Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204693.roa
File: AS204693.roa (raw, json)
Hash identifier: 0/wIYbSI42AgCvJOSZuOH6QvSNOzMefCa3McZy5J+8c=
Subject key identifier: ED:F3:0C:9C:DC:46:9D:07:E9:63:D3:ED:8F:63:E9:99:91:5C:42:6A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 031D30D85EDD5DD74752381C946A36223748684A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204693.roa
Signing time: Tue 05 Dec 2023 02:44:16 +0000
ROA not before: Tue 05 Dec 2023 02:39:16 +0000
ROA not after: Tue 03 Dec 2024 02:44:16 +0000
asID: 204693
IP address blocks: 2a06:a005:ce0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:1d:30:d8:5e:dd:5d:d7:47:52:38:1c:94:6a:36:22:37:48:68:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:16 2023 GMT
Not After : Dec 3 02:44:16 2024 GMT
Subject: CN=EDF30C9CDC469D07E963D3ED8F63E999915C426A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d7:d0:f5:84:49:6e:24:a6:95:5d:08:5a:8f:
b0:20:a1:62:22:2b:45:4c:70:ac:7c:30:58:79:ed:
25:39:5f:47:ac:87:e7:7d:c5:7d:0b:f2:4a:c5:12:
cb:c6:44:64:76:7f:38:2f:99:af:90:d4:c9:16:5c:
cc:5c:c5:18:59:2e:2c:4d:df:70:f9:b5:30:05:01:
95:30:96:fd:5f:63:14:d9:81:a6:5d:57:b9:64:8f:
65:dd:aa:c6:5b:18:e0:ae:ee:42:ba:25:a7:b8:da:
34:82:63:7b:56:88:f7:f6:b9:7c:57:44:4a:a4:c2:
22:dc:c6:23:c2:68:df:5d:0f:a5:12:4e:37:bd:19:
35:6b:88:c0:1f:bd:51:c4:61:27:36:eb:77:d5:e4:
bc:51:81:ae:0b:6a:80:41:28:92:10:60:79:50:e8:
2f:9a:64:35:ce:73:cd:3d:c3:2e:aa:cb:26:f9:9a:
82:43:15:03:80:36:3e:bf:c6:6d:b3:74:80:23:e3:
16:cb:51:fa:23:1b:ea:25:8d:1a:cf:a6:bc:0f:2f:
4a:7a:75:7f:28:19:b5:8d:e0:2c:8d:ed:8a:ad:6e:
25:a4:fc:b5:fe:c5:d2:46:8b:fa:81:a9:4d:f9:49:
7c:75:f1:e3:67:6c:44:8e:23:a2:8b:7a:92:16:fe:
ba:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F3:0C:9C:DC:46:9D:07:E9:63:D3:ED:8F:63:E9:99:91:5C:42:6A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204693.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ce0::/44
Signature Algorithm: sha256WithRSAEncryption
02:aa:6c:02:c3:f5:fb:35:c8:70:bd:d3:c7:78:3e:a1:28:b2:
eb:07:09:fa:b0:9d:f6:8d:23:06:50:ba:2b:57:15:ad:8f:2b:
6c:38:c0:dd:06:f2:fe:a7:9e:f4:b8:73:ec:57:7c:ab:e5:2e:
10:9d:b4:67:0a:81:47:57:c1:63:f9:5b:31:f8:93:a2:00:0a:
71:fa:aa:44:a8:4f:62:3a:7c:51:e4:9e:95:3a:27:a2:3f:8c:
b0:2e:59:f6:7d:f5:3a:d5:63:aa:a2:19:44:21:b1:55:b3:dc:
79:f4:cd:87:74:5d:d6:1e:9b:f6:57:75:49:af:9f:23:9f:6c:
9e:50:88:00:09:b1:c6:5a:42:54:68:64:a1:48:99:e9:8a:37:
8d:4e:46:59:a2:74:ce:5d:97:22:d7:b5:e9:fd:49:d5:c4:36:
b5:9e:f8:0a:7a:bf:56:f8:53:67:e5:7f:e8:5e:cb:9f:d7:3b:
21:9b:b3:34:3a:78:50:71:88:02:25:af:96:93:d0:d2:84:ac:
99:1e:42:08:40:51:58:9f:71:d7:f7:35:02:c9:d5:55:bf:41:
77:0b:38:ce:3b:4e:6f:e9:9a:10:ce:00:9d:13:7d:43:61:c4:
8e:c9:f3:9f:59:33:e0:cd:50:3b:1f:52:fd:54:24:2b:d3:9c:
45:9d:9b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org