Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202559.roa
File: AS202559.roa (raw, json)
Hash identifier: S9sU6crBke5AH3jOFhudH9iebRO7GMQ6yFeL4i6m18M=
Subject key identifier: D2:E3:8E:7F:F5:E7:87:4C:CE:BD:2E:33:42:8C:17:DF:1F:19:EC:42
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 446F361393F4D0EAFABEE5E43096A446445CCE17
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202559.roa
Signing time: Thu 08 Feb 2024 14:44:24 +0000
ROA not before: Thu 08 Feb 2024 14:39:24 +0000
ROA not after: Thu 06 Feb 2025 14:44:24 +0000
asID: 202559
IP address blocks: 2a06:a005:1940::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:6f:36:13:93:f4:d0:ea:fa:be:e5:e4:30:96:a4:46:44:5c:ce:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 8 14:39:24 2024 GMT
Not After : Feb 6 14:44:24 2025 GMT
Subject: CN=D2E38E7FF5E7874CCEBD2E33428C17DF1F19EC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:91:d6:e1:2d:18:ce:17:25:57:66:5e:e4:66:
7a:ca:53:8e:6e:7d:8c:a7:af:c9:24:06:c4:bb:87:
cc:b2:7c:d8:44:40:3f:c3:4d:66:2e:f1:8e:33:4f:
64:bc:b2:f3:77:d9:75:86:7d:0d:52:ec:bc:c0:8e:
a9:9b:0e:4d:dc:43:e7:89:0b:2e:44:ba:ea:fe:bb:
1a:18:6d:94:88:64:6f:fc:f5:1d:f2:b4:64:91:38:
a9:72:15:06:40:dd:0a:8e:29:9f:90:d5:22:6c:09:
e7:3d:72:c9:c1:44:b4:10:5c:ba:89:70:d8:36:cf:
0e:4c:6b:28:40:de:63:55:3a:c3:bb:9c:e4:cb:06:
07:b9:a2:b7:4b:be:d3:0f:d6:dd:fe:fa:02:06:62:
1e:69:91:7b:84:ee:eb:1f:40:9d:7e:1f:ea:ae:38:
47:da:f0:49:cc:5b:9b:e3:a0:2f:6e:5d:d7:a8:bf:
15:e2:54:d4:a4:11:fa:2b:83:fd:be:55:57:26:c7:
81:12:8e:e6:53:67:ed:ac:74:fd:42:96:4f:5a:31:
5b:49:9a:4f:84:4e:fc:4f:66:4b:1a:4a:e6:31:d9:
c2:5d:20:74:d9:3d:96:e0:d4:39:0f:25:79:e8:1d:
44:53:4d:7d:3f:3b:ab:7d:06:ad:11:48:bb:8b:35:
83:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E3:8E:7F:F5:E7:87:4C:CE:BD:2E:33:42:8C:17:DF:1F:19:EC:42
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202559.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1940::/48
Signature Algorithm: sha256WithRSAEncryption
43:26:62:33:0c:c7:47:41:bb:e4:28:12:6f:b6:44:df:8a:e5:
cd:b1:87:a9:82:6e:27:6c:c4:cc:f9:f4:d7:e3:08:8e:68:a8:
81:93:8c:4a:96:af:07:7d:c1:ba:70:78:22:d7:43:e1:c2:97:
59:28:87:20:90:a0:51:47:f5:ae:88:9a:f6:27:50:0b:cf:56:
b0:48:28:ef:c1:5a:e1:52:29:98:30:da:f3:16:23:ab:1b:ff:
ac:65:a7:3f:3f:8b:12:b1:6e:88:d1:b4:da:fe:a9:f7:f2:3c:
eb:90:b9:03:e0:8b:4a:98:b0:63:f0:25:f1:70:6f:a2:df:54:
25:c3:d6:6d:30:5d:87:ac:32:00:ca:0a:c9:2c:bb:dd:40:50:
56:da:c7:44:52:6f:f2:b1:bc:5e:cc:2f:e0:48:2d:00:58:e5:
a5:88:3e:80:83:c3:67:27:49:c4:9d:18:da:f8:28:ad:10:48:
db:50:8d:7b:5c:91:0c:c6:d2:fe:88:d8:47:4d:48:31:f0:6a:
a3:bf:0f:17:85:25:7c:8b:98:bc:71:da:bd:8e:3e:0a:c0:5b:
2e:32:b1:2f:3a:84:92:b7:c6:30:4b:0f:0f:bf:82:0e:8d:95:
6d:08:77:77:98:79:1a:50:e2:49:6e:fb:57:f1:44:0e:de:07:
4d:75:66:f8
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIURG82E5P00Or6vuXkMJakRkRczhcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDAyMDgxNDM5MjRaFw0yNTAyMDYxNDQ0MjRaMDMxMTAvBgNV
BAMTKEQyRTM4RTdGRjVFNzg3NENDRUJEMkUzMzQyOEMxN0RGMUYxOUVDNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVkdbhLRjOFyVXZl7kZnrKU45u
fYynr8kkBsS7h8yyfNhEQD/DTWYu8Y4zT2S8svN32XWGfQ1S7LzAjqmbDk3cQ+eJ
Cy5Euur+uxoYbZSIZG/89R3ytGSROKlyFQZA3QqOKZ+Q1SJsCec9csnBRLQQXLqJ
cNg2zw5MayhA3mNVOsO7nOTLBge5ordLvtMP1t3++gIGYh5pkXuE7usfQJ1+H+qu
OEfa8EnMW5vjoC9uXdeovxXiVNSkEforg/2+VVcmx4ESjuZTZ+2sdP1Clk9aMVtJ
mk+ETvxPZksaSuYx2cJdIHTZPZbg1DkPJXnoHURTTX0/O6t9Bq0RSLuLNYPxAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQU0uOOf/Xnh0zOvS4zQowX3x8Z7EIwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAyNTU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBRlAMA0GCSqGSIb3DQEBCwUAA4IBAQBDJmIz
DMdHQbvkKBJvtkTfiuXNsYepgm4nbMTM+fTX4wiOaKiBk4xKlq8HfcG6cHgi10Ph
wpdZKIcgkKBRR/WuiJr2J1ALz1awSCjvwVrhUimYMNrzFiOrG/+sZac/P4sSsW6I
0bTa/qn38jzrkLkD4ItKmLBj8CXxcG+i31Qlw9ZtMF2HrDIAygrJLLvdQFBW2sdE
Um/ysbxezC/gSC0AWOWliD6Ag8NnJ0nEnRja+CitEEjbUI17XJEMxtL+iNhHTUgx
8Gqjvw8XhSV8i5i8cdq9jj4KwFsuMrEvOoSSt8YwSw8Pv4IOjZVtCHd3mHkaUOJJ
bvtX8UQO3gdNdWb4
-----END CERTIFICATE-----
Generated at Fri Apr 19 15:09:23 2024 by rpki-client on console-fra.rpki-client.org