Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205214.roa
File: AS205214.roa (raw, json)
Hash identifier: oNcxQ3IEhuz4lX1r8bCXHJ1FKajflZy+k18lH3RR7uY=
Subject key identifier: FB:4A:41:F4:EA:97:88:CB:CD:5A:DA:04:A4:34:EC:45:AC:E2:5B:10
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 38B21319AE533B2CB51FAA272F90C116005DB1D6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205214.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 205214
IP address blocks: 2a06:a005:830::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:b2:13:19:ae:53:3b:2c:b5:1f:aa:27:2f:90:c1:16:00:5d:b1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=FB4A41F4EA9788CBCD5ADA04A434EC45ACE25B10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3d:a5:4e:50:e9:df:0d:91:f2:25:b8:3b:20:
ea:e4:00:71:04:d4:39:fe:b4:af:ac:f4:1f:0e:a5:
29:fa:56:73:eb:22:d9:14:3e:98:91:03:a1:1d:06:
1f:ce:46:1c:9d:37:71:35:dc:4c:f3:47:55:d6:27:
ae:25:e4:96:39:fd:be:90:01:a1:91:43:30:32:9f:
55:4a:2f:43:dd:ff:78:1a:87:77:70:2b:19:8f:64:
0c:f1:1d:42:33:72:52:4e:4d:d4:79:47:6b:a4:19:
7e:f7:b1:8e:88:93:61:51:f6:f9:f2:71:8f:b9:8f:
dc:e4:53:d1:04:be:24:97:e7:da:f3:83:f2:d0:9d:
b4:be:5e:a4:a4:85:23:ee:de:43:c2:a9:83:96:0e:
dc:6f:da:ce:f9:a4:74:48:b9:85:0d:88:07:5a:5a:
d6:40:f5:7e:10:8f:b9:39:cf:0b:b8:74:b2:96:d9:
9a:10:a7:9f:fe:a3:2d:24:0f:a6:f1:f6:b5:e3:12:
48:00:ff:31:6c:e6:7a:1e:6a:63:6f:d9:50:27:17:
9c:d8:c6:4e:bb:59:99:95:34:fa:e0:90:76:c3:d6:
d0:85:d8:93:25:57:fa:76:a2:eb:bf:16:cf:69:03:
79:9d:f9:f1:7c:d0:78:de:da:05:e2:23:8e:5d:76:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4A:41:F4:EA:97:88:CB:CD:5A:DA:04:A4:34:EC:45:AC:E2:5B:10
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205214.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:830::/44
Signature Algorithm: sha256WithRSAEncryption
bb:e2:0a:d8:1a:1f:09:02:e7:f8:46:54:36:7b:9a:df:d2:44:
08:04:0c:f4:98:63:c7:49:dd:be:5d:54:53:e0:11:1c:7e:9b:
64:b5:5e:13:99:4e:bf:d9:6e:20:b7:a0:fa:b6:61:52:b1:9c:
55:52:5d:0e:14:58:0a:8e:21:90:a9:92:a5:96:69:09:34:33:
ec:00:a1:79:eb:db:68:0b:e6:86:b8:87:e5:da:97:37:5f:39:
28:0d:d8:11:e0:b9:4f:21:6d:eb:db:6b:76:28:56:7b:45:85:
ba:8e:d5:6b:dd:20:ad:b8:5d:b4:e6:15:22:33:5f:a3:72:df:
24:37:d0:fa:f2:20:ae:71:8d:cf:ee:e4:e8:81:1b:3a:61:3a:
2f:48:ea:a6:a3:bb:21:6d:b3:4c:05:ef:23:66:43:95:c4:59:
c7:6d:4e:25:14:e7:ec:86:f0:e1:ec:fa:db:d9:ca:68:95:d7:
27:44:d1:ae:f5:90:c8:6d:cd:e5:37:00:16:a0:7f:c1:35:6e:
4d:6a:5c:df:d7:5f:c3:81:30:1b:b6:53:5d:77:39:c6:66:cb:
51:b7:d8:5e:59:3e:9c:19:a0:5f:da:0f:ff:80:b0:17:8d:95:
ec:6e:1a:7b:f2:fa:7a:a9:dc:07:31:3b:20:85:07:00:05:c6:
2d:5d:17:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:29 2025 by rpki-client