Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205539.roa
File: AS205539.roa (raw, json)
Hash identifier: l8NHZibpOMNEe/pjzuMM/x3SwcIMjyD1suvZFl4rTPc=
Subject key identifier: 24:9E:2B:23:70:D0:35:2A:51:FC:9D:F2:68:64:34:34:8F:AE:82:97
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 07AA89AF2F5570DCEF77E8AFBC296AC8F407B21D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205539.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 205539
IP address blocks: 2a06:a005:4df::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:aa:89:af:2f:55:70:dc:ef:77:e8:af:bc:29:6a:c8:f4:07:b2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=249E2B2370D0352A51FC9DF2686434348FAE8297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:dd:0e:fd:fd:2c:88:08:9d:9b:95:fa:67:9f:
11:9e:45:60:a6:12:9e:33:bc:25:44:47:e9:ed:0d:
b3:c9:e8:11:a5:37:d8:a4:5f:7f:92:8d:96:08:f4:
07:2e:aa:b8:5b:d7:da:6c:b3:3b:4f:25:eb:97:0d:
c7:a9:f1:80:f9:31:0e:b3:9d:0f:54:8a:d0:42:b3:
e0:a0:94:82:62:94:54:e7:ed:b1:fb:9c:ed:e0:bf:
25:cf:fe:34:2b:d2:1f:52:6a:18:3e:97:55:45:2b:
a1:de:3a:20:6c:43:c3:ac:38:fc:1c:d8:2d:98:a6:
94:09:f1:cf:cd:db:17:80:59:8f:03:35:19:3a:0c:
38:3f:bb:b0:83:7f:78:c3:60:5b:28:f6:53:24:1f:
07:c8:35:de:24:13:b3:dd:2f:84:d9:94:9d:1f:0a:
2c:3d:ff:e5:9d:be:11:5c:c1:af:65:24:cd:28:64:
3f:bb:43:36:40:c8:2e:09:1e:75:87:d4:41:1d:1d:
84:f6:66:20:b8:78:4f:0b:7b:60:cc:5c:82:19:93:
ac:d9:c2:83:27:99:4b:bd:c7:fc:fc:64:fe:5d:12:
20:89:df:57:0d:14:f0:7f:b5:95:40:a0:19:64:22:
66:14:7d:c7:89:9d:e8:7d:29:03:65:06:f1:da:9c:
7c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9E:2B:23:70:D0:35:2A:51:FC:9D:F2:68:64:34:34:8F:AE:82:97
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4df::/48
Signature Algorithm: sha256WithRSAEncryption
c0:4c:02:8d:f7:eb:24:31:9f:8c:e1:10:26:61:1d:2d:89:06:
e9:5b:0d:e2:09:12:6f:cd:d2:31:3c:d8:8a:8c:41:39:00:57:
97:61:16:b2:e0:db:9e:a1:63:99:30:3f:d5:5b:97:4b:ba:66:
ac:9c:3a:e2:8d:27:f6:77:3e:f3:9b:61:03:e4:04:13:35:73:
14:bf:98:82:87:13:46:0a:36:f3:b4:f5:93:e1:6f:5e:0c:fc:
01:43:81:96:42:5d:8e:dc:f4:49:f6:eb:56:a9:6d:45:8c:35:
88:1b:9e:f6:bb:b7:d6:ed:5e:e5:90:63:8e:81:e9:97:69:08:
6a:29:54:69:74:26:68:f2:de:26:cc:c6:49:95:ad:8c:dc:ce:
c3:dd:44:a6:ae:2c:00:cb:1c:d6:8b:8b:ce:1c:e6:4d:43:30:
48:38:ed:86:9f:07:3c:dd:2a:f6:16:37:59:a8:c7:46:ff:df:
6c:96:92:14:7f:5e:34:23:77:86:db:bf:cc:2a:26:a1:46:17:
c6:79:98:d5:46:a5:89:97:74:d3:72:ca:4d:0a:4b:53:b5:12:
21:cf:71:8a:d1:ff:9f:f4:d6:e3:a6:2f:74:3f:fe:97:9a:01:
2e:0b:27:fb:fe:d7:48:d4:3c:fc:aa:c9:6d:49:48:1f:a5:c0:
ad:4c:ed:f6
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUB6qJry9VcNzvd+ivvClqyPQHsh0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDhaFw0yNTExMDQwMzQwMDhaMDMxMTAvBgNV
BAMTKDI0OUUyQjIzNzBEMDM1MkE1MUZDOURGMjY4NjQzNDM0OEZBRTgyOTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh3Q79/SyICJ2blfpnnxGeRWCm
Ep4zvCVER+ntDbPJ6BGlN9ikX3+SjZYI9Acuqrhb19pssztPJeuXDcep8YD5MQ6z
nQ9UitBCs+CglIJilFTn7bH7nO3gvyXP/jQr0h9Sahg+l1VFK6HeOiBsQ8OsOPwc
2C2YppQJ8c/N2xeAWY8DNRk6DDg/u7CDf3jDYFso9lMkHwfINd4kE7PdL4TZlJ0f
Ciw9/+WdvhFcwa9lJM0oZD+7QzZAyC4JHnWH1EEdHYT2ZiC4eE8Le2DMXIIZk6zZ
woMnmUu9x/z8ZP5dEiCJ31cNFPB/tZVAoBlkImYUfceJneh9KQNlBvHanHwdAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUJJ4rI3DQNSpR/J3yaGQ0NI+ugpcwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA1NTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQTfMA0GCSqGSIb3DQEBCwUAA4IBAQDATAKN
9+skMZ+M4RAmYR0tiQbpWw3iCRJvzdIxPNiKjEE5AFeXYRay4NueoWOZMD/VW5dL
umasnDrijSf2dz7zm2ED5AQTNXMUv5iChxNGCjbztPWT4W9eDPwBQ4GWQl2O3PRJ
9utWqW1FjDWIG572u7fW7V7lkGOOgemXaQhqKVRpdCZo8t4mzMZJla2M3M7D3USm
riwAyxzWi4vOHOZNQzBIOO2Gnwc83Sr2FjdZqMdG/99slpIUf140I3eG27/MKiah
RhfGeZjVRqWJl3TTcspNCktTtRIhz3GK0f+f9Nbjpi90P/6XmgEuCyf7/tdI1Dz8
qsltSUgfpcCtTO32
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org