Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
File: AS204375.roa (raw, json)
Hash identifier: EJnsMQSHmhvfWhny3HhvdN8KrXDMHZ5saZyLMDfWjXI=
Subject key identifier: 2D:0D:87:F3:24:A8:A7:34:10:82:90:31:47:88:32:8F:9C:64:52:77
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3E17A0328A639127BB168D928FC9F3E11CBECE40
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
Signing time: Tue 05 Nov 2024 03:39:59 +0000
ROA not before: Tue 05 Nov 2024 03:34:59 +0000
ROA not after: Tue 04 Nov 2025 03:39:59 +0000
asID: 204375
IP address blocks: 2a06:a005:2d3::/48 maxlen: 48
2a06:a005:5a0::/48 maxlen: 48
2a06:a005:ad0::/44 maxlen: 48
2a06:a005:2270::/44 maxlen: 48
2a06:a005:2590::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:17:a0:32:8a:63:91:27:bb:16:8d:92:8f:c9:f3:e1:1c:be:ce:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:34:59 2024 GMT
Not After : Nov 4 03:39:59 2025 GMT
Subject: CN=2D0D87F324A8A734108290314788328F9C645277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:96:df:63:21:fe:b5:61:25:66:11:a5:9b:a6:
3a:9b:7a:1b:d0:58:5d:7b:e1:3f:0f:4e:50:59:80:
f5:24:c8:8e:31:1d:78:77:27:50:9e:da:37:f5:32:
f4:5f:80:d8:0c:90:b6:4e:f6:8b:46:85:47:36:03:
4c:4f:94:19:2f:ac:11:f9:77:6f:2c:79:6e:1c:df:
c4:16:c1:e9:b5:02:3e:bb:e1:9a:46:a6:36:eb:0d:
b9:0a:ff:8f:85:88:a7:02:3b:6a:30:7b:13:65:03:
93:0f:c9:7c:64:9e:cf:f6:00:9f:79:ef:95:56:d4:
de:76:d2:7a:39:bb:5e:63:67:48:af:1a:1a:8c:bb:
d5:c4:48:d5:f3:00:33:d4:27:ac:cb:c2:3a:47:48:
2f:0d:87:73:74:1f:ef:a6:77:aa:a9:7f:e9:7a:7f:
de:8c:6c:c4:c3:c7:c3:16:0b:04:f0:6c:e3:e6:14:
85:5e:00:1d:92:78:62:a8:88:77:82:18:8b:16:a3:
e3:f0:e8:ba:66:16:a9:c9:ab:91:16:1e:b3:6e:c7:
07:f4:bd:55:10:0c:a4:96:b2:5b:a9:8d:ad:30:b2:
b5:81:06:8f:59:1a:44:a8:59:c9:ca:d3:4d:5e:e9:
0f:d9:31:ef:56:12:ba:2d:2b:2a:ca:dc:b4:54:a0:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0D:87:F3:24:A8:A7:34:10:82:90:31:47:88:32:8F:9C:64:52:77
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204375.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2d3::/48
2a06:a005:5a0::/48
2a06:a005:ad0::/44
2a06:a005:2270::/44
2a06:a005:2590::/44
Signature Algorithm: sha256WithRSAEncryption
28:be:2a:e1:99:36:91:19:17:03:d2:ef:ac:01:39:a2:51:58:
fb:f0:ba:d2:d1:45:a4:f4:10:3b:47:f0:f8:b9:1d:6e:55:8a:
63:8f:22:79:3f:8b:79:96:91:5b:7a:2a:32:80:f0:1b:4c:13:
73:5e:0f:d6:1c:65:e5:8b:a1:24:e8:4e:8d:ff:29:fe:6c:4d:
5d:7a:9c:4b:21:54:38:3d:0b:e5:99:bc:e9:60:cc:47:91:98:
25:6a:c0:b7:05:25:df:e2:7e:c0:3a:73:72:c3:b5:36:d8:38:
4d:25:42:ae:ad:35:31:0e:c7:cb:f8:00:b9:05:6c:c8:c4:52:
e7:a7:2a:6e:90:63:f4:0e:1b:a0:5a:d9:27:33:a5:0e:39:ae:
47:e9:92:ba:12:0d:1b:be:cf:29:48:7b:51:55:f9:25:8f:7d:
ec:31:3e:4d:f7:cc:f9:24:0b:6c:58:b9:98:93:ef:5f:bd:4e:
6f:59:66:0b:b2:97:73:85:89:09:f9:d9:36:0d:95:a5:80:be:
ee:22:35:59:c1:27:95:9f:7b:ab:40:63:22:f4:59:94:a7:e5:
a9:c4:b0:66:84:9a:7a:87:20:96:8c:3b:02:70:48:be:90:66:
81:aa:98:95:0d:19:88:e1:c6:46:18:0c:7d:2f:82:63:6c:c2:
f9:70:73:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:54 2024 by rpki-client on console-ams.rpki-client.org