Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
File: AS205088.roa (raw, json)
Hash identifier: c/hzIztE9ytDyifILbfOjdbAlGMI4Y3pm6utggfOgwc=
Subject key identifier: 9F:AB:6F:7B:F8:0F:C3:26:83:66:47:9D:51:4C:86:2C:0C:97:30:D4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0986D2866503F6B5C60E92994A7A710B141819F0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 205088
IP address blocks: 2a06:a005:bc0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:86:d2:86:65:03:f6:b5:c6:0e:92:99:4a:7a:71:0b:14:18:19:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=9FAB6F7BF80FC3268366479D514C862C0C9730D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a8:d3:b0:76:a6:87:74:89:e1:f9:55:ae:33:
c5:dd:7c:01:b2:8c:fb:8a:e8:f7:92:28:c0:a9:91:
be:3c:01:fe:71:81:15:89:09:22:cc:c4:e7:a5:7c:
da:c5:e4:b3:b7:b8:d4:4d:36:a3:17:b5:02:df:46:
7c:aa:3a:dd:a1:cc:9a:85:6d:f3:66:f2:6d:c2:33:
9b:45:39:c1:04:81:01:37:25:ed:19:b9:94:e0:ce:
33:a6:ec:16:75:0c:35:e0:7d:51:ae:93:82:7b:01:
4b:f5:d9:d5:0f:b1:1e:10:f3:75:fe:5d:e5:86:88:
32:7e:c2:52:a9:75:4b:16:12:8b:8d:06:a0:89:05:
a8:6b:18:6b:49:bf:0c:0e:c5:8b:42:29:0e:a4:61:
7f:1a:f0:49:15:80:0f:02:f7:65:4f:71:a0:40:84:
b7:5e:94:ae:89:f2:2f:87:7c:cd:2c:22:40:40:b4:
4e:9e:a7:9b:24:9b:d4:eb:9b:b3:9d:f0:84:63:03:
da:bb:50:e6:32:bf:7b:8e:c7:94:e1:7d:7c:8d:91:
62:cd:4d:c9:75:8a:e1:22:de:29:4f:a2:d6:e0:41:
89:f9:a4:61:54:34:bf:fa:09:ce:15:04:4a:23:72:
bd:ad:a9:d0:19:66:1f:24:3d:eb:89:d8:db:0c:10:
3f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AB:6F:7B:F8:0F:C3:26:83:66:47:9D:51:4C:86:2C:0C:97:30:D4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205088.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:bc0::/44
Signature Algorithm: sha256WithRSAEncryption
7a:28:b3:d6:5e:a0:e1:6e:a8:67:3a:89:01:ee:af:46:40:df:
0d:a8:57:4e:aa:3b:29:a1:f2:bf:a3:5e:f8:d0:23:96:6e:81:
35:e2:0b:c1:be:6e:4e:64:08:fb:d8:2f:d1:15:06:e1:e3:50:
8f:5b:4d:f2:ef:d0:f0:50:34:81:7d:33:f2:ea:8b:55:6b:7f:
03:bb:19:49:fd:f8:78:4e:94:33:f2:f1:88:c2:7b:9d:ab:4d:
6c:b4:f8:3c:5a:f5:e8:fe:05:7b:fc:59:84:7f:68:82:dc:76:
ca:23:d9:ea:8c:12:f9:9f:be:8c:c4:df:c7:9e:0c:b3:60:38:
34:78:31:b4:3d:1f:a5:e4:d6:f4:93:f6:ed:03:e6:c5:8a:d3:
10:3c:25:a5:7f:58:3f:90:19:68:70:9f:8c:ff:f0:99:f2:86:
40:14:f1:65:8a:65:c6:7f:c0:4c:9a:67:a2:66:b4:a0:b6:25:
75:37:b5:c0:e8:38:7d:3e:eb:a3:3c:c6:63:fa:63:b7:7c:4f:
65:a1:86:dd:f7:8e:d9:9f:95:b9:95:b1:be:b0:70:2f:3b:43:
2e:f7:01:81:31:e9:ec:57:4b:77:c9:fe:cf:53:4f:e5:f6:3c:
fb:15:19:8a:6d:ae:86:56:ec:af:e1:e4:2a:3d:8a:93:7e:77:
7b:c4:69:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org