Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202905.roa
File: AS202905.roa (raw, json)
Hash identifier: 9mbzgIlSe6zIyHMxe32LTgwSZbqipc3bx1WWBkR/g3Y=
Subject key identifier: 70:9A:15:35:83:62:E8:BF:BE:49:A1:FE:93:D0:CA:5F:C8:10:51:5C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4AEB5C29F95E225616274B1A1F0D8B401AC6D651
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202905.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 202905
IP address blocks: 2a06:a005:1279::/48 maxlen: 48
2a06:a005:1ff0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:eb:5c:29:f9:5e:22:56:16:27:4b:1a:1f:0d:8b:40:1a:c6:d6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=709A15358362E8BFBE49A1FE93D0CA5FC810515C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b0:ef:21:9f:3a:0d:e6:cb:51:de:e4:14:60:
ee:07:1f:31:b0:3f:c6:0a:4d:b5:81:c1:65:4a:62:
e8:a9:e9:cd:64:00:ba:1b:f9:b6:10:f3:27:84:e8:
95:3f:f6:ec:46:c1:50:ed:27:93:2b:db:fb:60:9a:
80:1c:49:1d:95:c3:b2:ef:4c:c0:63:18:3e:e6:fe:
e7:fb:d3:8a:a4:01:fe:21:21:43:ad:17:5e:75:8e:
aa:4f:e6:aa:ce:f9:2f:99:ee:28:d4:aa:0c:5e:ef:
3c:19:45:cd:8a:2b:ce:5f:c5:8b:e8:4f:7c:dc:9b:
e7:89:fa:76:c0:40:f4:88:af:1e:f8:11:0d:1b:02:
09:2b:e6:95:11:1b:9f:e3:55:c5:4b:c4:88:9b:8e:
61:80:2b:d8:ee:a0:da:db:02:48:55:c5:64:bd:71:
a6:90:0f:58:7a:6d:51:0a:1c:47:5f:a3:34:71:e6:
30:d3:d8:03:ab:e5:e3:ff:35:ab:e9:54:68:08:dd:
3d:26:43:eb:d2:21:6f:91:c3:d7:39:e2:83:72:d0:
45:2f:b0:5e:7a:39:83:7d:52:ea:ad:d6:fe:d5:68:
af:b1:20:12:8f:37:14:98:fb:8f:aa:88:a2:28:11:
34:28:05:63:f4:4d:73:d4:fc:fb:bc:6f:c9:1a:d6:
b8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9A:15:35:83:62:E8:BF:BE:49:A1:FE:93:D0:CA:5F:C8:10:51:5C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202905.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1279::/48
2a06:a005:1ff0::/44
Signature Algorithm: sha256WithRSAEncryption
bd:35:00:27:75:a6:47:e3:a6:0f:4c:58:89:3c:49:d7:03:20:
3b:81:d4:0a:9e:3e:e2:91:2a:f6:89:66:27:e3:6f:72:16:38:
43:9d:78:e7:f7:7f:de:ec:bf:14:a1:c5:f9:1a:2b:b8:4c:6c:
73:50:ed:b5:fc:69:b6:ed:e4:7f:44:52:b8:5d:41:10:dd:5c:
c7:76:c1:6e:1d:3c:03:69:c4:d0:d6:16:93:49:74:f5:cd:3d:
c9:11:65:a0:91:af:f1:3a:df:66:86:40:c9:57:8f:68:51:75:
73:08:7e:5f:7d:71:ce:e6:fe:ff:c3:e3:9a:8f:60:e6:3f:87:
35:6f:55:6b:22:04:6c:84:9f:fa:9a:bb:dd:b6:4e:62:69:93:
37:0d:03:b7:66:a1:03:96:70:ec:d0:9f:67:27:06:74:7d:e8:
c6:78:d9:15:45:93:8a:49:85:05:0c:7f:24:46:ff:65:98:01:
f8:fe:d0:61:5b:9e:19:d0:33:04:14:43:76:94:95:87:e2:f0:
e9:a9:5a:75:76:cc:1f:3f:40:ff:96:49:c3:ec:26:0c:0c:3a:
10:40:b3:5b:91:61:1f:e6:84:4d:6b:62:09:b9:e7:4f:da:7d:
99:4e:8a:cb:de:95:a2:5f:1c:3d:a7:ee:0d:9c:5d:df:20:b7:
0a:50:cc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:23 2024 by rpki-client on console-fra.rpki-client.org