Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202467.roa
File: AS202467.roa (raw, json)
Hash identifier: i6o1U+Xk1zLG6GfWDTWeKYsEm7ZOh1bx1D7pl5gl+nQ=
Subject key identifier: 43:17:5B:B0:9A:96:5D:1F:C7:2D:F1:25:2E:EC:38:DA:CC:F9:9C:95
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7EF6860B22D37B9C9925E9CF800720611AFFACC6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202467.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 202467
IP address blocks: 2a06:a005:1162::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:f6:86:0b:22:d3:7b:9c:99:25:e9:cf:80:07:20:61:1a:ff:ac:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=43175BB09A965D1FC72DF1252EEC38DACCF99C95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a8:f5:0b:c3:0c:75:30:81:a1:e6:5f:0a:53:
bb:8e:d6:e7:77:49:0d:74:b0:e9:d6:23:a1:78:03:
a5:05:39:81:3c:7a:2c:24:75:d2:f6:05:a6:72:cb:
60:05:66:04:c6:f8:ce:d7:2a:1a:b9:76:72:7f:87:
95:b2:a9:f3:08:2e:5d:66:f3:78:21:77:ce:9c:06:
4a:19:19:0e:28:12:55:95:8d:de:a0:6e:09:08:48:
f1:bb:8e:22:f7:c5:47:32:6d:dd:18:aa:16:36:6a:
75:37:cd:fa:c1:47:7a:83:aa:47:8d:ed:ee:a1:df:
1a:77:08:5c:44:69:d1:08:30:93:4d:a5:e2:69:9c:
17:b2:6b:58:f5:c6:d6:f3:4e:3e:4b:49:8f:6c:54:
37:30:9a:94:74:83:e5:01:5b:18:59:97:d1:12:23:
00:9e:50:e2:5b:91:a6:cc:21:a4:5f:74:f9:fb:f8:
ef:b3:40:9c:32:62:dd:ad:e6:bb:58:44:54:14:93:
fd:1e:7a:4b:d3:8b:48:d5:37:1b:2d:57:b5:a6:e7:
bd:0a:08:b9:1c:45:0c:07:a0:6f:cf:0c:1f:4b:93:
49:b1:75:d1:7f:57:33:5d:ef:06:79:66:52:3c:3c:
8b:1c:6a:76:c8:f4:af:fb:28:eb:73:bc:59:e8:fc:
5c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:17:5B:B0:9A:96:5D:1F:C7:2D:F1:25:2E:EC:38:DA:CC:F9:9C:95
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202467.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1162::/48
Signature Algorithm: sha256WithRSAEncryption
1f:ca:a8:0b:5a:48:30:38:28:fb:11:0f:8e:0d:a8:e7:4a:65:
da:3e:f7:6b:ca:51:72:28:d4:08:55:22:61:80:0b:73:e8:87:
83:4c:81:ba:13:82:36:62:45:e8:87:38:f4:e7:8c:e1:3d:69:
f2:27:98:55:aa:0d:8c:ee:62:85:ec:04:c9:1d:8a:d2:bf:49:
fd:82:d4:c3:da:6a:0e:53:1f:d2:47:39:de:19:36:91:54:43:
1f:fe:60:7f:b7:26:0c:05:33:38:7f:51:9b:11:33:fe:dc:06:
26:45:5c:6b:fc:a2:c7:99:3b:0c:43:e1:51:13:bc:50:ec:36:
06:13:e2:ce:74:49:c0:d2:c7:2c:ac:49:b9:76:80:3e:db:15:
01:db:69:29:52:03:7a:bc:ca:e9:3f:80:2d:57:2f:2b:60:b3:
67:60:b3:4d:c1:6d:75:81:e1:64:e2:36:14:0b:23:33:1e:ae:
38:9f:24:5d:24:dc:33:59:29:43:4b:db:a3:69:4b:1e:7d:8a:
08:21:ec:a8:e6:1f:0b:68:73:a4:b3:7d:e8:10:06:af:3b:da:
19:6d:8a:92:07:d4:bc:fe:d5:7d:fc:2c:42:70:8a:70:fb:2e:
db:da:2b:fe:61:cc:51:72:62:93:9b:89:2a:09:2b:66:e3:fb:
1f:a3:93:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:46:03 2025 by rpki-client