Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204844.roa
File: AS204844.roa (raw, json)
Hash identifier: l0BGJQ9H2IFxWjM9DGoMCvNbm9/tJLcN3tr4bBsA6YM=
Subject key identifier: C9:EB:10:ED:BD:51:4D:2C:8D:9F:1C:07:F9:F6:D0:59:D8:4C:F9:3E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 63D79764BB22F50678698496951A96555252A7A0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204844.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 204844
IP address blocks: 2a06:a005:14f0::/44 maxlen: 48
2a06:a005:1b40::/44 maxlen: 48
2a06:a005:1be0::/44 maxlen: 48
2a06:a005:1d60::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:d7:97:64:bb:22:f5:06:78:69:84:96:95:1a:96:55:52:52:a7:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=C9EB10EDBD514D2C8D9F1C07F9F6D059D84CF93E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:aa:42:20:c8:67:89:60:ae:bf:d1:ef:60:da:
fd:13:8c:6c:ee:57:0c:e3:da:72:8f:d3:3e:b0:59:
d4:de:30:4f:31:a4:17:da:99:61:7f:aa:fb:d5:69:
e8:f4:9e:13:8e:f3:e3:fd:e4:1b:15:07:92:6e:5b:
8b:b1:62:20:37:68:11:1a:66:28:4b:39:76:63:b8:
07:47:57:29:0a:7c:54:11:86:f9:f3:ea:8b:9c:47:
df:15:5e:9a:9f:1c:be:11:69:8e:67:cd:4b:bc:46:
8c:ef:3b:90:f3:65:43:0b:a3:b5:29:12:5b:1f:cf:
24:ad:ad:a3:c9:39:75:a3:ed:ca:2a:4a:27:70:bd:
b2:8f:11:fc:ad:b8:5a:8e:8d:a2:73:51:da:ec:f9:
90:29:c4:9a:29:30:30:b7:e9:3a:f3:ec:e4:21:5e:
06:0a:5e:96:39:4d:44:11:73:90:17:c3:5c:b6:d0:
e7:8e:9c:9c:73:80:08:ce:40:99:dc:c1:fe:69:01:
8c:50:61:2b:29:d6:fe:a0:e7:fc:58:1f:1f:44:7e:
b8:97:bb:4a:ba:e1:ac:34:fc:e3:ca:88:f0:3e:40:
39:d5:99:eb:32:bc:7a:ec:99:ea:23:4f:27:a2:94:
3d:08:37:8f:cc:8a:dd:46:b1:88:00:77:de:c5:28:
6a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EB:10:ED:BD:51:4D:2C:8D:9F:1C:07:F9:F6:D0:59:D8:4C:F9:3E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204844.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:14f0::/44
2a06:a005:1b40::/44
2a06:a005:1be0::/44
2a06:a005:1d60::/44
Signature Algorithm: sha256WithRSAEncryption
11:ff:37:38:8e:b6:d7:40:ba:99:6a:21:ac:9b:68:b4:90:62:
4b:4e:a5:5f:11:c9:f2:db:49:dd:b7:5c:61:d3:4a:49:53:51:
77:ff:e4:70:40:b4:14:9d:70:c2:54:0a:b2:62:ab:dd:c1:97:
df:6b:0b:59:c0:d3:e4:5f:66:d5:f1:3b:b6:9f:7d:47:45:40:
e1:20:b8:b6:aa:82:a1:54:a5:a6:eb:f8:40:35:e4:b2:65:15:
e7:2d:a0:bb:2a:89:71:76:aa:84:7e:ba:cb:a0:1f:b1:8a:d7:
77:3a:e0:af:e1:cd:58:84:c6:73:84:51:27:88:e4:26:b5:06:
2a:de:f9:b8:75:84:49:b2:2c:37:34:91:ae:c2:ab:4d:85:ba:
d3:a9:a0:1d:30:14:9d:8a:1e:d9:7b:fa:ad:43:34:ba:6f:46:
5e:51:79:55:28:22:b8:14:94:13:36:d6:13:7c:e4:57:25:78:
ab:64:87:86:dd:6d:5f:c5:f5:7d:4d:b6:93:b5:26:6d:66:13:
8a:c2:cc:b6:5f:76:00:c9:16:c6:fd:f8:a1:8c:eb:55:90:cc:
89:68:56:ad:fb:6e:1e:28:4d:bf:ef:fa:f1:14:83:20:1b:3d:
06:1b:e1:9b:16:19:5e:22:5b:31:25:82:6f:27:40:da:25:11:
17:b3:3f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org