Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206290.roa
File: AS206290.roa (raw, json)
Hash identifier: o7R0XVtLGoZLypJ8AM122mx2cin67EDe+ob79HLaORM=
Subject key identifier: A1:1B:61:B3:6A:2F:FA:31:06:8F:82:36:AF:15:9F:FF:AB:73:FC:74
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 24336D98B547F2C7B7AD2628DBB5BBAA7C825B13
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206290.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 206290
IP address blocks: 2a06:a005:1276::/47 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:33:6d:98:b5:47:f2:c7:b7:ad:26:28:db:b5:bb:aa:7c:82:5b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=A11B61B36A2FFA31068F8236AF159FFFAB73FC74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:46:d5:6a:59:87:26:87:4c:1d:a7:46:dc:6c:
a5:0c:1c:8d:d5:12:9d:6a:44:9d:1b:1d:eb:95:50:
49:db:0e:a6:58:d4:06:5a:0b:bb:83:e8:05:2e:29:
43:53:bc:8d:30:d2:3e:4e:7c:19:4b:97:e4:1a:2a:
6f:49:e5:b3:9d:e0:5b:91:2d:12:34:52:1c:59:87:
28:5c:ae:62:db:1b:9a:b2:20:7d:f1:02:dd:0e:c4:
5c:b6:fc:ab:51:2a:4a:2a:d0:df:a0:a6:ad:c4:21:
a1:59:b4:61:2f:bb:8c:2c:e0:39:46:c9:9a:d3:92:
69:39:ba:a5:ae:5c:54:e5:c5:25:98:65:aa:9d:0d:
5a:ce:eb:0d:85:aa:2a:21:54:71:30:50:47:9a:1f:
ab:47:df:6b:cc:f9:b1:f5:5a:c1:fc:c9:54:11:27:
af:62:65:a2:29:39:5c:a7:af:75:b6:98:e1:dc:21:
12:91:66:a1:28:1d:6d:62:64:78:4b:4d:d7:2d:3d:
46:3f:63:67:2e:6c:40:58:68:8a:39:9e:eb:c1:4c:
18:90:b6:a1:3a:30:fc:dd:b7:1e:92:bd:5c:27:bf:
91:15:e5:3f:54:6b:87:ea:16:fd:9c:6a:6a:36:39:
43:01:62:cb:57:01:4f:f6:69:da:38:8c:e5:a5:4b:
93:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1B:61:B3:6A:2F:FA:31:06:8F:82:36:AF:15:9F:FF:AB:73:FC:74
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206290.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1276::/47
Signature Algorithm: sha256WithRSAEncryption
02:c1:51:da:10:6f:6b:78:25:06:4d:f9:80:4e:96:f7:f8:e6:
e7:86:63:e1:23:0e:7a:6f:f0:44:44:70:62:eb:93:09:ca:72:
a0:4b:52:bb:d5:c1:51:12:94:a7:c8:2f:b4:18:00:96:42:2c:
00:b9:9b:6c:22:77:3d:90:9f:77:85:58:c8:f3:a8:30:dd:86:
d8:85:39:ae:19:b7:eb:d8:0d:54:3e:26:df:ee:d3:7f:3a:53:
54:fa:99:e9:72:c5:6a:94:08:7d:84:45:bb:e0:6d:4b:94:b9:
46:48:10:cf:81:70:74:90:ce:f3:2c:72:1d:fa:7e:4e:54:e7:
dd:e4:d6:7c:31:47:04:61:30:35:a0:15:67:4d:29:55:d7:cd:
e7:e9:a1:42:4d:1f:cc:d5:9e:ed:c3:82:ee:fb:8d:2e:29:5e:
64:ed:d0:05:06:2e:86:ab:3c:7a:38:dc:8a:cd:a4:22:3d:e1:
26:66:35:76:67:b5:5f:4f:85:93:1d:df:4d:70:b1:0a:66:d6:
7d:05:7c:c3:ad:4c:e4:db:88:5b:da:66:0a:38:10:80:b7:24:
d4:ad:e5:d3:f4:12:d4:35:3b:3a:99:7b:bd:49:c9:76:6b:7a:
c0:fc:3f:6e:6a:d5:92:c5:c7:e6:7a:5e:ec:11:f0:5a:ed:6d:
24:42:0a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:55 2024 by rpki-client on console-ams.rpki-client.org