Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
File: AS204789.roa (raw, json)
Hash identifier: QN9LajtPDELf5loi4P8zj/gaRHXSWQHP1RDUbnVLMGI=
Subject key identifier: 5E:B5:09:5C:EE:0B:7A:BE:87:2D:D9:E3:18:FC:1C:E6:74:6E:A3:D0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0C5EA414CE294216C2367B3CF4662B77B056E2E1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
Signing time: Fri 15 Nov 2024 16:40:12 +0000
ROA not before: Fri 15 Nov 2024 16:35:12 +0000
ROA not after: Fri 14 Nov 2025 16:40:12 +0000
asID: 204789
IP address blocks: 2a06:1286::/32 maxlen: 48
2a06:a005:1db0::/44 maxlen: 48
2a06:a005:1dc0::/44 maxlen: 48
2a06:a005:1dd0::/44 maxlen: 48
2a06:a005:1de0::/44 maxlen: 48
2a06:a005:1df0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:5e:a4:14:ce:29:42:16:c2:36:7b:3c:f4:66:2b:77:b0:56:e2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 15 16:35:12 2024 GMT
Not After : Nov 14 16:40:12 2025 GMT
Subject: CN=5EB5095CEE0B7ABE872DD9E318FC1CE6746EA3D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:f9:14:67:12:b5:e9:e1:de:cd:59:d3:2c:
cc:e7:8b:25:8b:97:3c:c3:bd:78:20:89:bc:5e:e9:
22:4a:59:5a:52:ba:85:92:e3:c4:cd:60:cb:b1:32:
55:2a:11:5d:ec:04:22:a5:23:f3:aa:af:c5:b9:71:
a5:68:2d:45:43:24:98:46:70:6e:6a:1c:9e:f5:81:
c8:49:6c:c1:df:f5:49:50:3f:7f:7b:c3:40:bf:ff:
ba:87:af:69:3f:45:86:da:46:a9:aa:c1:70:ce:69:
4b:54:1a:fc:d9:5b:51:bb:e8:80:be:12:e8:46:6b:
cc:ec:45:eb:5f:6b:0f:72:b9:0a:71:52:fd:cd:0e:
cc:11:a0:87:83:41:27:b3:4f:04:3a:a1:91:f9:1b:
b8:e9:69:64:7c:7f:98:b2:13:bb:9c:80:9e:94:6c:
04:90:4a:75:a3:36:11:c8:03:db:26:c8:6a:a6:d2:
d4:18:02:f8:a2:ea:22:88:a4:75:41:50:5c:2e:92:
88:55:bf:ad:78:26:aa:4c:86:cc:4a:67:69:6f:07:
cf:55:02:18:5a:1d:3f:79:fc:53:a7:a3:fc:24:84:
a8:cb:c8:39:a4:cb:6b:17:36:a4:7a:89:05:82:ca:
61:b0:22:e1:61:77:2a:e2:9b:2a:a7:08:7b:11:7b:
81:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B5:09:5C:EE:0B:7A:BE:87:2D:D9:E3:18:FC:1C:E6:74:6E:A3:D0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
2a06:a005:1db0::-2a06:a005:1dff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
91:2d:9a:24:8c:63:65:84:52:cc:92:fc:ef:9a:ba:e3:54:23:
ee:6a:c9:c5:24:3c:d7:aa:b5:6b:19:d2:c2:e1:82:80:57:7a:
63:72:d2:ec:51:63:55:08:3c:6c:22:d7:38:b9:17:e3:c9:4c:
64:36:64:67:74:e2:b6:b2:cb:21:e3:d8:07:08:62:01:f0:fe:
d7:de:3e:0b:d4:6a:fc:e5:57:0f:16:6d:31:7f:aa:d0:e7:03:
44:66:ae:7c:40:5f:91:13:9f:45:16:fc:0c:eb:1a:78:3d:64:
ae:43:22:c9:d0:fb:bf:d9:a9:c5:ed:df:4b:55:43:9c:b7:69:
fa:ef:2f:1f:34:b5:6a:89:37:63:c8:c8:3a:92:6b:ca:da:cf:
2d:01:3d:00:70:c0:c2:db:03:8c:4d:5a:a2:18:93:f9:d7:01:
cd:92:d8:d8:a8:05:73:c2:4a:da:23:10:5f:ca:a3:ef:66:99:
39:1e:19:a5:15:04:f5:2c:18:6a:32:36:c3:f0:4f:ff:40:58:
68:2f:cc:7e:2f:0a:5e:58:cb:77:c8:77:01:9d:4d:00:78:52:
67:c4:58:6e:f9:4c:23:91:e5:72:0c:a8:d5:6c:50:a1:34:05:
22:9a:f9:82:33:9a:8b:7d:ed:35:22:5a:b3:4f:ec:5c:b6:e1:
3c:2a:7f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:55 2024 by rpki-client on console-ams.rpki-client.org