Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
File: AS202222.roa (raw, json)
Hash identifier: UPUepU5UG35Wh8q+ttMoWVVVuQLq6gpKALP5YzJjZqg=
Subject key identifier: F6:15:A9:11:04:70:C8:DE:8C:B6:3D:A0:70:47:40:05:34:92:F2:25
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 217CB7D0EA68369194B7642FAFB90C7C28B266A5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 202222
IP address blocks: 2a06:a005:d2c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:7c:b7:d0:ea:68:36:91:94:b7:64:2f:af:b9:0c:7c:28:b2:66:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=F615A9110470C8DE8CB63DA0704740053492F225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:d8:81:3e:12:f3:29:eb:8d:ee:0b:85:35:
07:f3:5f:54:dd:60:b9:c5:07:49:a3:3e:7e:b9:82:
90:15:67:e8:c3:e9:cd:03:93:12:d3:fd:a4:cd:40:
99:ef:4d:cb:c2:62:d2:38:d8:d1:68:26:83:04:0a:
e5:43:0b:90:5b:d5:0d:22:af:c4:74:28:0f:79:39:
24:5f:d3:b8:58:1f:c4:e1:b3:e3:42:1e:b9:fe:bb:
8d:83:32:22:14:78:eb:24:6c:df:e7:0f:e9:06:c4:
de:9d:43:50:ca:b0:8e:d9:14:cc:20:e0:21:42:56:
08:48:56:3d:03:8d:22:f6:c0:4c:7a:86:dc:1f:9e:
f0:97:f8:ac:ca:7e:98:b0:9f:70:42:20:97:1e:cd:
be:4e:6b:44:65:76:af:9d:06:50:f3:2c:ac:cf:10:
0e:b6:05:34:7e:c8:5e:b1:e1:80:cf:bb:19:b7:a1:
4a:c7:d3:3c:a6:5d:bc:01:ad:a4:35:bc:2c:e5:1f:
68:4c:a3:be:da:e1:a2:32:94:25:aa:14:2d:ef:01:
50:11:de:be:fa:9a:b9:84:5c:0a:42:64:e1:af:05:
8d:da:e1:97:63:a1:54:7b:fe:85:4b:fd:6d:21:9f:
14:aa:69:cb:25:f4:5c:34:85:ec:b2:22:1f:fa:14:
17:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:15:A9:11:04:70:C8:DE:8C:B6:3D:A0:70:47:40:05:34:92:F2:25
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202222.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d2c::/48
Signature Algorithm: sha256WithRSAEncryption
75:ef:fe:18:65:5b:df:40:3b:30:6f:a7:f5:bb:e2:e1:0b:21:
87:7c:95:46:ed:79:2d:bc:f5:ff:6e:a2:56:83:a7:20:0d:79:
ac:8f:85:c4:d4:c7:17:e6:4e:46:28:48:ff:a0:07:8f:0d:26:
ff:bd:f1:6a:e7:55:21:fa:22:4f:cf:f7:51:57:a4:36:85:83:
6e:cb:e4:c5:7e:6c:b2:1f:05:11:9a:5b:18:01:06:a4:23:d0:
d3:ff:60:68:5e:c0:77:30:d0:9c:12:60:ae:7a:5b:c3:c4:f5:
68:01:dc:1e:3a:85:27:42:39:d8:db:65:1d:c6:10:e4:61:52:
de:5a:09:f2:ff:21:fe:02:a3:00:24:83:1f:7d:3d:98:aa:e3:
db:6a:37:39:24:53:cd:f2:e1:82:e5:48:f9:0c:dd:19:9b:2a:
22:18:d7:80:4b:58:91:49:c5:86:b4:ad:bd:38:e1:cb:f0:99:
05:01:37:a9:7f:28:8c:fe:ac:49:96:14:17:b6:79:b4:c0:5f:
7c:68:c5:f2:fb:6b:f7:8c:83:8b:f4:de:f4:73:a6:4d:fd:59:
b9:49:6e:42:43:b7:44:91:3a:10:dc:dc:ed:65:9d:0c:01:46:
1f:42:e4:4b:98:e7:b4:9f:9e:7e:f4:85:6c:00:27:7b:fa:d5:
68:40:2d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org