Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
File: AS204340.roa (raw, json)
Hash identifier: axFrL5uSmbAz9wF8jt7qnEoRptykNqLHBa9NLKyn0GE=
Subject key identifier: 09:AA:98:B9:B7:33:D1:EB:85:FE:98:F7:3D:27:31:45:31:FD:62:5E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6F1AF0A43EB11C5ED1AFED1A65BED16839E9FB24
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 204340
IP address blocks: 2a06:a005:8b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1a:f0:a4:3e:b1:1c:5e:d1:af:ed:1a:65:be:d1:68:39:e9:fb:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=09AA98B9B733D1EB85FE98F73D27314531FD625E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:58:74:a2:a3:a9:0c:d5:fa:c5:d3:b0:39:3f:
ac:f4:5e:b4:06:fe:9a:b8:58:d9:2b:25:1b:b2:e5:
a2:da:06:61:a8:90:42:e8:6b:ea:b6:45:15:bc:32:
4a:8b:92:42:30:ad:01:2f:ec:9d:7e:42:65:7f:14:
a8:ff:ea:8d:be:a9:06:de:41:dc:32:7a:7a:35:68:
df:1a:84:71:92:b5:27:48:a7:da:fb:f3:0e:32:92:
05:01:72:6e:29:7b:a2:fa:23:3b:1c:e7:df:a0:0b:
6d:fb:1f:37:ff:73:e9:56:a2:4f:ce:ae:d8:56:a1:
ab:a7:64:d2:69:a9:a9:86:8a:44:25:f9:e2:45:ad:
2f:17:53:76:cf:e4:c6:34:34:a8:5f:3a:3d:12:df:
b4:0d:5f:0f:bc:1a:5c:4b:1b:33:53:2a:ad:96:b1:
14:37:74:23:98:44:37:1e:e6:d9:5c:4b:fc:88:1b:
a9:05:9f:7d:14:67:bf:cc:b1:44:07:aa:03:e2:8f:
7f:28:c7:55:5f:6b:2c:df:e3:06:3c:bc:1c:d4:1c:
86:09:03:f6:d7:c3:f6:d3:ed:d0:2f:a8:05:cd:74:
a8:2a:44:de:b7:34:60:ba:49:ed:70:ab:df:30:69:
0a:ca:9e:6b:11:fc:14:b5:d7:69:09:d1:28:af:5e:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:AA:98:B9:B7:33:D1:EB:85:FE:98:F7:3D:27:31:45:31:FD:62:5E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:8b0::/44
Signature Algorithm: sha256WithRSAEncryption
50:be:04:c6:29:d3:4b:a4:66:56:63:80:82:8c:b3:1b:29:b6:
15:1c:c2:ca:fc:8e:6a:55:d5:45:22:c5:fc:48:e1:ae:df:17:
68:07:38:3a:52:0f:af:19:5b:60:61:b8:e0:73:00:82:2a:4e:
96:0d:73:7e:9e:00:a3:e2:23:6c:21:33:21:98:56:b0:c6:e7:
07:f9:84:9e:03:da:6c:5e:b6:f6:f3:7b:f7:6f:e7:5d:44:38:
9a:01:4c:d1:c4:5c:9b:d1:0f:3d:14:23:a5:f0:b9:40:72:9c:
b6:01:4d:3b:56:2a:12:6f:be:13:9f:b4:49:45:b1:69:d9:b3:
76:b1:99:5b:37:c3:2c:fc:db:d8:bc:89:58:85:b0:f0:b8:7f:
4c:ff:ea:49:8b:c4:b0:17:0e:f5:1e:0b:aa:af:8b:97:57:58:
c2:bb:b8:4d:5a:05:cb:87:ef:3e:9d:32:8e:8d:eb:aa:9b:3e:
05:f0:91:d6:5e:80:82:6d:9c:eb:4f:60:e2:d4:11:f8:15:39:
cb:a0:25:0c:14:d9:f5:3f:84:1a:99:85:ca:df:ab:17:ae:b4:
dc:85:08:78:03:ed:42:51:0c:b6:b5:18:23:a4:52:a8:fa:68:
4a:98:75:ca:6e:8f:8f:01:45:74:85:83:b3:90:3e:f3:9f:47:
09:fb:b7:16
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUbxrwpD6xHF7Rr+0aZb7RaDnp+yQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDBaFw0yNTExMDQwMzQwMDBaMDMxMTAvBgNV
BAMTKDA5QUE5OEI5QjczM0QxRUI4NUZFOThGNzNEMjczMTQ1MzFGRDYyNUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPWHSio6kM1frF07A5P6z0XrQG
/pq4WNkrJRuy5aLaBmGokELoa+q2RRW8MkqLkkIwrQEv7J1+QmV/FKj/6o2+qQbe
Qdwyeno1aN8ahHGStSdIp9r78w4ykgUBcm4pe6L6Izsc59+gC237Hzf/c+lWok/O
rthWoaunZNJpqamGikQl+eJFrS8XU3bP5MY0NKhfOj0S37QNXw+8GlxLGzNTKq2W
sRQ3dCOYRDce5tlcS/yIG6kFn30UZ7/MsUQHqgPij38ox1Vfayzf4wY8vBzUHIYJ
A/bXw/bT7dAvqAXNdKgqRN63NGC6Se1wq98waQrKnmsR/BS112kJ0SivXj5rAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUCaqYubcz0euF/pj3PScxRTH9Yl4wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA0MzQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBQiwMA0GCSqGSIb3DQEBCwUAA4IBAQBQvgTG
KdNLpGZWY4CCjLMbKbYVHMLK/I5qVdVFIsX8SOGu3xdoBzg6Ug+vGVtgYbjgcwCC
Kk6WDXN+ngCj4iNsITMhmFawxucH+YSeA9psXrb283v3b+ddRDiaAUzRxFyb0Q89
FCOl8LlAcpy2AU07VioSb74Tn7RJRbFp2bN2sZlbN8Ms/NvYvIlYhbDwuH9M/+pJ
i8SwFw71Hguqr4uXV1jCu7hNWgXLh+8+nTKOjeuqmz4F8JHWXoCCbZzrT2Di1BH4
FTnLoCUMFNn1P4QamYXK36sXrrTchQh4A+1CUQy2tRgjpFKo+mhKmHXKbo+PAUV0
hYOzkD7zn0cJ+7cW
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org