Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205663.roa
File: AS205663.roa (raw, json)
Hash identifier: C1RYs/MIqCrjH+etR58bpyzIK3EHiF85rLddsYmbj/Y=
Subject key identifier: EC:E7:4C:5B:85:B4:40:3F:57:79:25:AB:04:EE:88:C3:7E:4E:8A:25
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7A1B64132AAFD5D692A888DA52E972541360D305
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205663.roa
Signing time: Mon 30 Sep 2024 01:00:13 +0000
ROA not before: Mon 30 Sep 2024 00:55:13 +0000
ROA not after: Mon 29 Sep 2025 01:00:13 +0000
asID: 205663
IP address blocks: 2a09:54c1:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:1b:64:13:2a:af:d5:d6:92:a8:88:da:52:e9:72:54:13:60:d3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Sep 30 00:55:13 2024 GMT
Not After : Sep 29 01:00:13 2025 GMT
Subject: CN=ECE74C5B85B4403F577925AB04EE88C37E4E8A25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:1c:96:f3:44:0a:2e:29:84:36:90:90:0c:
8e:7b:72:df:fa:60:9a:f8:6d:e2:18:a5:66:d2:4c:
e0:1e:da:b6:06:e2:af:0d:3d:2b:be:08:4c:26:1e:
10:c3:f9:7d:c6:28:8e:23:a7:9d:fd:f8:73:9f:ce:
eb:32:fa:a9:ca:ac:9b:df:fb:aa:dd:51:1b:64:9a:
25:be:36:a4:16:40:89:f0:cf:0c:bf:04:9d:a0:e2:
fd:eb:94:02:7b:a0:6e:fd:a9:ab:35:b4:7a:ef:ad:
22:1e:7b:93:f9:81:30:7e:16:d7:eb:5f:0b:66:1a:
d1:ad:76:47:54:c1:3e:9a:01:c3:3c:ca:e5:e8:b7:
3e:6f:49:93:1e:35:0d:f3:ed:54:cb:c9:0a:ee:e7:
0f:e6:06:db:6d:b8:5d:ed:8a:58:9a:60:e7:2f:82:
16:5f:6e:bb:cb:00:91:34:3b:19:43:13:9d:d4:7a:
47:a6:d0:6a:0e:e2:be:6a:01:07:29:4b:22:85:f4:
e7:da:61:ec:4d:4c:2e:4c:73:cf:d9:f9:8e:cc:02:
6f:62:5b:dc:2e:2c:1b:a5:8d:11:56:53:e0:42:8f:
71:e4:2b:43:c8:cb:bb:14:51:c6:08:60:17:db:15:
47:90:68:b2:9c:b5:8e:cb:05:c2:24:36:1d:da:cc:
e4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E7:4C:5B:85:B4:40:3F:57:79:25:AB:04:EE:88:C3:7E:4E:8A:25
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205663.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c1:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
1b:31:80:32:c1:23:16:d4:1f:25:6b:80:19:17:28:30:6f:a8:
61:39:48:95:41:61:c7:80:95:70:68:d6:9e:f8:ea:e0:be:fc:
07:8a:dc:12:6f:db:bf:5d:24:85:8c:69:ed:90:eb:20:62:c5:
e2:09:25:92:08:2b:d5:49:56:5e:d7:c6:0a:e9:bc:95:e0:80:
95:71:1c:9a:83:2e:95:cf:38:de:73:8e:d6:4a:cb:2a:b7:9e:
70:c2:d1:27:4a:6f:8e:cd:0c:92:52:b1:01:15:d1:ae:ab:bf:
9e:0d:3e:ba:66:21:ef:37:f8:af:2f:6f:32:72:18:50:66:c5:
0e:e5:69:72:36:65:6f:64:6e:da:13:af:6d:bd:7d:33:af:c7:
29:da:1c:2c:6c:3b:0d:0b:ad:72:b5:79:b9:6b:9f:c6:42:9e:
64:db:79:b8:46:1d:4a:2c:e2:59:8d:37:90:f5:ea:40:74:aa:
b1:7d:fa:01:ce:38:0b:2f:79:94:3e:97:f9:43:63:b8:f6:3a:
27:d2:5f:e6:6a:f6:53:6a:03:82:e5:8d:54:79:b2:0e:25:4e:
0b:5e:1b:c3:44:ae:9d:ae:4e:5a:85:ef:01:b5:40:da:62:b6:
8c:21:65:0f:41:68:90:71:78:65:cf:80:99:c6:cd:56:eb:5f:
47:61:fc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:05:44 2024 by rpki-client on console-fra.rpki-client.org