Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204842.roa
File: AS204842.roa (raw, json)
Hash identifier: zscG/vZyWaTZrIxz7waZ7u3YMZKf2HGfaHpOuS0Z0ns=
Subject key identifier: E3:89:76:DF:ED:B2:18:8F:51:F8:8E:A4:5D:3A:ED:D4:9F:ED:C9:43
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6AA9FD91CB30E97C48C3427CA64AEA67767AFDFA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204842.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 204842
IP address blocks: 2a06:a005:4d9::/48 maxlen: 48
2a06:a005:cc0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a9:fd:91:cb:30:e9:7c:48:c3:42:7c:a6:4a:ea:67:76:7a:fd:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=E38976DFEDB2188F51F88EA45D3AEDD49FEDC943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:98:ad:42:48:f6:24:07:a2:e3:69:3e:64:a1:
c5:55:8e:9a:43:26:71:02:f8:b0:b3:e5:2c:47:4e:
4f:17:f7:e9:56:76:6b:a0:59:7a:f1:f1:54:a7:08:
db:22:71:c2:f9:23:35:b7:c8:5d:cf:d8:23:c9:f8:
27:51:43:42:ab:c3:59:24:c4:21:da:61:6f:0d:23:
36:d0:ea:03:ee:f3:db:59:6e:f3:a2:70:19:a6:f2:
99:ad:c3:03:3c:6c:2e:09:d5:a4:46:b9:c4:16:0e:
11:16:f9:3a:da:a2:df:35:d4:2b:6d:51:a5:cc:db:
84:14:a2:6c:b3:70:81:7f:63:d9:f2:5f:0a:ce:c5:
a2:e7:91:68:ec:44:86:05:56:bd:eb:b8:f6:20:04:
b4:ab:fb:00:9c:b1:ff:da:56:44:d3:4b:6a:38:a4:
7b:1e:7b:2a:5e:8e:b1:68:95:c7:af:57:5f:63:9a:
cc:67:2a:b1:8a:c4:eb:86:3e:c6:6a:32:5f:ba:7b:
46:0d:13:ee:7d:5a:e9:d9:99:f0:57:ff:ee:dc:bf:
d8:6d:0d:a1:92:4f:1f:95:f4:4a:2d:5b:68:88:4a:
07:47:f5:b2:b9:f3:70:53:d5:e7:6a:29:87:9a:eb:
f7:07:2b:de:fc:9b:cc:31:78:0f:d1:28:6d:79:ed:
e5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:89:76:DF:ED:B2:18:8F:51:F8:8E:A4:5D:3A:ED:D4:9F:ED:C9:43
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204842.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4d9::/48
2a06:a005:cc0::/44
Signature Algorithm: sha256WithRSAEncryption
84:18:ed:e0:0d:63:90:e7:c6:e8:18:1b:20:a6:23:67:e5:f8:
8f:2d:fa:12:d6:a9:02:c7:e1:5f:c0:03:74:68:21:ea:7a:f9:
aa:7f:80:a7:a5:bb:b3:a1:af:80:16:63:04:99:f3:a4:96:6e:
3e:fa:72:3d:dc:e8:44:1e:0b:09:1b:42:6f:e7:90:82:45:c7:
4e:6e:56:f2:88:1e:e0:2f:20:8d:f6:71:58:4f:ed:22:7b:6b:
ad:ca:50:86:fe:21:a7:bf:7e:b4:0d:b7:9e:29:de:6a:78:21:
bb:2d:40:1c:36:e1:06:00:fb:19:ca:c6:81:c2:eb:a5:95:59:
67:df:d8:a2:70:db:2f:e8:35:ff:0b:c3:b8:9a:7a:4f:72:a4:
d6:05:86:f6:7a:6f:42:51:61:0b:6e:fd:e2:cb:4c:22:10:13:
72:a1:76:73:3f:ae:b5:71:92:65:8f:d7:e3:0b:fe:64:5a:d2:
90:43:ca:04:85:d7:70:01:e7:96:b9:b4:d7:f8:d6:38:73:d6:
3a:83:49:76:59:3f:a8:09:db:d2:3d:33:a5:04:5e:d0:9a:f3:
24:52:a6:28:0c:a1:82:bb:e1:de:80:4a:26:5c:12:27:fd:28:
63:15:3f:0d:13:b4:80:43:9c:90:2c:28:5e:19:99:58:99:a7:
aa:fd:b6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org