Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202340.roa
File: AS202340.roa (raw, json)
Hash identifier: i6JPt5TuaZbSluGNSo1zjyh15pWvuc0N6sCNuQirTuU=
Subject key identifier: BD:3A:2A:E5:46:E6:46:4B:D5:39:1D:15:E3:6F:2D:87:4A:77:EB:08
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3CAC58A4ECF71286343C98A684C8F5E41112FC92
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202340.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 202340
IP address blocks: 2a06:a005:45c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:ac:58:a4:ec:f7:12:86:34:3c:98:a6:84:c8:f5:e4:11:12:fc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=BD3A2AE546E6464BD5391D15E36F2D874A77EB08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:53:56:16:fe:cd:af:14:bf:2f:2c:80:e4:c8:
be:29:e4:e1:d7:2c:cc:f7:a8:52:39:51:55:a6:19:
ed:f4:66:1d:6b:aa:5b:8a:d4:6f:68:44:39:49:2d:
23:da:f3:cb:af:2a:c4:6b:99:dc:e5:88:38:c4:ea:
8e:a6:81:c3:d2:6e:5e:14:0c:2f:d4:75:0a:9e:2b:
4e:71:37:c6:5d:c4:af:72:ad:1a:e9:02:cb:25:80:
07:9f:73:3e:b4:3a:40:8c:fd:98:c1:0b:2b:16:13:
fb:02:81:36:fa:a6:02:b6:16:eb:72:dd:1c:9a:98:
0a:a2:8f:15:66:cf:f6:b0:b9:50:69:ca:d1:56:9f:
4b:24:5b:4d:6b:6a:91:15:c0:a1:c5:f2:82:ce:f2:
d2:80:0b:38:4c:ad:99:30:90:b1:a4:c9:3a:d4:f5:
29:c1:22:20:f4:74:72:78:78:7a:fe:b5:e6:cd:e6:
d7:23:a2:ac:a9:bf:31:01:f8:40:c4:85:e5:0a:f8:
a0:e1:96:55:b6:dd:aa:bb:40:4e:b9:5f:7d:67:60:
59:0d:be:90:1b:7d:2b:d3:fc:5b:0f:63:08:87:68:
55:58:63:05:9a:87:8a:50:8c:ea:09:7a:cf:22:3d:
54:3d:00:16:27:d2:dc:4a:60:b8:c1:c5:56:59:c9:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3A:2A:E5:46:E6:46:4B:D5:39:1D:15:E3:6F:2D:87:4A:77:EB:08
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:45c::/48
Signature Algorithm: sha256WithRSAEncryption
38:1f:88:40:94:37:78:25:e0:44:6f:c9:23:e0:ba:ef:67:22:
6b:1e:85:b9:9e:57:0d:d3:ed:0e:3d:9a:b6:2e:62:3c:74:40:
10:57:ea:65:43:58:9b:93:00:21:c3:3a:9d:1e:ea:b3:17:30:
5d:50:6b:cd:fe:7a:b4:1a:25:67:2a:c4:9f:68:98:95:f5:cd:
6c:1c:a6:8f:2a:82:1b:88:04:f2:f5:99:a4:5d:86:e9:20:5c:
16:03:37:fa:f7:ed:38:e1:16:4f:77:4c:23:fe:2d:ae:e0:a8:
7d:25:48:1b:d2:5b:ec:b6:36:87:d5:9c:04:c5:64:8d:22:ab:
43:41:c5:cb:b0:ae:50:00:74:32:f4:3c:58:61:f6:71:82:00:
c3:fd:b0:ea:2c:15:af:51:00:15:b1:09:14:d3:c1:17:e9:16:
29:80:09:52:92:88:50:c9:4b:dd:b2:11:47:9c:df:a4:96:d9:
eb:b7:6e:b0:1c:63:d0:7c:7b:ef:01:9e:9b:36:53:23:d3:97:
32:91:5a:be:19:34:46:ae:71:96:c6:be:be:39:04:34:f9:54:
2b:b9:43:19:aa:68:d6:4d:88:a6:29:f9:e1:c3:91:81:83:b7:
55:c8:25:a3:26:4c:3b:5b:8d:d0:4d:a2:86:df:a4:07:20:2c:
c9:c5:38:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org