Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
File: AS205398.roa (raw, json)
Hash identifier: sc5WqylNIWbzXOfp9GZKWTNoGE+/V1A+a2NuQo+Aq0A=
Subject key identifier: 67:5B:0E:21:2F:BB:48:ED:E9:26:EA:C9:52:07:54:E1:67:E3:5E:A8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4221EB935B78BF786BE4609BA8B8879C95670306
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
Signing time: Mon 25 Dec 2023 03:44:21 +0000
ROA not before: Mon 25 Dec 2023 03:39:21 +0000
ROA not after: Mon 23 Dec 2024 03:44:21 +0000
asID: 205398
IP address blocks: 2a06:a005:2db::/48 maxlen: 48
2a06:a005:5ab::/48 maxlen: 48
2a06:a005:b6b::/48 maxlen: 48
2a06:a005:b6c::/48 maxlen: 48
2a06:a005:b6d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:21:eb:93:5b:78:bf:78:6b:e4:60:9b:a8:b8:87:9c:95:67:03:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 25 03:39:21 2023 GMT
Not After : Dec 23 03:44:21 2024 GMT
Subject: CN=675B0E212FBB48EDE926EAC9520754E167E35EA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:73:55:04:c8:10:9d:57:e9:8f:99:ae:fa:75:
08:6a:ad:7e:ee:0f:fd:78:d6:d4:c4:db:85:8e:a8:
a0:8b:4f:fe:37:f6:25:32:4c:c1:69:d4:ce:44:1c:
d2:3d:6f:8d:f8:8b:b9:03:a9:76:62:80:01:52:4e:
d9:51:31:6a:cb:27:4e:c6:73:11:93:dc:0f:84:67:
e9:5c:56:fc:13:23:35:b8:0b:92:ff:0a:a0:c8:1c:
fd:38:6f:6c:bd:57:c0:e8:7e:27:62:4c:fc:86:a4:
fc:ec:8b:39:58:e4:6e:bc:9a:df:ce:40:2a:cf:e0:
3f:1c:65:e0:87:2e:99:a0:f4:40:93:ed:e0:3d:81:
a2:a6:e3:8b:eb:18:95:7e:3f:d0:95:88:69:1d:1b:
94:ef:f1:ad:3e:44:83:d9:aa:43:36:22:3a:e9:ef:
c6:b3:8c:37:c9:d9:e1:a8:bf:d6:c6:dd:23:d7:30:
39:84:81:5d:c4:ea:6f:36:a9:8b:74:88:7a:a4:8e:
42:d7:b5:94:34:0e:17:6a:0e:bc:fa:7e:2c:9a:a9:
08:24:c8:94:23:14:d0:bc:ca:fc:cf:21:87:eb:6a:
9e:3f:ca:57:2a:9d:f4:93:85:ea:b1:88:de:6b:bc:
d0:a3:72:6c:31:72:df:0c:06:09:17:09:72:2b:6a:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5B:0E:21:2F:BB:48:ED:E9:26:EA:C9:52:07:54:E1:67:E3:5E:A8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2db::/48
2a06:a005:5ab::/48
2a06:a005:b6b::-2a06:a005:b6d:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
30:9d:a0:82:98:17:b7:53:da:65:30:b8:e8:f9:be:fe:9b:87:
5d:a8:27:1e:bd:44:6e:25:d9:34:75:8e:88:78:e5:9c:70:be:
13:53:1a:55:c4:69:8e:7e:75:a5:2b:a4:d7:de:67:67:17:2e:
de:5b:4a:a7:82:52:29:5b:ed:71:b9:f7:96:12:9b:0a:69:9e:
86:d6:ef:17:f6:2a:3a:fd:4b:8f:f1:e9:d7:74:35:f4:1c:cb:
b4:ea:37:06:01:23:a7:98:7a:64:4b:86:02:06:f4:6a:dc:81:
a7:7a:0f:48:54:56:06:51:6d:9a:60:ff:c6:cb:de:fc:3a:2e:
60:7f:4c:6e:32:6e:b7:4e:1c:5f:e3:9a:f3:fd:43:36:4a:4e:
ac:3e:de:f4:75:50:5c:fe:9c:f4:58:35:25:73:1b:ad:57:c2:
12:7b:42:df:33:ea:a9:5a:f7:6a:e0:27:f2:85:df:36:4d:9a:
f8:f4:7e:99:cb:67:c5:45:17:d2:3f:6e:df:83:e3:7b:d4:c9:
14:05:37:2d:09:8d:53:15:54:e7:37:f6:fe:4b:af:7a:9f:0b:
ef:ea:7e:f8:9e:d7:b6:11:22:e0:ae:1b:8b:2d:e1:6d:0a:28:
f1:cb:13:9e:35:94:bd:96:ab:91:b0:e0:28:df:da:36:9d:a9:
44:31:23:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org