Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
File: AS202828.roa (raw, json)
Hash identifier: vDPpUcz8r512YyKlFsGkyDuuXgZQgadbEUJx3wa0fx8=
Subject key identifier: 6C:D3:63:BF:30:1E:58:10:49:55:0A:2A:85:99:AA:AF:4A:CE:CA:1A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 763747F10C996B35F97C675444E8FCD6B8319FB7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 202828
IP address blocks: 2a06:a005:2dd::/48 maxlen: 48
2a06:a005:43c::/48 maxlen: 48
2a06:a005:bae::/48 maxlen: 48
2a06:a005:baf::/48 maxlen: 48
2a06:a005:17a0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:37:47:f1:0c:99:6b:35:f9:7c:67:54:44:e8:fc:d6:b8:31:9f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=6CD363BF301E581049550A2A8599AAAF4ACECA1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e7:89:44:f2:e6:d1:48:33:58:0f:5d:b7:6c:
82:f0:78:0d:6f:55:e9:53:45:b6:cb:69:4b:cd:35:
cb:f2:53:e2:76:df:2b:ed:51:d7:24:6f:48:a5:52:
3a:fc:6a:30:4d:53:a6:fb:90:99:f4:26:ed:8a:5f:
c4:90:06:e9:e8:af:59:4b:9e:08:2e:57:0e:4b:da:
49:89:2b:4d:53:4d:51:d4:ab:43:0b:d7:51:1b:4e:
df:bd:d3:25:55:b6:19:05:7b:4a:e1:90:75:b1:40:
fe:cc:81:af:9d:72:24:23:e4:49:83:95:2f:de:da:
f5:c9:b6:2d:cd:9c:9a:28:35:67:d5:73:c9:ad:2c:
65:96:65:b0:13:e2:4b:a7:c1:ea:e8:16:f1:63:4d:
cc:70:ae:fd:6d:9b:3d:e2:8b:c7:0f:12:09:db:31:
04:be:50:33:6c:a5:a9:80:29:61:38:1d:bd:a6:0b:
c5:a5:21:ff:fa:d7:ec:08:b8:4e:58:a6:c5:22:65:
93:3b:d1:e5:24:a3:37:30:ab:0f:20:ba:87:5f:22:
32:dc:d3:05:ce:b7:c7:05:c5:9f:fe:45:95:a9:f7:
57:6c:4d:fb:4a:1e:33:13:4b:f8:3a:4f:28:ed:33:
43:26:03:1c:55:a4:92:7b:f1:f7:c6:cc:c4:6f:60:
a6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D3:63:BF:30:1E:58:10:49:55:0A:2A:85:99:AA:AF:4A:CE:CA:1A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2dd::/48
2a06:a005:43c::/48
2a06:a005:bae::/47
2a06:a005:17a0::/44
Signature Algorithm: sha256WithRSAEncryption
68:61:a1:b7:bc:f0:70:f4:35:09:30:9f:d3:b5:02:c6:bf:02:
84:5a:67:e3:fe:0c:3c:6f:54:9a:15:eb:29:09:7b:c1:17:ed:
0d:dc:bb:56:22:d2:0e:e7:41:e9:e7:fa:ec:5c:1a:7b:e4:cd:
fb:32:2b:22:c6:c9:83:b6:e7:a6:2b:d2:18:cb:ad:9a:86:8b:
e7:32:7a:4f:ff:0b:4d:23:7d:c8:08:d7:2b:fe:9c:14:5a:bb:
6d:2e:f6:ee:b2:38:ec:dc:0f:00:33:2a:1d:59:70:3b:a7:ff:
b0:f6:52:55:43:bf:7e:c6:6a:d4:27:86:e7:78:d8:e2:22:33:
b3:55:49:c7:c7:86:48:0e:53:7a:81:bd:07:c2:26:81:4d:0b:
8b:f8:15:ad:dd:78:3e:eb:54:c3:f9:71:21:b0:30:65:54:49:
04:54:a2:0f:b0:c7:17:46:99:91:a4:81:a3:f5:53:8f:8f:2e:
b2:8e:b9:1d:7a:03:84:84:36:fe:c8:8b:ad:07:ac:a6:1b:1c:
bc:f0:9e:24:7a:d9:33:0a:df:ec:3c:5e:7c:83:db:b7:b9:3f:
c1:2b:ee:e7:45:71:81:be:6a:2c:74:90:7b:d0:bc:04:b7:27:
68:2b:0e:50:36:dd:f0:f5:12:e1:bb:39:55:38:53:d5:d4:31:
7f:c7:cc:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:30 2024 by rpki-client on console-ams.rpki-client.org