Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204333.roa
File: AS204333.roa (raw, json)
Hash identifier: /oQpCkXYe71Wgbf58cw8HU6T1+/ygrQ6jwObhAs8coA=
Subject key identifier: 8B:48:B9:CD:4E:44:4C:07:E5:8E:0F:90:EF:B3:D7:A6:75:8B:E6:28
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2625146BA7761639B9E4BA7106B7BFCDFA1A62BD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204333.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 204333
IP address blocks: 2a06:a005:d21::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:25:14:6b:a7:76:16:39:b9:e4:ba:71:06:b7:bf:cd:fa:1a:62:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=8B48B9CD4E444C07E58E0F90EFB3D7A6758BE628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:19:3b:cc:12:8c:8b:e7:6c:de:59:d8:9b:82:
7d:4f:e7:84:e5:f1:2c:91:a3:fb:b0:c0:46:20:50:
25:0d:08:e9:60:5a:91:6b:9b:84:ba:02:48:cf:27:
9f:8a:7b:55:c0:61:f4:4f:2c:03:27:1f:81:14:2f:
84:18:7f:30:ce:0e:24:0b:ee:9b:35:07:9d:c7:af:
8a:b9:05:a4:d6:03:35:f4:b4:4d:c3:cb:72:7d:eb:
d6:d4:99:51:d7:1b:29:c2:04:47:70:8b:c7:f2:7a:
42:f7:d0:7e:2d:42:51:3b:62:5c:97:7f:e5:92:5f:
68:34:fd:ad:43:68:b0:3c:f3:ca:ae:12:f7:b1:c9:
a7:b7:24:fa:52:b2:66:29:5e:3c:e4:93:21:e1:0b:
29:35:6e:0b:e1:25:a5:a6:59:8c:17:af:d5:5d:2b:
d8:be:d8:f5:23:38:14:f1:c0:0b:70:6d:7f:06:c9:
fe:6b:fe:d6:ef:47:0f:3c:b1:89:e9:6e:aa:12:af:
6a:f6:bf:dd:1e:71:cd:5d:e2:6c:14:ae:ce:0c:ff:
d7:78:91:b7:64:35:60:87:09:cf:37:bf:a2:b3:e1:
20:e8:0e:ff:bb:36:5e:1a:0a:26:c1:40:cb:dc:70:
ea:71:45:08:b5:6c:62:8b:7d:32:43:a1:71:cd:ab:
b6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:48:B9:CD:4E:44:4C:07:E5:8E:0F:90:EF:B3:D7:A6:75:8B:E6:28
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d21::/48
Signature Algorithm: sha256WithRSAEncryption
8c:bf:19:3b:ef:26:da:2c:85:75:e2:f5:bf:ff:75:c9:d1:87:
13:11:a1:0e:45:62:3d:2a:70:7c:0e:f7:ea:5c:af:a0:ab:4d:
cb:aa:c8:e8:54:e7:93:09:3a:c2:02:73:ce:64:64:77:62:3c:
14:ab:62:59:ad:bc:c4:94:d0:0a:b2:59:54:79:67:68:3c:b8:
a0:e4:ae:b2:ea:fb:81:f1:d8:6c:11:22:a1:ae:a1:1b:b4:9e:
4f:a3:e1:78:d4:86:2c:7b:12:6e:cd:e1:4d:16:34:10:e7:b2:
e5:9a:c9:0d:69:38:ec:1c:17:fe:5c:3d:18:b5:c0:f3:16:54:
38:c5:9d:91:5b:d7:97:71:03:8a:ec:34:e3:a3:d8:04:c8:95:
8c:01:27:77:fd:79:7f:c0:89:c7:1a:58:9a:d7:2b:23:1b:b0:
0a:eb:8b:f1:69:3a:84:c8:70:48:5e:a8:0f:bb:84:eb:a6:7e:
10:17:1f:79:50:49:37:bf:a4:83:d7:0d:95:37:f3:76:ed:1e:
ac:b7:4f:53:dc:39:b9:ce:4d:ce:ec:3b:a8:18:00:9f:78:5f:
53:41:e2:95:76:e0:c6:c4:49:e6:68:48:eb:31:a5:2b:e3:61:
c6:4d:c8:f6:05:98:f7:f8:3a:66:27:6c:67:15:07:f4:6a:d3:
52:fc:50:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org