Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204474.roa
File: AS204474.roa (raw, json)
Hash identifier: Dh7QatNvbwwz/zYpTudw5fDiUd6tUh8P53Ar2ecgjlM=
Subject key identifier: EE:E9:B1:44:B2:C0:C1:B2:E2:4B:46:A8:90:92:BA:9D:79:EA:37:76
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7F620C846D1FAEAB683C4A8940A03530F0458DF0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204474.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 204474
IP address blocks: 2a06:a005:1cf0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:62:0c:84:6d:1f:ae:ab:68:3c:4a:89:40:a0:35:30:f0:45:8d:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=EEE9B144B2C0C1B2E24B46A89092BA9D79EA3776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:83:06:ab:48:bc:f4:81:a6:1e:6a:52:a4:ff:
4a:e2:26:7b:58:31:a5:b3:1d:7f:94:d7:0c:9d:9f:
b9:13:02:55:91:b5:90:1d:1f:2c:34:a5:92:9b:a2:
0f:a4:74:0c:be:b4:6b:1e:9c:40:30:9d:6a:b3:66:
50:19:35:fd:56:f7:8d:db:cb:88:dc:5c:9d:08:c5:
63:61:d1:e3:0a:25:42:a0:fb:6c:23:36:43:53:d1:
cc:f2:a5:4d:a5:a9:da:42:68:43:b5:8b:de:9a:17:
d9:fa:07:0c:30:dc:d3:1e:fd:80:10:ad:5a:13:bf:
cf:71:a5:d7:d7:a1:c9:34:6e:cd:b4:0e:ba:83:e4:
d9:d4:d7:db:f3:6f:59:f8:e0:ec:7d:d3:04:7d:30:
ac:46:28:71:39:f2:a0:7c:23:98:ee:91:cf:9c:d1:
94:23:50:6f:87:3e:d4:55:01:4e:ec:4f:56:07:5b:
0f:ee:4e:ef:a9:5a:da:77:db:68:c8:a5:6c:8e:e6:
8d:53:35:43:10:d3:d5:9a:d3:9c:fe:0f:b8:db:1d:
8d:ac:11:4d:b3:74:d3:51:17:08:d8:09:d0:ff:ca:
6a:79:5f:1b:ad:ca:65:be:5c:28:0b:65:cb:7d:75:
6a:16:fc:9d:4a:4c:c4:ad:cb:06:34:14:16:e2:be:
9e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E9:B1:44:B2:C0:C1:B2:E2:4B:46:A8:90:92:BA:9D:79:EA:37:76
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204474.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1cf0::/44
Signature Algorithm: sha256WithRSAEncryption
56:44:6c:93:38:bd:89:12:b5:bb:91:b7:fe:d6:fd:1f:60:5d:
07:f1:47:a3:52:54:23:c7:18:04:56:81:37:3b:c2:04:95:fc:
49:e8:36:42:b8:f6:5a:a8:36:81:23:ab:33:65:17:4a:56:ce:
f1:d3:ff:ef:12:84:71:cb:9e:0d:c2:84:9b:af:c2:10:91:d4:
c3:2b:53:a2:65:03:ab:b3:93:27:b3:3c:4a:05:c9:5f:df:a8:
0f:43:0e:e0:8e:35:df:18:b6:0f:a4:1c:4d:a5:d4:18:a7:ba:
bd:cd:b8:51:6e:45:3f:08:91:b1:8f:51:0f:ed:d4:66:97:0e:
ad:48:61:4b:57:6b:88:11:a7:71:14:ca:ab:45:02:81:03:cb:
a3:36:aa:62:65:47:4d:45:ef:71:88:be:d5:2a:06:a3:b4:57:
8b:d1:42:2c:28:68:b0:0f:3b:a2:17:0e:c0:77:b5:10:7b:de:
30:3c:c0:7a:61:86:11:2b:c5:b9:0a:85:9a:12:e7:07:e4:a2:
a3:84:33:f0:b9:db:0f:e2:e4:2c:45:af:45:68:22:e0:10:4d:
15:0d:77:39:ea:52:ca:1c:97:fb:94:96:43:a9:2c:0c:30:f4:
99:8f:e7:33:22:6c:9e:c2:b4:d9:a3:4d:69:01:91:b7:b1:3e:
0c:71:d2:1e
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUf2IMhG0frqtoPEqJQKA1MPBFjfAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MTBaFw0yNTExMDQwMzQwMTBaMDMxMTAvBgNV
BAMTKEVFRTlCMTQ0QjJDMEMxQjJFMjRCNDZBODkwOTJCQTlENzlFQTM3NzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjgwarSLz0gaYealKk/0riJntY
MaWzHX+U1wydn7kTAlWRtZAdHyw0pZKbog+kdAy+tGsenEAwnWqzZlAZNf1W943b
y4jcXJ0IxWNh0eMKJUKg+2wjNkNT0czypU2lqdpCaEO1i96aF9n6Bwww3NMe/YAQ
rVoTv89xpdfXock0bs20DrqD5NnU19vzb1n44Ox90wR9MKxGKHE58qB8I5jukc+c
0ZQjUG+HPtRVAU7sT1YHWw/uTu+pWtp322jIpWyO5o1TNUMQ09Wa05z+D7jbHY2s
EU2zdNNRFwjYCdD/ymp5XxutymW+XCgLZct9dWoW/J1KTMStywY0FBbivp71AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQU7umxRLLAwbLiS0aokJK6nXnqN3YwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA0NDc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBRzwMA0GCSqGSIb3DQEBCwUAA4IBAQBWRGyT
OL2JErW7kbf+1v0fYF0H8UejUlQjxxgEVoE3O8IElfxJ6DZCuPZaqDaBI6szZRdK
Vs7x0//vEoRxy54NwoSbr8IQkdTDK1OiZQOrs5MnszxKBclf36gPQw7gjjXfGLYP
pBxNpdQYp7q9zbhRbkU/CJGxj1EP7dRmlw6tSGFLV2uIEadxFMqrRQKBA8ujNqpi
ZUdNRe9xiL7VKgajtFeL0UIsKGiwDzuiFw7Ad7UQe94wPMB6YYYRK8W5CoWaEucH
5KKjhDPwudsP4uQsRa9FaCLgEE0VDXc56lLKHJf7lJZDqSwMMPSZj+czImyewrTZ
o01pAZG3sT4McdIe
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org