5:a5:48:cb:
87:9a:bb:8f:63:31:b2:89:32:f5:e6:cb:e4:f5:ca:
07:82:8c:71:09:2c:48:19:2a:c7:6d:4c:b8:9a:b3:
e9:fd:5a:e3:ea:e2:5a:5b:fd:6c:fd:19:b2:e9:03:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3D:3D:3C:D3:8F:C2:28:AD:C0:3A:64:A0:49:7C:9E:77:92:4C:15
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d2c::/48
Signature Algorithm: sha256WithRSAEncryption
78:24:4f:ad:4d:eb:db:2b:b2:5e:c9:8d:62:1e:ba:08:d7:59:
ac:ee:b2:72:a4:b9:bb:8b:6e:44:c4:3a:1b:ff:eb:37:c7:f6:
5a:be:c6:77:17:70:75:4a:65:5a:ff:67:2f:53:87:5e:04:43:
de:6b:b6:04:14:75:e9:05:79:8c:7e:45:d8:6b:38:16:32:a4:
32:1a:33:72:4e:24:be:14:90:c9:1e:6a:55:61:3c:61:df:5c:
74:49:a1:5e:c4:1b:0e:a8:7a:0d:57:e0:56:76:06:3d:ca:ee:
54:90:12:9e:99:1b:c6:2a:f2:7c:fa:ec:e7:bb:60:16:1e:94:
f0:4e:25:45:b2:5a:0c:ed:2b:d0:e2:4c:c5:f2:fc:be:b4:20:
b6:7a:3e:fb:4b:1b:fc:a0:36:08:77:4e:24:7b:ac:b3:4a:7e:
b6:1d:ee:4d:44:cc:ea:84:b0:e1:f1:38:f1:7d:6f:cf:43:c6:
1e:b4:05:fd:98:6f:08:e6:c4:28:b1:84:9a:37:72:63:4c:ca:
36:d4:70:5f:e3:db:dd:61:99:ea:3e:2b:83:cf:e6:85:cc:1a:
e1:d4:6b:a2:19:7b:47:c0:be:06:e2:37:d0:64:9d:1b:ab:ce:
d0:80:76:a2:42:59:98:07:6e:14:c3:e4:8f:fe:bb:ae:27:5f:
87:70:6a:84
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUTnPGaRDknroP7bDt8X89koww9LswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM0NTlaFw0yNTExMDQwMzM5NTlaMDMxMTAvBgNV
BAMTKDI1M0QzRDNDRDM4RkMyMjhBREMwM0E2NEEwNDk3QzlFNzc5MjRDMTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4kumAQ4ZJ1kLEh8cM8C62L8zs
rCRQLUlNZXeKJpIzOltnY7ad3lWhji7gqY9sbplt9becLAdRmK7o4CNdDC0+PScz
tOsyn9mhostj61jAoucLyi5Ia4jOgLWBv97Gkoswm6tj81E/vHl4hvCIN/AfpIpv
gA2P/km9oFv6QpZP0JjURJq6JERnQtjJZTy2YNtFT/DToIrGb9fEH9cFq1wdE+Qb
TzdXKQAqv1lpifCcXL/hSpsPDl38zhMLN6BYYvr/fZYQCFiRdg/IWL3QpaVIy4ea
u49jMbKJMvXmy+T1ygeCjHEJLEgZKsdtTLias+n9WuPq4lpb/Wz9GbLpA15jAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUJT09PNOPwiitwDpkoEl8nneSTBUwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAyMjIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQ0sMA0GCSqGSIb3DQEBCwUAA4IBAQB4JE+t
TevbK7JeyY1iHroI11ms7rJypLm7i25ExDob/+s3x/ZavsZ3F3B1SmVa/2cvU4de
BEPea7YEFHXpBXmMfkXYazgWMqQyGjNyTiS+FJDJHmpVYTxh31x0SaFexBsOqHoN
V+BWdgY9yu5UkBKemRvGKvJ8+uznu2AWHpTwTiVFsloM7SvQ4kzF8vy+tCC2ej77
Sxv8oDYId04ke6yzSn62He5NRMzqhLDh8TjxfW/PQ8YetAX9mG8I5sQosYSaN3Jj
TMo21HBf49vdYZnqPiuDz+aFzBrh1GuiGXtHwL4G4jfQZJ0bq87QgHaiQlmYB24U
w+SP/ruuJ1+HcGqE
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org