Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
File: AS205088.roa (raw, json)
Hash identifier: aTKzyVNieb4jqI05iUA41z9SogwbHCBrkPPwRhCQ1yo=
Subject key identifier: B1:EB:75:EF:E7:29:2B:30:4A:54:0B:F8:8D:FB:87:1F:26:31:F3:F7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0EEAD93E736771861C27EA31ED5165E0D89B8FE3
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 205088
IP address blocks: 2a06:a005:bc0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:ea:d9:3e:73:67:71:86:1c:27:ea:31:ed:51:65:e0:d8:9b:8f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=B1EB75EFE7292B304A540BF88DFB871F2631F3F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:d3:0b:96:db:73:af:b0:e7:49:9e:54:44:13:
b6:72:b2:c3:9a:22:89:72:03:18:98:62:5b:18:ee:
9c:39:7e:d9:1c:fd:ea:50:a8:1c:6f:08:df:95:90:
4b:d9:4f:6d:45:f0:23:00:10:29:e9:ff:da:e4:01:
5f:1c:29:c5:bb:3d:11:96:2d:36:bf:cb:c5:25:23:
14:46:5e:8f:e0:12:13:a9:48:e2:ed:4c:34:ae:65:
9d:0e:13:ed:ec:5c:a4:88:81:a0:de:a2:38:3d:6a:
3f:c7:19:6b:6f:73:ed:3b:c4:9b:a9:ef:18:f3:37:
f5:32:7a:e2:4c:82:a2:53:fc:5c:7b:14:2c:74:9f:
dd:bb:27:20:ab:f3:76:a4:8b:49:26:3e:65:b0:16:
46:a1:50:93:4c:ce:5f:9b:68:b3:a7:06:d1:1f:7e:
6b:9e:b1:51:35:ed:03:bd:f1:f8:d9:bd:31:89:82:
e0:6f:37:90:68:b9:ba:22:16:66:02:5c:27:66:a8:
5a:99:f8:bc:1c:36:9a:4b:ac:3f:03:17:f3:e7:af:
ca:e6:a4:56:e3:1d:3a:e5:84:d7:4f:96:76:5a:48:
2a:22:51:a3:b7:9b:d9:37:09:00:96:fb:ac:7d:bf:
8c:7d:fb:c3:af:dd:16:8a:32:f3:17:0f:48:00:f2:
3f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EB:75:EF:E7:29:2B:30:4A:54:0B:F8:8D:FB:87:1F:26:31:F3:F7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:bc0::/44
Signature Algorithm: sha256WithRSAEncryption
39:67:30:78:73:e6:c3:3b:ee:a0:a1:d5:35:36:4e:97:8e:c9:
49:4a:99:c5:c9:ba:56:5c:50:f5:78:f0:8f:52:2f:91:36:bd:
f5:ee:4d:39:e2:76:ec:f3:1e:12:a5:bd:5e:07:31:46:c0:c3:
a4:9b:9f:ee:e0:35:4d:fd:7b:9a:73:44:e6:7d:ae:6c:ab:0e:
5d:c8:7c:ce:69:a1:80:97:c2:bb:b5:d0:71:77:98:a6:57:fd:
d0:81:f9:ae:1b:76:56:07:b0:97:6b:d4:52:8c:5f:35:53:46:
6b:7b:21:61:6a:a0:46:77:3d:1b:4d:bf:7b:ad:0f:59:6e:5b:
30:30:d7:8c:11:8f:5f:da:7d:27:e7:bd:d7:4b:8e:e0:84:1b:
92:66:9c:ad:16:0c:f2:64:7d:e1:38:2b:56:38:25:c3:90:06:
c1:dc:d8:97:2b:6f:5a:31:9b:0d:67:fc:10:ee:ec:9d:a4:5f:
28:14:2f:11:14:20:d4:24:39:29:52:09:32:a4:1a:80:92:41:
90:cd:42:66:6c:c7:0c:48:e2:b1:da:dd:2f:6e:0d:0f:86:ab:
be:63:3c:08:75:da:64:e8:04:d2:b2:fc:c5:eb:b5:cf:d8:e3:
45:f3:d4:58:a8:23:13:ec:7a:fb:ed:0e:50:87:f9:1d:5a:9f:
07:1f:4c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:35 2024 by rpki-client on console-fra.rpki-client.org