Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
File: AS206131.roa (raw, json)
Hash identifier: W9nsxZAPKp/IaLeqyX8npZOH4GHgnJGAWRK+ebyREOI=
Subject key identifier: 14:2E:5F:D4:CC:EF:11:C4:D2:BE:19:2B:5A:38:46:35:FA:E3:ED:AA
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1B4D7E5ED110D4BA9B530F0B294981AC74ACD2CF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
Signing time: Tue 05 Nov 2024 03:40:02 +0000
ROA not before: Tue 05 Nov 2024 03:35:02 +0000
ROA not after: Tue 04 Nov 2025 03:40:02 +0000
asID: 206131
IP address blocks: 2a06:a005:1082::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:4d:7e:5e:d1:10:d4:ba:9b:53:0f:0b:29:49:81:ac:74:ac:d2:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:02 2024 GMT
Not After : Nov 4 03:40:02 2025 GMT
Subject: CN=142E5FD4CCEF11C4D2BE192B5A384635FAE3EDAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:43:ae:e1:70:15:74:f4:61:6a:8b:08:de:67:
09:71:66:45:3b:7d:09:2b:a8:21:50:cf:eb:96:0e:
40:a4:8d:2f:3f:37:fe:6f:26:c0:f5:f6:ef:00:68:
d1:72:e0:39:1d:53:75:46:fe:71:b3:19:5f:f8:fe:
d4:03:26:37:7d:30:01:a5:52:75:7d:ff:4d:6b:d1:
02:60:fb:e5:57:2c:ed:27:f1:c9:e6:e1:41:44:e7:
6c:22:bf:fc:63:90:2a:a3:a2:e6:49:87:c8:fd:79:
d9:06:4a:e1:7a:c6:37:25:f6:7b:35:33:a2:0a:31:
f7:23:c6:b2:00:0f:0f:3b:1f:5d:cd:64:3d:71:67:
9d:78:19:5a:7b:94:8c:b9:52:de:d5:9e:34:e6:f2:
6a:2b:c1:02:3b:e9:fb:3a:b1:fa:5c:c3:04:52:34:
84:ca:87:7b:20:4c:34:e8:9b:15:1b:de:39:d5:60:
94:96:1c:21:23:98:c9:a6:e2:88:6e:db:75:f9:0b:
b5:08:22:cf:ef:0b:8b:b6:97:0d:22:cf:e3:1b:cc:
b2:86:78:b9:4a:25:0b:c2:2d:27:c5:83:5d:63:8a:
ee:72:42:b5:58:9e:b1:df:d4:75:3f:80:85:7b:1e:
9a:2b:be:73:ca:ea:09:5d:7e:fa:66:fd:99:3e:7a:
de:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:2E:5F:D4:CC:EF:11:C4:D2:BE:19:2B:5A:38:46:35:FA:E3:ED:AA
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1082::/48
Signature Algorithm: sha256WithRSAEncryption
23:2b:6e:5b:f7:7e:32:01:ab:0d:52:ca:d6:81:f1:eb:99:28:
5d:b1:75:99:54:1d:bb:dc:fe:b8:57:bf:b3:cf:80:71:60:20:
e6:7f:ad:4d:ae:9b:34:ff:50:69:f7:d2:ef:24:9d:8e:a9:6e:
5c:ee:cd:7e:4f:66:d7:de:76:dd:59:69:9d:2c:ef:f3:f9:6e:
02:a7:80:67:8d:14:f9:35:ee:7d:16:61:95:29:aa:ee:41:95:
0f:8b:b2:2f:45:23:74:e0:2f:a1:0c:99:d7:50:65:e6:fc:69:
88:66:ba:cb:68:fa:71:92:99:01:f8:b8:b7:a3:3d:47:78:bf:
bf:76:b8:b3:13:54:4f:7f:52:16:cb:09:c9:87:cf:16:55:bd:
43:9a:7e:96:84:9e:66:a2:5d:b9:61:56:6d:88:ea:57:38:ce:
e8:98:dc:39:42:c8:76:56:f2:bd:5f:78:e9:28:f3:b1:c9:92:
45:d6:88:ca:e3:0e:17:51:99:e8:ca:45:ee:58:31:71:91:41:
86:30:9b:62:9f:09:0a:9b:53:b9:5a:7a:1d:cf:4a:be:5f:f9:
11:11:e6:db:e6:fd:f2:40:43:4d:90:9c:21:1a:86:88:91:7c:
43:92:9d:9a:b0:39:4d:d0:ee:86:b2:d3:0a:10:f0:51:b9:26:
e3:eb:63:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:11 2024 by rpki-client on console-ams.rpki-client.org