Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
File: AS204740.roa (raw, json)
Hash identifier: iPqszRfjMKzIQibt8hPV7UEBhOchDGeUcPRuhF+QXc0=
Subject key identifier: DC:C0:A8:B0:E7:30:9C:60:E3:9E:D5:5E:BD:76:B8:02:27:67:A8:B8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7A13858637FEA3966B99645626871782B26D10F5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 204740
IP address blocks: 2a06:a005:a0d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:13:85:86:37:fe:a3:96:6b:99:64:56:26:87:17:82:b2:6d:10:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=DCC0A8B0E7309C60E39ED55EBD76B8022767A8B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0e:c6:4f:58:db:4e:f5:03:47:11:1d:f3:d2:
5a:bd:7b:d9:a7:79:a7:e9:24:92:eb:c1:45:c4:c5:
19:92:14:3a:dd:dc:35:c6:29:f3:6c:b8:ed:bd:e7:
9b:f9:a9:b9:bb:b7:cd:59:d3:13:66:42:e1:89:bf:
9c:e6:35:a5:f2:d7:53:10:e1:43:d9:ce:d4:ba:a5:
a0:13:2e:1b:a7:c8:12:93:3a:15:ed:49:2f:f2:77:
58:23:1a:26:5f:b0:84:47:22:8c:62:8b:99:e0:e8:
01:2b:61:4d:ba:70:8a:08:77:5e:49:6a:87:fa:14:
9a:cf:97:29:f6:81:b4:31:d1:9c:43:50:bd:77:bd:
cd:86:e6:42:da:10:62:af:48:5e:7d:c8:02:d5:5b:
e5:d8:c7:93:ef:19:c5:21:0b:a3:cc:ee:6d:f0:94:
00:c6:dc:83:ea:df:7b:12:85:3b:0e:86:33:7d:06:
10:79:dc:0b:e3:ad:61:af:6d:16:8e:9f:ff:f5:16:
21:45:4d:09:ed:06:e8:23:30:5d:ef:0a:01:9a:32:
30:56:3d:dc:48:e7:12:79:18:91:bd:a5:8b:68:b4:
3c:54:35:64:80:f2:fc:cb:b1:14:5c:81:2c:74:c6:
29:56:a3:46:26:13:07:94:ce:8c:1c:90:3f:bf:21:
1f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C0:A8:B0:E7:30:9C:60:E3:9E:D5:5E:BD:76:B8:02:27:67:A8:B8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a0d::/48
Signature Algorithm: sha256WithRSAEncryption
6a:0d:2c:70:22:15:09:ab:18:df:f8:2f:22:d2:6c:66:ad:88:
5c:a0:62:23:1c:1c:04:a2:20:56:f2:a7:f9:94:7a:99:49:66:
88:e8:b3:6e:76:a5:dc:5a:65:81:09:89:e5:7b:e1:6e:28:4a:
d4:5b:56:3d:c1:d6:a8:d9:cb:06:17:8c:cf:3f:a1:5e:b6:6e:
66:d2:84:bc:56:93:61:0f:e0:00:76:37:27:bd:45:ac:01:8e:
04:ce:41:14:e4:7d:90:d5:1f:01:9e:54:dc:3b:ae:95:7c:77:
78:00:f5:7d:7e:8f:1f:bb:c2:9b:69:ce:bd:3e:63:ca:0d:50:
7c:32:0f:d0:5b:f4:6e:42:8d:c5:42:3e:c3:e0:48:07:a3:5e:
52:1e:b2:5c:1a:e0:34:a4:e5:d8:3f:d4:14:43:4f:3b:cf:20:
45:d0:4e:f4:76:03:cb:8c:db:f8:58:dc:ad:94:7c:7c:a9:0b:
a8:29:46:af:0f:4a:1d:ec:cf:55:12:d3:9e:3c:71:dc:1e:b0:
61:cc:d5:b1:b3:4b:f8:e8:e5:d9:df:79:6d:86:cb:82:78:7d:
a3:fe:61:6e:e1:9d:7e:73:e6:b4:a6:e0:a7:dd:c6:67:99:29:
f5:40:9d:06:48:8a:e3:f7:06:da:17:a5:a4:f5:1d:33:ad:43:
84:77:44:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:45:54 2024 by rpki-client on console-ams.rpki-client.org