Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
File: AS204340.roa (raw, json)
Hash identifier: j03M7azP8Bh2yei29qpAjlD/Nwq0nnNNyfcD9ZdhP78=
Subject key identifier: 72:DB:C3:F0:5E:40:09:5A:8C:BA:1A:EB:A0:78:A6:88:E8:B8:C8:3F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5E4D0C0A3BE269029904EDF859A46B1BFF1DF72C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 204340
IP address blocks: 2a06:a005:8b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:4d:0c:0a:3b:e2:69:02:99:04:ed:f8:59:a4:6b:1b:ff:1d:f7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=72DBC3F05E40095A8CBA1AEBA078A688E8B8C83F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bc:29:68:91:27:9e:53:7f:3c:b7:33:03:a0:
c4:b8:60:7f:97:0c:d7:4a:c8:21:d3:a4:9b:98:09:
59:bc:74:c7:7d:7e:95:51:f4:22:fe:4d:fc:ba:da:
30:f6:eb:91:51:45:30:7d:b1:6a:cc:f5:eb:d6:2e:
a5:88:a1:2c:56:7d:b3:b0:51:71:cc:36:3b:36:0a:
ff:76:ae:ce:f8:85:33:76:c6:01:90:9f:80:6f:78:
66:78:5a:98:65:c0:e2:d6:17:8f:77:bf:05:1e:95:
3d:05:d4:2b:45:ee:8f:e7:cd:ee:60:7d:2c:44:4c:
48:f6:aa:d3:d2:63:03:b9:72:26:60:91:f2:ba:3d:
d7:be:6b:67:a5:72:0b:c8:cc:6b:33:ef:58:6d:96:
10:e2:84:6a:75:52:7b:9d:3a:35:1e:a1:35:85:9c:
32:e8:be:e1:99:6f:5b:8c:67:80:ac:d1:50:8d:d2:
9b:37:54:97:19:69:65:ed:06:62:0d:ab:d8:98:eb:
c7:95:0c:bd:38:53:69:5b:13:e6:fe:b3:b3:39:98:
5a:63:a5:8f:e8:ee:02:88:e0:26:f7:39:a0:16:7b:
a2:0e:0c:fb:a8:82:8d:db:88:a9:2d:e2:bf:aa:71:
16:83:2c:99:c7:ea:1e:49:ec:bd:fd:0e:4a:08:69:
f6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DB:C3:F0:5E:40:09:5A:8C:BA:1A:EB:A0:78:A6:88:E8:B8:C8:3F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:8b0::/44
Signature Algorithm: sha256WithRSAEncryption
62:e2:78:fb:dc:99:94:fc:15:99:7c:c1:b6:37:54:26:94:ab:
28:91:ff:f4:4f:f1:d2:ab:64:80:f5:83:83:1c:ca:2e:f1:9f:
9f:f0:02:d2:5c:aa:34:a8:da:3c:45:87:cb:ed:eb:3a:90:31:
6f:53:8c:ea:c2:4e:f0:dd:49:ac:2d:38:87:22:20:86:9f:39:
e4:8f:79:f3:17:70:0a:07:13:97:59:d4:80:9c:8d:47:a9:af:
e2:1c:eb:2a:2c:05:d9:ed:7e:ea:54:03:8a:0e:88:28:50:40:
28:ba:48:39:1c:58:0d:c5:75:49:9f:ad:4c:05:ce:48:0a:0e:
f6:86:de:c6:6d:8d:c1:99:fb:4d:c8:46:a9:8d:ff:d2:ac:63:
ee:fa:02:af:47:a4:76:c9:ac:35:ea:d0:32:37:b1:0f:d2:fe:
7c:0a:a2:ad:b9:3b:84:08:a9:a2:40:ce:21:34:a5:07:c5:a7:
49:7f:ac:2a:59:06:bf:2c:f3:50:3c:46:c6:44:5c:33:45:2f:
d0:45:5b:63:54:d5:18:51:90:55:d9:68:8e:1c:5a:f6:03:0d:
2a:39:56:13:d2:2e:93:a6:cc:29:d2:d8:25:cc:20:53:6a:7a:
b3:ac:9d:dc:ca:13:98:cd:17:5a:37:aa:e7:95:0d:8d:d0:4d:
cc:78:49:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org