Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206533.roa
File: AS206533.roa (raw, json)
Hash identifier: kQVNXC/EEIAoeZEu6x/TvooylSi6uneTK6kIo9HhpUw=
Subject key identifier: EF:B0:8B:A5:BE:22:81:C6:3B:C7:71:AB:A9:28:AB:FE:5D:21:90:D1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3225A1A7A2E584CD3BF8F419032CD6CD33A49D43
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206533.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 206533
IP address blocks: 2a06:a005:855::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:25:a1:a7:a2:e5:84:cd:3b:f8:f4:19:03:2c:d6:cd:33:a4:9d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=EFB08BA5BE2281C63BC771ABA928ABFE5D2190D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:ac:79:6c:c1:c7:66:ce:88:0b:8d:ea:83:
90:50:d1:7f:14:83:8a:42:71:3a:6d:20:bd:0e:42:
2e:27:6f:4a:d1:27:79:f7:f0:c4:7c:81:da:db:dc:
be:76:d2:9a:4d:78:92:c9:63:3a:2e:c1:b9:13:b3:
43:56:3a:eb:82:c2:97:c2:05:dd:3d:b7:c4:4c:96:
a2:36:36:c7:af:ab:15:3b:46:6a:b5:2a:c8:8a:d5:
61:c2:e1:ce:7b:d0:3d:e5:3c:82:3e:33:e3:9e:0b:
ce:e5:68:b1:67:6c:15:a6:97:76:c3:12:36:ae:29:
23:e8:c6:4b:56:f8:30:1f:1c:81:4f:81:ff:be:f5:
77:ca:3b:f6:bc:75:19:63:3c:40:f2:e8:81:b9:2e:
53:02:9e:66:30:a0:57:02:f3:a6:37:4f:49:5d:1d:
fd:76:59:fe:71:3a:bc:85:24:2b:c9:2c:59:7a:88:
21:0c:26:7c:9b:81:ef:c5:01:48:83:e0:a6:a6:ba:
94:e8:b9:99:62:9a:a6:51:69:d2:77:a0:33:84:8e:
e5:bb:51:4b:c5:f7:60:c8:90:c7:a6:b5:e1:46:09:
3e:e0:89:d4:3f:8d:e1:d6:50:cc:26:9e:31:1d:1c:
1e:c3:e1:cb:d5:cc:55:ea:bc:06:d0:a8:42:00:f9:
2c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B0:8B:A5:BE:22:81:C6:3B:C7:71:AB:A9:28:AB:FE:5D:21:90:D1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:855::/48
Signature Algorithm: sha256WithRSAEncryption
a4:1c:68:4e:88:b7:87:40:f3:c4:78:87:73:39:c9:ad:d5:4e:
5b:74:d4:ee:44:bd:65:51:8b:18:f9:66:bf:73:7b:3d:1b:d4:
b8:aa:a0:c3:c0:7f:df:5f:a2:d7:8e:58:b9:cd:c6:a7:00:c6:
88:ae:34:b8:ce:0d:49:6f:1e:02:44:01:25:7e:e8:61:7c:b9:
79:58:f9:da:42:60:df:63:17:e0:3b:1c:e0:4f:10:24:ac:35:
dd:de:91:1c:c0:80:0d:5e:f6:8f:ca:9d:70:c6:fb:d0:f4:2f:
4e:d9:a2:e2:4c:f7:6e:d2:4a:f0:1b:d4:88:ad:da:65:3c:6c:
2e:45:8b:48:d3:2f:32:80:95:fa:d4:8e:8f:34:1b:ac:b6:c4:
b3:fb:c9:5e:a7:43:4d:bb:28:08:01:cc:a2:3c:61:de:0a:08:
f0:87:12:67:d6:93:f7:ca:cd:e2:08:4a:c7:bf:7a:16:1f:b9:
6b:8d:d8:49:57:4b:c4:4e:c0:e7:fa:68:11:3f:5d:90:91:20:
21:d7:82:cc:e6:e2:c6:b3:0a:af:0c:a7:a5:5d:26:74:e2:f7:
82:58:f3:31:d7:da:73:f5:d0:28:14:9e:5f:a3:c5:20:b0:70:
df:55:43:8a:2c:2e:bf:75:e6:cd:06:5f:95:9b:89:30:b6:5d:
6d:78:9a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org