Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202528.roa
File: AS202528.roa (raw, json)
Hash identifier: Z2sAt/uiSSof8l92y01WhatC/y3klw3rUMM3TYRSXGA=
Subject key identifier: D4:C6:FE:9F:95:D2:7D:6D:01:1E:C0:DA:01:02:E9:37:14:AB:FE:C4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 43687A1DCC4DE074A6360FAB3B07D87542198474
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202528.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 202528
IP address blocks: 2a06:a005:1d56::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:68:7a:1d:cc:4d:e0:74:a6:36:0f:ab:3b:07:d8:75:42:19:84:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=D4C6FE9F95D27D6D011EC0DA0102E93714ABFEC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1d:73:35:48:a4:83:ef:ee:d8:5a:3e:2b:c1:
d8:93:ae:a2:93:e1:06:09:25:ff:d8:a8:c4:66:d6:
f1:6e:4a:61:2d:5f:e2:4f:e2:c4:f4:17:f3:0b:08:
98:bf:c1:5f:1a:60:f6:5b:fe:d5:b8:76:e4:74:e9:
f0:cb:18:25:59:75:b3:56:01:5b:85:8a:f9:ec:66:
c6:dc:02:33:29:43:a3:2b:58:b0:97:aa:21:9e:5c:
be:07:3e:cc:b1:a8:7a:3d:e7:89:34:fc:c5:e8:d5:
c0:b9:bf:93:44:47:a9:fc:e8:2b:19:84:5c:40:63:
e0:f0:a8:13:97:18:12:c1:a0:21:f6:45:7d:ee:54:
04:ff:9a:1f:27:89:68:46:87:84:34:b6:b4:08:00:
4b:4f:70:06:99:00:41:e3:bb:e3:1f:9b:1d:90:79:
25:78:1c:b4:3b:e9:d7:b3:e9:f9:44:22:ea:e1:f2:
2b:26:ee:b2:4d:9d:65:e1:1c:53:fd:55:c5:4e:bf:
5e:d7:e1:14:c1:40:5a:17:79:d1:21:12:37:0c:98:
83:c7:ea:3b:b8:6b:8b:01:ac:04:fc:e7:e1:ff:07:
29:7a:d8:c9:86:58:d1:94:6a:83:c4:97:43:db:23:
d7:34:08:d3:98:d0:72:89:94:45:cf:c5:d4:45:40:
cd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C6:FE:9F:95:D2:7D:6D:01:1E:C0:DA:01:02:E9:37:14:AB:FE:C4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202528.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d56::/48
Signature Algorithm: sha256WithRSAEncryption
56:11:af:ea:2b:31:65:33:6a:c0:4a:a1:6c:15:36:2f:16:2e:
fb:99:d4:da:f9:b0:03:79:f9:6e:e1:37:50:e0:39:07:90:d8:
5a:a7:62:47:9b:b4:f4:61:d0:2e:3c:b4:77:3f:23:78:32:a3:
36:77:90:9e:62:6c:6a:c4:75:9d:fd:35:21:3b:ac:6f:51:c1:
6b:70:23:37:36:35:a1:2a:93:ee:a7:b0:a6:0d:5f:ae:46:2c:
f0:a1:d6:aa:0a:d6:54:1a:41:5c:61:58:e2:21:00:07:df:31:
0b:3f:2e:24:d8:f4:a1:d4:78:4f:35:60:3d:98:e8:18:ac:a1:
67:97:ae:63:c3:cf:b2:70:9a:44:75:58:68:66:17:5e:62:94:
d7:79:9d:c6:49:a9:4b:d8:dd:d8:7f:d5:1a:ee:45:8d:76:23:
17:db:9f:14:ea:ad:39:60:d3:ab:f9:2a:79:df:1c:21:6a:92:
1c:90:7d:8a:6d:88:88:ac:3f:07:3b:6a:ac:d3:dd:50:3f:30:
9e:9b:16:88:28:25:a9:e0:3d:85:93:82:fe:74:b0:aa:d6:34:
67:71:e2:a3:b8:67:08:5a:1d:1b:01:a7:31:38:04:43:c9:35:
64:7f:10:ea:fb:b1:95:b4:23:d0:c7:68:23:ef:b0:0e:12:7a:
af:fe:79:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org