Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
File: AS206023.roa (raw, json)
Hash identifier: 5HFWjVKoMg+MpmXoBIga5uRgSCQerO/5WK7mQyJngdk=
Subject key identifier: 6B:B9:6B:45:DF:F0:38:6A:60:53:E4:D9:F8:99:49:85:C1:A0:AB:EA
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 51593811A6563DC5A399D696A7C3072651CD3320
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 206023
IP address blocks: 2a06:a005:5e6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:59:38:11:a6:56:3d:c5:a3:99:d6:96:a7:c3:07:26:51:cd:33:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=6BB96B45DFF0386A6053E4D9F8994985C1A0ABEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8f:55:8b:3f:cc:1a:97:1b:dd:e3:b3:8c:e9:
7a:e1:a8:b4:e3:aa:26:36:4e:12:0d:d2:50:f8:ca:
fc:cd:ed:e4:5d:aa:f6:78:cb:01:fc:5f:56:e6:c0:
84:98:7b:e7:c6:99:c6:37:f7:54:95:ce:6c:e9:18:
6c:93:e4:6f:a3:c2:f1:d9:ac:c0:34:d9:f0:a2:74:
5c:46:d4:13:65:c5:cb:ee:2f:68:65:7c:6e:ab:fb:
7c:4d:eb:f1:da:94:55:e9:a1:5f:e8:44:14:84:ac:
de:2f:e2:86:41:27:4c:3c:2f:53:62:0b:a2:81:35:
93:11:a2:a1:69:dc:83:1d:6f:1e:e6:05:88:ad:00:
06:e7:e6:95:cd:bb:93:7b:1d:31:9b:f2:ac:0d:9c:
a7:2e:39:9d:57:97:33:97:66:66:37:32:fb:c1:ff:
f0:44:45:2b:7b:b6:5d:67:5d:b5:65:6a:19:a6:75:
59:93:1e:2a:0d:63:62:a8:9e:31:52:10:54:a1:e1:
82:bd:08:02:c1:01:c4:02:65:28:b5:8a:bb:ed:c0:
60:3a:7f:41:c9:9d:6b:63:cb:80:f0:af:da:b4:51:
8c:fa:3b:52:61:88:8e:37:9c:6d:03:da:08:57:c7:
16:91:d4:e7:56:4f:0f:e0:be:44:40:67:a8:f2:70:
70:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B9:6B:45:DF:F0:38:6A:60:53:E4:D9:F8:99:49:85:C1:A0:AB:EA
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e6::/48
Signature Algorithm: sha256WithRSAEncryption
9f:54:b7:f7:6b:db:47:02:62:54:db:25:f0:66:99:6c:b3:83:
5b:86:7c:99:1b:5c:ae:f3:60:ee:92:ca:5c:38:5e:dd:50:cc:
81:b4:49:f3:79:0b:77:75:a8:f3:c6:c4:e7:63:3e:9f:5a:78:
cb:42:d8:61:81:4b:23:af:2b:f5:55:bb:5b:a5:c2:57:d3:07:
52:c4:41:8b:73:42:f6:8a:1b:ab:b2:c0:d0:f1:66:9c:de:62:
11:50:9b:09:c4:08:92:8c:3f:09:be:a0:2a:35:40:a6:ac:94:
fa:6c:8f:a1:b6:c5:d7:f1:c6:fa:08:a4:a1:61:cf:63:cb:64:
58:c4:f3:8e:e2:cb:1d:83:bd:78:31:bf:17:27:60:4e:c2:9e:
7a:c0:c2:cf:58:70:70:0f:b0:7b:de:13:b3:29:aa:d1:34:db:
7a:cd:97:25:5e:c5:24:3f:b0:77:24:de:e8:81:60:bf:cd:48:
5a:bb:1e:fb:ee:ea:0d:54:e7:6c:c0:b3:2d:af:9e:ce:87:16:
5c:ae:1c:a7:c9:22:ac:4f:ac:b0:b3:24:d6:a0:71:10:dc:0a:
73:93:e8:08:82:54:0f:73:1d:2a:74:72:1d:5b:13:7f:f5:07:
aa:b6:65:b6:38:0f:fa:63:d0:8d:d3:7a:c2:09:07:6e:88:fe:
a9:29:7e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:45:54 2024 by rpki-client on console-ams.rpki-client.org