Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
File: AS204789.roa (raw, json)
Hash identifier: 8quACDIwBpqBxicEpvUhYup7ixX8hukae0zPDgvfFWU=
Subject key identifier: E0:F4:43:A1:E3:90:02:74:46:D4:0C:2A:A8:2B:27:30:49:A5:20:1A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0942A65B9E27C5D10D113F7FBEA793D7DF27526A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
Signing time: Fri 15 Dec 2023 15:44:21 +0000
ROA not before: Fri 15 Dec 2023 15:39:21 +0000
ROA not after: Fri 13 Dec 2024 15:44:21 +0000
asID: 204789
IP address blocks: 2a06:1286::/32 maxlen: 48
2a06:a005:1db0::/44 maxlen: 48
2a06:a005:1dc0::/44 maxlen: 48
2a06:a005:1dd0::/44 maxlen: 48
2a06:a005:1de0::/44 maxlen: 48
2a06:a005:1df0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:42:a6:5b:9e:27:c5:d1:0d:11:3f:7f:be:a7:93:d7:df:27:52:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 15 15:39:21 2023 GMT
Not After : Dec 13 15:44:21 2024 GMT
Subject: CN=E0F443A1E390027446D40C2AA82B273049A5201A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:0a:7e:ee:b5:0b:ae:09:b3:11:b9:2e:35:
60:ce:bb:06:ae:0f:2a:e0:9f:43:b2:be:8a:60:c2:
90:ea:37:92:af:80:ea:f2:30:37:f0:5c:10:14:c1:
f3:4e:c0:9f:6c:b3:b2:c8:19:2f:73:a7:44:c6:5b:
19:f1:35:ee:18:ad:d3:8f:20:be:17:5f:24:8f:c6:
9d:e5:3c:7c:41:3c:9d:43:4c:26:15:e2:2a:a1:e8:
82:56:1d:ea:56:a5:1c:d0:34:41:f6:df:c0:37:f7:
cf:b4:2b:48:2b:81:8a:a7:c2:3a:bb:1c:ce:6b:8a:
f4:fd:d7:41:bf:2c:6e:58:06:4c:98:ed:13:da:ba:
2e:bc:2a:8c:b8:4a:75:69:8c:96:bb:54:e8:8f:de:
82:6c:24:53:41:8e:ef:e1:ca:df:7c:60:35:32:86:
4d:7a:e9:4a:94:cd:34:07:5b:df:64:b6:a5:3a:6c:
d7:fe:74:3c:a2:29:89:7e:ee:b0:d0:92:2c:2e:be:
1d:16:39:a1:d7:e7:31:56:5a:fe:c8:ed:cf:f0:9b:
2c:64:91:ab:cd:cd:72:8d:0c:f8:90:3b:1c:06:f2:
df:d8:3e:9d:91:cc:c7:5b:9f:99:91:29:93:90:70:
56:fc:ff:72:72:5f:58:4e:44:6c:9f:9a:e7:8f:6e:
52:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F4:43:A1:E3:90:02:74:46:D4:0C:2A:A8:2B:27:30:49:A5:20:1A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
2a06:a005:1db0::-2a06:a005:1dff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8a:96:61:99:ce:26:07:94:0d:88:4a:09:e8:0d:86:83:79:d1:
46:9c:00:d8:38:ba:6e:e1:e3:95:3c:77:74:58:7f:db:32:b4:
2e:fe:33:d2:a3:3c:01:d0:20:c7:c6:bc:ff:e8:d9:64:9e:3d:
ea:27:8a:7f:b1:bc:e2:09:6a:45:a4:2f:bc:a2:76:42:10:d5:
3c:23:bb:12:ce:82:44:aa:ab:4c:45:8f:8b:b6:db:4a:20:58:
09:9f:3a:b1:57:da:46:a4:d4:2d:e0:b7:0f:9e:11:10:db:0e:
40:ba:e3:0d:ac:05:99:92:2d:68:b7:2a:63:90:bc:f7:c8:c1:
18:55:ca:fc:ee:bd:d2:b3:8a:9b:85:96:52:d2:96:2c:f0:53:
ba:89:f9:38:45:e7:cc:9f:56:d6:89:49:e7:77:a6:de:c6:8f:
36:ea:f7:c3:e8:34:1d:46:7e:ec:14:d2:58:20:12:79:ec:6b:
6d:a0:2e:87:04:24:95:e2:bb:10:93:10:f2:33:bb:66:dc:1d:
ef:75:f1:cf:29:d1:4f:a0:08:ed:2f:31:60:f6:5c:e3:83:01:
d8:a2:d2:b7:ca:1b:4b:de:6c:c0:8d:84:5a:40:36:cb:d8:37:
60:8f:35:c8:e3:7f:f1:a3:c4:3f:a3:4a:ea:15:03:b9:6c:bf:
79:fa:9b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org