Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
File: AS204740.roa (raw, json)
Hash identifier: z0GfDWhryO/eFzUH0zLg1tfnrt1WYtQL0M6Guc2VRqs=
Subject key identifier: E9:D9:F7:77:DB:1F:19:F0:34:6A:A9:CD:2B:28:ED:AA:EB:7C:6D:D5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2C424EA346A9925EBDADA653A34780ECAFE0919A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 204740
IP address blocks: 2a06:a005:a0d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:42:4e:a3:46:a9:92:5e:bd:ad:a6:53:a3:47:80:ec:af:e0:91:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=E9D9F777DB1F19F0346AA9CD2B28EDAAEB7C6DD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a5:b1:57:56:a8:b8:66:f9:3b:92:da:d4:6a:
cd:ff:32:ba:93:6f:00:c5:5d:67:94:54:e1:43:48:
7b:0c:62:e9:81:e7:93:18:20:4f:65:13:06:7a:f7:
00:66:a0:7c:f6:bd:86:1b:c9:dc:fd:43:0e:e8:21:
42:15:c6:94:89:9c:85:26:af:b3:1c:89:1f:b8:a4:
b0:38:50:5c:80:a4:75:22:a6:71:39:d9:ae:e0:3c:
bf:b2:22:b1:1a:68:94:56:be:e3:8e:4a:f5:3b:f2:
5f:f3:d8:a4:6c:ca:2a:83:5f:6d:81:43:3a:60:78:
08:2e:18:1e:4b:69:a9:0f:31:b1:38:1e:92:25:2d:
41:17:92:b0:05:7e:46:ff:bd:f1:46:3e:00:11:11:
e8:92:6d:f6:98:9d:c6:8b:45:83:7a:16:46:25:37:
f9:2f:d4:91:71:c9:00:c3:36:f2:bd:bb:97:d4:f1:
c9:5a:bc:2c:e1:0b:63:1f:20:3b:74:63:13:55:4c:
ab:4b:95:6c:0e:1b:ef:c8:81:d0:c2:98:ce:5e:b4:
11:99:0a:b2:f6:26:69:b7:1b:66:2e:bf:78:b9:9c:
14:07:c3:10:36:27:2d:4c:58:cf:87:9c:06:1b:36:
3d:da:f7:de:12:83:65:04:0c:92:60:dd:4a:35:53:
52:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D9:F7:77:DB:1F:19:F0:34:6A:A9:CD:2B:28:ED:AA:EB:7C:6D:D5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204740.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a0d::/48
Signature Algorithm: sha256WithRSAEncryption
67:c1:e9:0a:9a:41:91:7d:70:c7:21:f4:5b:4e:c7:24:b6:54:
e2:af:08:68:21:77:30:9b:1e:72:77:38:e1:2d:81:c1:e3:40:
c6:09:19:fa:0b:c5:3b:c9:bb:79:84:da:ba:72:88:6c:62:45:
12:d2:55:59:13:1e:78:5d:80:bf:37:7e:f0:70:ae:0b:ec:b6:
fa:55:f4:1c:7c:0b:88:2c:56:52:f9:eb:a1:b7:49:f8:0e:4e:
cc:03:6d:f6:a8:41:ae:7f:2e:23:36:1e:58:c5:45:03:33:8a:
a9:41:cd:ac:83:26:d7:a1:ac:dd:ea:1a:7f:c1:20:98:61:90:
18:ab:4b:da:60:80:6c:1f:8f:f3:67:36:42:fc:e4:34:d5:94:
70:04:80:1f:55:e2:e6:42:87:2c:34:37:25:8d:d0:fd:d7:86:
2f:cf:10:66:50:56:45:20:f8:e0:29:95:ad:03:e8:1e:4a:15:
eb:41:70:87:3b:44:61:63:6d:bd:94:90:76:b1:2b:03:22:05:
93:cd:e2:99:43:fc:8a:0b:ad:e9:be:71:ee:9e:76:35:be:b1:
7d:f6:61:49:24:32:66:06:71:1e:40:a9:76:c0:02:e0:c7:d2:
e3:f1:1f:e1:72:9f:5e:20:f1:dc:3c:b5:4f:4b:e8:72:69:72:
19:d0:d0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org