Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
File: AS202224.roa (raw, json)
Hash identifier: toM1PhzNiYtOeunslP11hXJkp4OILzcv1Wd0hlxQRGo=
Subject key identifier: 9F:62:22:7A:6D:B8:93:FF:DC:0B:A7:6A:FC:98:8F:61:CE:D8:FA:4A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 60F89C35211776A672EFF58429F5AA930184F416
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
Signing time: Wed 13 Dec 2023 18:44:21 +0000
ROA not before: Wed 13 Dec 2023 18:39:21 +0000
ROA not after: Wed 11 Dec 2024 18:44:21 +0000
asID: 202224
IP address blocks: 2a06:a005:b65::/48 maxlen: 48
2a06:a005:108d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f8:9c:35:21:17:76:a6:72:ef:f5:84:29:f5:aa:93:01:84:f4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 18:39:21 2023 GMT
Not After : Dec 11 18:44:21 2024 GMT
Subject: CN=9F62227A6DB893FFDC0BA76AFC988F61CED8FA4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:14:a8:57:a6:37:2a:90:9f:98:f2:e6:d3:91:
b7:20:c9:6f:1c:6f:92:cf:61:6a:ce:f0:87:fb:40:
55:71:cb:86:a9:b8:a4:d3:96:b3:cf:bb:8d:68:9b:
48:49:ec:3e:91:35:be:74:95:68:00:0a:c1:d3:06:
c1:ac:1f:54:2d:38:ef:74:17:f2:07:9f:27:7a:7c:
23:19:01:52:09:8c:f7:d6:eb:69:3d:9b:99:06:4f:
7f:d6:5c:26:fe:0e:18:08:9e:90:32:f5:35:76:14:
07:d9:8d:a1:e6:87:49:4b:fa:c2:ac:7a:e6:c0:9b:
60:cb:cd:56:d7:98:73:04:fc:1e:27:0b:85:5b:40:
90:7b:2c:f3:e1:f2:40:74:ad:8b:c1:61:7e:45:25:
0d:14:0a:2f:4e:ae:ea:34:b5:be:ef:52:ce:ac:c0:
b2:2e:78:13:72:d9:2d:26:8b:85:87:6f:6a:3c:78:
a1:4c:b7:1c:61:2b:ff:64:c0:a3:63:0a:40:42:92:
6c:02:7e:2f:6d:52:a9:7d:72:f6:13:56:a5:1e:31:
98:ef:de:8f:a7:c4:14:c1:6a:bb:93:d8:df:d9:01:
7a:97:78:b4:8b:9d:b1:fa:5f:10:19:60:67:78:44:
d0:a9:41:00:c0:a3:18:e7:68:26:7c:75:1f:26:02:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:62:22:7A:6D:B8:93:FF:DC:0B:A7:6A:FC:98:8F:61:CE:D8:FA:4A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b65::/48
2a06:a005:108d::/48
Signature Algorithm: sha256WithRSAEncryption
9d:4f:a1:81:d7:64:28:da:bc:34:9e:50:89:24:05:55:23:20:
08:4f:5b:22:10:1e:ff:3e:91:f2:9e:f0:65:de:19:2e:21:61:
05:c8:93:e6:d1:31:66:a7:14:54:ee:c4:5b:43:77:f7:aa:18:
b5:27:68:2c:db:8f:51:43:9e:e1:7f:17:b5:5d:6a:22:f7:29:
42:7b:48:0e:c5:ba:21:41:03:8c:8e:b7:5b:c3:e4:8f:c4:c1:
7f:fb:2b:67:10:37:4a:04:4a:66:9f:a6:66:9d:dd:f6:e0:31:
5a:b0:80:3a:b4:e9:71:71:25:5d:2b:0f:02:c7:44:13:ba:8e:
be:a2:d0:b0:46:d7:63:0d:be:93:01:4b:cb:59:e3:d2:c6:4b:
af:ea:99:6d:09:a8:aa:a8:99:3a:c0:ed:8b:e6:0d:72:07:20:
35:aa:9c:3d:b5:5e:26:e0:de:e9:57:be:1f:8f:96:24:0e:0b:
0f:d6:aa:29:32:ca:d9:c2:fb:af:34:08:c1:3c:3b:d3:7f:b0:
cb:3b:c0:63:91:a0:35:e3:a8:88:1d:3a:0a:a4:3d:3f:30:dc:
7b:80:bb:f0:6c:5a:39:dc:cb:45:1f:35:7b:a6:a7:57:20:35:
6f:c6:0c:f5:05:95:7d:90:b5:44:c7:2b:44:f0:35:6a:23:cf:
59:27:48:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org