Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202888.roa
File: AS202888.roa (raw, json)
Hash identifier: ihfFpG34gK2qcFNXq9OgPXh/ui1YxlHqNs2131syGDE=
Subject key identifier: 73:0A:7C:25:31:DE:21:74:93:D6:55:B8:21:BE:02:AF:51:F0:19:D2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 36B547C333CF73D53D2DFE4EF7B09F1B25A1EE60
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202888.roa
Signing time: Tue 05 Nov 2024 03:40:04 +0000
ROA not before: Tue 05 Nov 2024 03:35:04 +0000
ROA not after: Tue 04 Nov 2025 03:40:04 +0000
asID: 202888
IP address blocks: 2a06:a005:1c70::/45 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:b5:47:c3:33:cf:73:d5:3d:2d:fe:4e:f7:b0:9f:1b:25:a1:ee:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:04 2024 GMT
Not After : Nov 4 03:40:04 2025 GMT
Subject: CN=730A7C2531DE217493D655B821BE02AF51F019D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2c:0c:f5:d3:43:e6:c0:d6:1d:04:ad:74:d9:
07:27:13:45:97:fa:bf:03:2d:f2:03:a9:e9:3d:1f:
8f:34:8a:20:8d:50:40:c4:46:72:6b:bd:0c:bf:5b:
ac:03:f3:2a:92:dc:2d:81:6f:11:90:cb:69:39:90:
73:da:bf:1f:10:c5:26:da:d8:ff:89:d4:23:49:d7:
3e:e5:5a:26:a4:d8:65:17:ed:e3:0e:72:68:a0:86:
07:50:4e:c0:ad:ed:69:18:fe:f7:74:33:10:00:01:
55:94:8f:82:1c:ce:3d:c2:53:a1:e0:cf:ae:40:7f:
47:e5:cd:1f:6c:d0:bf:c6:22:ba:d9:7e:17:a6:4b:
79:d8:bf:14:ff:e7:be:70:8e:d9:90:73:56:52:27:
44:61:0b:22:c3:0d:32:14:f6:70:29:14:8f:7a:ef:
de:d5:d1:ab:c1:24:3a:74:2d:39:52:d7:09:9d:ae:
51:cd:50:35:92:a4:c8:d4:1b:64:c2:6f:9a:f1:df:
a7:97:53:c7:84:b9:5f:2f:94:5f:69:7b:fd:72:5c:
be:7d:38:9f:14:25:c1:bd:80:45:dc:bf:b4:73:a9:
00:e8:52:f4:d9:c5:21:30:7a:4a:8b:44:d1:03:6a:
fe:6a:aa:ab:15:b7:77:07:84:ad:cb:6c:02:22:43:
c4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:0A:7C:25:31:DE:21:74:93:D6:55:B8:21:BE:02:AF:51:F0:19:D2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202888.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c70::/45
Signature Algorithm: sha256WithRSAEncryption
57:31:33:14:84:8f:84:55:15:82:06:2b:46:40:f8:5f:d8:18:
aa:a1:16:7b:26:1a:a0:d4:3c:d8:e3:34:4e:1b:e7:0e:fa:07:
11:2c:4c:a5:e0:0c:78:70:97:c1:89:fc:c2:a6:5a:e4:19:57:
2f:be:2c:f4:fc:e2:c3:0d:cf:ad:99:00:17:b2:e8:8a:fe:7e:
5e:34:5d:8e:35:47:ce:ed:65:a6:51:37:f9:0e:70:e9:e9:ba:
0e:7e:26:59:62:54:09:0c:b5:e5:fb:4f:da:42:65:b5:3d:58:
da:c1:89:86:a5:56:59:38:6e:29:d1:7a:f7:54:a4:60:f3:53:
59:95:0a:72:c0:43:24:03:e9:c3:ac:9f:76:bb:58:1e:97:07:
2b:6f:6a:11:a4:43:20:86:0d:f4:28:60:d2:32:eb:9d:dc:2a:
b4:60:ae:15:b6:de:0b:e9:95:cf:5c:84:d5:45:bb:4a:5a:36:
69:0e:70:65:49:48:74:0d:23:37:c8:f9:fa:f5:9f:c7:a8:23:
3e:67:28:d2:4f:4e:63:0c:49:bb:65:66:7a:e1:d4:48:4d:34:
a9:d8:47:04:d4:20:1b:8e:9b:39:fd:a2:1c:26:55:74:a7:5b:
47:9a:db:63:a1:9a:c1:e5:6d:6b:03:3f:83:dc:e9:89:8b:05:
70:7c:55:80
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUNrVHwzPPc9U9Lf5O97CfGyWh7mAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDRaFw0yNTExMDQwMzQwMDRaMDMxMTAvBgNV
BAMTKDczMEE3QzI1MzFERTIxNzQ5M0Q2NTVCODIxQkUwMkFGNTFGMDE5RDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLAz100PmwNYdBK102QcnE0WX
+r8DLfIDqek9H480iiCNUEDERnJrvQy/W6wD8yqS3C2BbxGQy2k5kHPavx8QxSba
2P+J1CNJ1z7lWiak2GUX7eMOcmighgdQTsCt7WkY/vd0MxAAAVWUj4Iczj3CU6Hg
z65Af0flzR9s0L/GIrrZfhemS3nYvxT/575wjtmQc1ZSJ0RhCyLDDTIU9nApFI96
797V0avBJDp0LTlS1wmdrlHNUDWSpMjUG2TCb5rx36eXU8eEuV8vlF9pe/1yXL59
OJ8UJcG9gEXcv7RzqQDoUvTZxSEwekqLRNEDav5qqqsVt3cHhK3LbAIiQ8S1AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUcwp8JTHeIXST1lW4Ib4Cr1HwGdIwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAyODg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcDKgagBRxwMA0GCSqGSIb3DQEBCwUAA4IBAQBXMTMU
hI+EVRWCBitGQPhf2BiqoRZ7Jhqg1DzY4zROG+cO+gcRLEyl4Ax4cJfBifzCplrk
GVcvviz0/OLDDc+tmQAXsuiK/n5eNF2ONUfO7WWmUTf5DnDp6boOfiZZYlQJDLXl
+0/aQmW1PVjawYmGpVZZOG4p0Xr3VKRg81NZlQpywEMkA+nDrJ92u1gelwcrb2oR
pEMghg30KGDSMuud3Cq0YK4Vtt4L6ZXPXITVRbtKWjZpDnBlSUh0DSM3yPn69Z/H
qCM+ZyjST05jDEm7ZWZ64dRITTSp2EcE1CAbjps5/aIcJlV0p1tHmttjoZrB5W1r
Az+D3OmJiwVwfFWA
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:23 2024 by rpki-client on console-fra.rpki-client.org