Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
File: AS206131.roa (raw, json)
Hash identifier: DfQ7OrlXfGk8yN5jyWuJRNNM2M1LG9qb9y+boSUYyBw=
Subject key identifier: 09:71:DD:D3:10:72:C4:4C:D4:AF:61:DE:FD:25:3C:8C:72:34:5A:1C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1581486342A1633C142298B65B9C1835B28C9DDF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 206131
IP address blocks: 2a06:a005:1082::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:81:48:63:42:a1:63:3c:14:22:98:b6:5b:9c:18:35:b2:8c:9d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=0971DDD31072C44CD4AF61DEFD253C8C72345A1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:70:38:6c:bf:20:2e:98:60:5b:51:a2:a4:59:
70:c7:ce:18:05:81:0f:18:d4:b3:5f:0a:80:2e:38:
57:b5:77:8b:69:c1:5e:1f:fc:d8:81:38:96:7d:77:
10:1a:bb:a9:d2:d8:4e:4a:54:ea:c2:1b:19:37:77:
12:12:83:49:81:58:4d:2f:e7:f4:b5:a0:7e:96:fd:
73:68:7c:96:20:ee:25:34:d8:7f:0c:54:7e:fc:c1:
ab:c7:1b:2a:ee:7a:3b:3a:d6:8d:12:ae:ab:f1:b9:
4f:2c:4a:9f:fb:17:21:31:4a:10:7b:46:1e:84:77:
7b:58:51:66:8a:51:d5:fd:5f:80:77:da:69:25:fd:
97:3c:95:b9:6c:12:c8:1b:a1:0c:ed:12:e6:f2:c8:
d0:28:10:b0:b2:a5:af:68:61:14:b2:68:64:46:56:
be:4e:ea:21:5d:ae:e4:3b:c0:79:46:c2:27:ed:1f:
9b:87:3c:23:7c:d4:8c:55:5b:d1:90:ef:2e:18:13:
2e:29:7c:1a:17:cd:9f:8c:b6:76:5e:34:97:1c:8a:
20:63:01:5f:41:e6:cc:ee:eb:5e:49:cb:95:1f:bb:
d6:a7:30:79:95:3b:3b:fb:47:95:e2:f9:36:f8:88:
cd:80:0d:1f:39:9a:1d:4a:ba:04:cb:52:e2:d5:6e:
33:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:71:DD:D3:10:72:C4:4C:D4:AF:61:DE:FD:25:3C:8C:72:34:5A:1C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1082::/48
Signature Algorithm: sha256WithRSAEncryption
29:e4:cd:14:dc:29:b9:16:37:0f:76:87:9c:14:4c:a6:46:d2:
97:ad:d7:00:e8:8f:28:50:5a:36:41:18:b4:d0:3f:87:3b:e4:
74:d4:fd:4a:e7:6f:7f:22:41:96:2e:b3:5d:4b:5a:be:cf:39:
a9:3b:5f:50:61:ae:2b:50:e9:81:50:06:fc:50:69:b3:f4:25:
b8:68:1a:42:cb:a1:f8:71:b8:6d:fe:02:06:45:8c:5a:63:52:
40:75:68:1d:2e:f8:f3:a5:96:43:09:55:92:b5:d8:16:08:80:
af:a6:ef:7b:3c:69:66:9d:9b:73:ef:15:e1:06:91:43:c5:f6:
ee:92:e4:35:cd:94:b1:5e:10:da:e0:ad:69:d9:c5:ab:ae:c2:
2f:6a:31:8a:b3:19:09:90:9c:45:19:ea:ec:ff:63:36:94:0a:
20:ed:b7:e2:0a:ae:7c:f8:18:ac:af:b6:ed:15:a8:f6:17:50:
51:64:a1:73:7f:cf:9d:6c:8c:54:4d:c1:cd:84:f8:6a:a5:e3:
ac:eb:9c:9e:ed:e2:00:aa:85:e6:2a:83:7d:7e:a7:22:7d:18:
75:5b:99:6a:b9:d5:bb:23:24:c1:dd:32:66:e4:8e:44:07:1c:
33:2c:79:08:e0:98:1f:3c:2a:bc:70:e1:8c:e6:5e:9b:f4:71:
16:1f:50:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org