Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206016.roa
File: AS206016.roa (raw, json)
Hash identifier: YKhLIG7P0H+xBOENBhC2zDd8OdkoH+9xq26Szse7L28=
Subject key identifier: 25:8C:AC:F0:D1:40:67:2A:A8:96:38:04:5F:E2:4F:58:88:3B:85:A0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 576ECAF4BD926651795B81F5046586F29FE76EFD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206016.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 206016
IP address blocks: 2a06:a005:990::/44 maxlen: 48
2a06:a005:db0::/44 maxlen: 48
2a06:a005:1380::/44 maxlen: 48
2a06:a005:1390::/44 maxlen: 48
2a06:a005:27d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:6e:ca:f4:bd:92:66:51:79:5b:81:f5:04:65:86:f2:9f:e7:6e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=258CACF0D140672AA89638045FE24F58883B85A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:10:28:36:1e:87:33:2c:19:01:18:74:cb:90:
bc:ca:28:ed:53:f3:74:fa:d8:fd:b1:f5:97:95:21:
5a:73:e8:94:f6:32:8e:e8:51:f9:56:09:df:e8:9b:
a0:61:52:fc:3d:e8:2c:37:b9:5a:0a:7c:94:31:2d:
d7:5d:07:34:f1:d6:2e:a1:c6:b6:12:69:87:e4:4e:
eb:50:f3:c7:84:7e:e9:c5:a5:c1:8f:10:a4:98:17:
be:59:8e:a4:d6:41:d2:ec:0a:75:cc:00:e1:c5:d2:
0b:e9:a9:cb:94:41:fd:8a:25:18:a0:51:61:36:8d:
8d:6e:44:f5:1a:cc:5d:3a:2c:07:6a:09:2c:43:8e:
ce:6b:f6:d8:4e:c9:39:ca:d9:b9:33:b0:74:5c:b6:
c2:ba:a7:69:0d:0f:f5:be:18:b9:f7:1e:5e:dd:84:
8b:6f:f5:75:16:da:b9:9e:24:73:c6:63:12:ce:79:
6f:68:83:a2:d0:a9:77:dc:1b:5b:c6:d2:ff:c9:e0:
ac:2c:2d:6b:ba:10:c5:0d:fc:67:4b:05:f5:07:69:
d4:93:29:6b:6a:2a:4b:26:10:51:b6:81:cd:f2:bc:
89:0d:d6:3f:5d:7b:a0:e7:f8:f2:52:29:93:34:2c:
78:2d:13:4b:da:df:78:38:32:bf:b2:c3:5b:7b:7e:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8C:AC:F0:D1:40:67:2A:A8:96:38:04:5F:E2:4F:58:88:3B:85:A0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206016.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:990::/44
2a06:a005:db0::/44
2a06:a005:1380::/43
2a06:a005:27d0::/44
Signature Algorithm: sha256WithRSAEncryption
64:48:f1:1d:17:f3:48:e2:62:7f:26:3b:98:16:b9:b1:90:9c:
f4:7d:09:30:9a:22:26:01:8f:d0:93:51:e5:fb:84:1b:ef:c7:
f9:36:24:e9:5b:f6:41:6e:f1:5f:e5:02:2d:2c:40:39:47:18:
f8:a7:97:10:6e:ac:f9:80:b4:08:c6:3e:a9:5b:71:45:cc:15:
e2:85:f5:49:bf:f5:79:7d:08:3d:bf:3a:8b:57:90:80:26:69:
e0:17:6c:4e:a0:7d:d7:98:64:b7:65:e5:03:9f:06:88:be:10:
d4:75:a1:d5:88:1f:7a:71:45:1a:be:e0:6f:b6:e4:ec:34:46:
88:c0:b4:ad:65:d8:6a:b7:0e:5b:43:76:e9:44:6c:b9:37:9f:
ed:0e:f5:6b:79:1b:04:04:bc:c3:05:4c:29:1b:a2:9e:66:c9:
d7:6d:3b:00:30:0e:56:ef:e2:18:b6:24:d0:3d:1e:f6:89:cb:
1c:05:df:26:3a:a0:d3:43:6c:42:b0:d4:2a:9c:6b:8a:11:26:
59:69:88:76:6b:60:41:cf:da:c7:93:70:a9:4c:eb:25:db:c2:
e0:e9:04:29:c0:2e:5d:eb:59:8d:4b:d4:64:79:a4:60:82:a0:
16:66:d5:44:9f:0a:3d:13:67:16:9e:3e:51:0c:39:a5:df:ad:
38:65:8b:63
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIUV27K9L2SZlF5W4H1BGWG8p/nbv0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDVaFw0yNTExMDQwMzQwMDVaMDMxMTAvBgNV
BAMTKDI1OENBQ0YwRDE0MDY3MkFBODk2MzgwNDVGRTI0RjU4ODgzQjg1QTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoECg2HoczLBkBGHTLkLzKKO1T
83T62P2x9ZeVIVpz6JT2Mo7oUflWCd/om6BhUvw96Cw3uVoKfJQxLdddBzTx1i6h
xrYSaYfkTutQ88eEfunFpcGPEKSYF75ZjqTWQdLsCnXMAOHF0gvpqcuUQf2KJRig
UWE2jY1uRPUazF06LAdqCSxDjs5r9thOyTnK2bkzsHRctsK6p2kND/W+GLn3Hl7d
hItv9XUW2rmeJHPGYxLOeW9og6LQqXfcG1vG0v/J4KwsLWu6EMUN/GdLBfUHadST
KWtqKksmEFG2gc3yvIkN1j9de6Dn+PJSKZM0LHgtE0va33g4Mr+yw1t7flxTAgMB
AAGjggINMIICCTAdBgNVHQ4EFgQUJYys8NFAZyqoljgEX+JPWIg7haAwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA2MDE2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEH
AQH/BC4wLDAqBAIAAjAkAwcEKgagBQmQAwcEKgagBQ2wAwcFKgagBROAAwcEKgag
BSfQMA0GCSqGSIb3DQEBCwUAA4IBAQBkSPEdF/NI4mJ/JjuYFrmxkJz0fQkwmiIm
AY/Qk1Hl+4Qb78f5NiTpW/ZBbvFf5QItLEA5Rxj4p5cQbqz5gLQIxj6pW3FFzBXi
hfVJv/V5fQg9vzqLV5CAJmngF2xOoH3XmGS3ZeUDnwaIvhDUdaHViB96cUUavuBv
tuTsNEaIwLStZdhqtw5bQ3bpRGy5N5/tDvVreRsEBLzDBUwpG6KeZsnXbTsAMA5W
7+IYtiTQPR72icscBd8mOqDTQ2xCsNQqnGuKESZZaYh2a2BBz9rHk3CpTOsl28Lg
6QQpwC5d61mNS9RkeaRggqAWZtVEnwo9E2cWnj5RDDml3604ZYtj
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org