Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
File: AS204710.roa (raw, json)
Hash identifier: UF8MayPx6Xyi11+8sEVpy4dqJL8bL9VAPtg6MXp6i9o=
Subject key identifier: 74:90:71:A7:66:8B:AE:04:67:48:36:8F:AD:57:23:67:6C:DE:3F:21
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 276026369718CD62E7DEC4F49D9F90398CA69F50
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 204710
IP address blocks: 2a06:a005:a0a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:60:26:36:97:18:cd:62:e7:de:c4:f4:9d:9f:90:39:8c:a6:9f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=749071A7668BAE046748368FAD5723676CDE3F21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e0:c6:14:51:e6:53:bd:cb:ee:63:a1:63:9e:
53:af:86:87:6d:14:4a:d5:08:6b:05:89:6f:3f:32:
70:5d:f1:e7:71:aa:ac:dc:75:0a:9f:60:04:ff:61:
be:7c:8e:45:b1:31:76:6e:a9:fe:ec:52:75:ae:44:
c8:7b:2b:ed:14:fb:e7:70:b2:15:92:a4:90:fa:25:
c4:ac:9d:f1:92:0e:b8:e8:80:bb:52:68:e4:fb:ca:
8e:0a:a3:6d:40:da:cc:54:75:97:b4:b7:e0:23:18:
0f:23:4f:7f:d8:ba:64:d4:17:9b:26:22:70:15:fe:
14:44:0a:4c:36:3d:be:02:ef:eb:d6:55:34:e6:07:
81:ad:6c:05:0b:db:99:f5:7b:e5:a6:8e:f7:94:32:
01:b6:19:ac:24:b8:b7:1e:ce:38:8e:79:a0:50:dc:
fa:d6:6e:d7:5c:b7:8b:1e:27:52:22:96:5c:c9:b8:
fa:68:aa:2f:27:ef:2c:35:eb:3c:9e:67:24:47:3a:
5a:05:e9:91:64:76:73:13:4b:34:af:cb:9d:a8:78:
2d:36:0f:38:c4:9c:a3:2e:d7:29:a3:1a:46:0f:b6:
35:ff:7d:42:b1:89:b4:42:09:84:2c:c0:e9:c7:44:
f5:38:ae:72:0f:91:bc:78:1b:82:2e:b1:69:35:e5:
bc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:90:71:A7:66:8B:AE:04:67:48:36:8F:AD:57:23:67:6C:DE:3F:21
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a0a::/48
Signature Algorithm: sha256WithRSAEncryption
04:4b:10:ca:ab:1f:40:04:0f:18:08:01:30:19:15:22:6f:f4:
eb:78:63:b9:17:a4:b8:00:6e:5b:00:53:26:43:18:6b:16:d5:
56:58:db:ea:bf:33:90:b0:e1:a9:5b:8b:55:85:1a:57:2c:1d:
13:19:c8:33:98:91:1e:2f:92:38:1b:cf:35:79:48:31:1c:5d:
40:f5:87:f2:78:af:be:32:b2:ff:03:d7:8a:dd:ea:a9:b5:9c:
98:9c:ed:cd:b7:a3:b4:f3:a2:92:79:f8:92:81:1c:04:e3:7f:
cd:3d:cd:c7:44:3e:f7:37:01:72:bf:0a:82:0a:55:a4:33:42:
2a:e7:f8:b5:87:b7:78:e7:eb:71:d5:2e:c7:cd:e4:2c:b1:b5:
cb:e0:cd:31:ea:57:91:65:25:5c:2f:53:69:43:fb:a0:be:dd:
da:73:01:39:74:f3:e8:f9:ce:4b:94:d8:1a:a1:0e:c8:62:cd:
83:d2:ca:c6:aa:07:0e:72:6b:8e:0e:73:7a:f8:da:2b:89:a2:
c3:70:6b:54:98:0b:14:9d:a7:7b:9f:1d:00:12:47:cc:44:32:
3e:49:e9:cc:6c:d5:5e:83:60:9b:9a:35:30:1d:73:3c:d7:02:
f8:65:d4:b7:38:4e:c2:55:5d:37:f0:e1:42:a1:fb:c5:e7:38:
34:5d:ec:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org