Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
File: AS202224.roa (raw, json)
Hash identifier: 8v89NOYzRiA7uN9BawK3kZY0JdxDjbI0Mz3Q3UNwTL4=
Subject key identifier: 6D:8A:71:C7:62:53:AF:29:BD:7C:0B:F8:28:A3:FB:71:A2:44:A9:8F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0FC0E8948FB1346E9D45ACC0B2DA5C279823B29D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
Signing time: Wed 13 Nov 2024 19:40:12 +0000
ROA not before: Wed 13 Nov 2024 19:35:12 +0000
ROA not after: Wed 12 Nov 2025 19:40:12 +0000
asID: 202224
IP address blocks: 2a06:a005:b65::/48 maxlen: 48
2a06:a005:108d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:c0:e8:94:8f:b1:34:6e:9d:45:ac:c0:b2:da:5c:27:98:23:b2:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 13 19:35:12 2024 GMT
Not After : Nov 12 19:40:12 2025 GMT
Subject: CN=6D8A71C76253AF29BD7C0BF828A3FB71A244A98F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7a:0c:29:4d:98:be:5b:f2:19:f8:8e:30:9b:
7f:77:3d:72:dd:a7:03:00:db:eb:1e:e9:fd:fc:5e:
f9:c5:fa:22:b5:4f:ba:b6:ff:05:25:48:58:97:27:
8d:b1:5e:a9:ab:46:e1:fd:2a:de:63:43:5e:e9:bf:
35:22:9f:75:42:86:26:29:5b:03:e0:e1:9d:f8:74:
d3:e9:3f:07:2d:ad:73:3a:1a:e2:21:1c:75:42:33:
4b:bc:49:e6:aa:6f:f2:9e:73:fd:59:e8:ee:19:6f:
34:b9:c5:88:53:e0:4d:29:02:df:7b:e7:b2:58:c1:
df:e0:af:d1:09:25:57:7e:21:cd:8f:b8:93:75:15:
fb:08:8b:1d:78:a7:ea:67:fc:ed:35:63:0f:02:96:
5b:73:d2:c6:84:83:9c:af:67:56:27:5b:e5:57:a3:
44:56:65:23:8b:0d:ca:2a:6c:cc:1d:a8:cd:9b:58:
c9:c5:22:46:b9:6e:a1:20:76:73:59:c8:e8:67:45:
39:df:9e:3d:97:1d:4c:6b:ad:4f:2d:ff:e3:11:e9:
98:f1:bf:61:1b:7b:ba:bb:4d:97:9a:78:7f:46:ff:
27:5e:f1:ad:e4:b1:ee:9e:e7:51:fb:03:f6:09:c7:
8b:29:53:db:27:be:91:fd:2d:75:c7:24:2d:68:8b:
0e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8A:71:C7:62:53:AF:29:BD:7C:0B:F8:28:A3:FB:71:A2:44:A9:8F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202224.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b65::/48
2a06:a005:108d::/48
Signature Algorithm: sha256WithRSAEncryption
37:69:f1:b4:2a:81:8d:be:35:e5:29:10:25:da:e0:6b:05:e3:
9b:35:d4:1e:b6:e3:5a:6c:16:f0:78:bd:98:72:d1:01:c1:a5:
9a:ab:d4:4f:54:2e:15:0e:45:55:bd:23:7e:cc:ff:e3:e3:cb:
81:ab:04:b1:d7:46:3b:f6:55:a3:72:cc:81:1b:af:1a:39:77:
3b:e3:e0:82:66:6a:ef:1e:03:5e:ad:9b:bb:c3:30:0e:f8:13:
ff:51:40:44:a5:95:bc:ac:f0:19:7b:2a:86:8a:3b:7c:5e:ea:
c5:2c:c6:b0:7a:3a:15:58:18:c9:6f:34:22:1a:04:70:b1:67:
74:01:fc:ad:28:58:45:1d:7f:bc:21:37:a9:99:29:ef:3a:80:
73:01:40:92:4d:b8:7c:d7:d9:47:1d:4d:87:0c:bb:3d:bd:03:
ca:21:fc:e1:73:ce:2a:67:1a:52:f0:24:d7:44:b4:2a:47:ae:
36:a8:42:77:f8:fb:c7:d9:ad:42:7c:cf:6d:f9:4a:95:ca:17:
eb:1d:d2:0f:9f:df:fd:e6:70:3c:46:ce:2c:bc:36:5d:96:81:
6f:0e:4c:65:53:9a:aa:4e:ae:b2:aa:50:4c:15:64:da:21:40:
01:8b:6f:04:df:7b:9f:ce:5e:6a:87:8a:ba:7a:a7:6c:d4:bd:
d6:58:60:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:10 2024 by rpki-client on console-ams.rpki-client.org