Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
File: AS206023.roa (raw, json)
Hash identifier: n6dVTbyGJ2CNOHx92c4lm9FUvxaLSoRQPAR1rk9xXHQ=
Subject key identifier: 0B:01:3D:DE:E4:20:4B:EE:C2:32:EA:19:0B:67:61:E2:78:A8:15:DA
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2E6898B324BA9F367C65A9EB7CFD82AB916D76F0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 206023
IP address blocks: 2a06:a005:5e6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:68:98:b3:24:ba:9f:36:7c:65:a9:eb:7c:fd:82:ab:91:6d:76:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=0B013DDEE4204BEEC232EA190B6761E278A815DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cf:82:e2:36:18:f6:21:6e:af:a4:c6:5d:8d:
24:b3:66:00:02:da:32:60:e0:28:d5:31:a8:ad:81:
08:96:52:3a:ff:21:e0:9b:7d:5a:58:83:d3:3e:75:
fc:fa:f8:6d:c7:b7:5c:80:21:16:4b:17:36:e0:62:
00:d3:47:3e:55:0e:f7:3b:32:b0:de:d5:f8:a2:cd:
a6:4a:39:a4:1e:e6:9f:b9:f8:8f:a3:6f:a2:71:56:
23:95:95:8d:64:09:64:51:a0:07:4e:c9:83:64:35:
0c:ed:9c:59:d8:f7:6f:e1:d4:f8:59:62:ca:c8:2c:
ef:34:dd:ea:ee:2f:41:5a:11:a3:2f:0c:79:d5:8a:
33:ac:96:4b:ae:04:1d:40:ba:d8:96:c4:f6:52:a3:
93:50:12:8e:2f:e3:83:4c:ed:a5:32:62:3b:dd:a6:
28:15:43:d4:49:8c:2a:9d:fe:36:a9:59:04:89:d6:
f0:de:02:95:51:72:18:4c:c8:12:e6:09:a5:c6:c1:
cc:39:d1:c8:06:94:d6:70:d5:c3:7e:4c:02:63:db:
e6:ee:b0:3b:3b:87:63:1c:25:0b:db:26:10:c7:e1:
9d:fa:b6:1f:dd:69:59:80:b5:0d:6f:9e:c0:79:2a:
4b:ae:d6:45:ec:01:28:a9:79:32:17:84:12:09:b4:
f8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:01:3D:DE:E4:20:4B:EE:C2:32:EA:19:0B:67:61:E2:78:A8:15:DA
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e6::/48
Signature Algorithm: sha256WithRSAEncryption
7a:07:ad:47:ce:93:b1:a1:e6:0e:ca:7d:3c:df:76:8a:2a:26:
cb:95:0b:ce:00:44:b4:ab:66:2a:12:ba:ee:bd:62:d1:7c:da:
9b:85:9c:cc:2d:3c:78:12:10:4b:d6:bb:47:82:e1:7d:fa:a5:
86:d3:7a:f6:bc:00:e3:88:ff:75:d3:b0:3b:44:75:24:81:a4:
64:64:b2:57:cd:82:64:77:ca:1a:a5:94:42:9a:ff:3e:18:b9:
d1:8a:40:be:74:6c:ec:7c:8c:da:4e:d7:5f:35:e8:47:7d:a6:
6e:1f:41:f7:28:b8:3e:4c:34:e6:96:fa:a0:c4:a1:99:6c:4a:
0a:51:bb:68:5a:f9:43:ef:78:f8:f9:d5:f7:ab:6d:62:a8:f3:
6b:44:36:c1:8f:d9:8b:1d:1d:0e:04:b3:ba:bd:4d:9e:cb:90:
93:7c:6d:1d:6e:22:52:86:b7:23:3c:7e:6a:16:a1:d6:c2:ef:
12:ec:54:dd:11:9d:34:ba:b0:5c:2a:9a:6b:21:8e:7d:fb:00:
dd:ac:c0:61:bb:20:0d:be:ee:04:cf:87:be:e8:98:8d:aa:41:
da:d2:ae:64:b0:21:b7:ec:26:d3:40:14:f0:1b:2e:e6:d1:ab:
18:5c:8a:32:c0:88:db:78:67:80:6e:fc:93:3c:36:f7:93:10:
24:29:9a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org