Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206569.roa
File: AS206569.roa (raw, json)
Hash identifier: kR9ZclXlxpik7Lqgkm9K0iKCP2ysPV3tVwfeSidtFj0=
Subject key identifier: 38:E8:B1:E3:D2:A6:2F:63:97:A1:AA:D8:D4:26:F2:9C:EA:F2:7C:AA
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0330F43E844FB474791E5E0A5D00C655980CEA7B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206569.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 206569
IP address blocks: 2a06:a005:2000::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:30:f4:3e:84:4f:b4:74:79:1e:5e:0a:5d:00:c6:55:98:0c:ea:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=38E8B1E3D2A62F6397A1AAD8D426F29CEAF27CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:cd:57:f1:b2:a5:67:17:0f:a1:67:a4:9d:
36:42:92:10:dd:f6:5d:95:95:a7:78:87:70:4e:0e:
fc:da:24:97:85:0d:e6:fc:d8:35:a6:84:06:1d:e1:
c4:d2:ba:2c:26:20:3e:fe:28:bd:27:6c:82:d2:ce:
c8:0d:43:c3:ce:ad:33:37:56:47:1d:f5:5a:d0:47:
0f:c0:4c:50:57:76:09:fd:b8:1f:14:78:e6:6b:57:
f9:0b:08:78:95:45:60:89:87:5b:93:a5:55:d5:fd:
12:8c:5f:59:ce:58:68:a9:b3:0b:03:21:72:7f:ae:
24:e5:ea:59:98:f8:35:dc:d6:ea:65:3e:23:ba:c0:
ac:50:ba:4d:1f:6c:d7:8d:0a:47:a2:f3:43:42:82:
ca:3e:a7:a6:68:2a:ca:73:c8:85:77:30:cc:40:a7:
45:e3:95:b2:70:eb:46:c9:92:67:00:45:54:65:9f:
3f:6c:ac:6c:71:71:c8:02:bf:b8:6b:0d:ab:fa:17:
46:44:d4:a1:c0:bb:2d:52:cf:e7:88:75:11:0d:aa:
b8:0f:81:4e:7b:b7:6d:ee:13:55:18:27:fb:79:1c:
de:30:c1:c7:6c:b3:aa:47:07:f6:97:22:16:75:31:
e1:0c:5a:b9:9f:03:d4:55:a8:93:6e:8f:ce:ff:e9:
ac:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E8:B1:E3:D2:A6:2F:63:97:A1:AA:D8:D4:26:F2:9C:EA:F2:7C:AA
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206569.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2000::/44
Signature Algorithm: sha256WithRSAEncryption
86:4c:bb:84:ca:a7:39:06:0a:43:f8:cc:95:77:3e:b8:f2:8a:
bb:ae:f7:e1:41:b4:9f:cc:9a:62:fb:79:e2:c1:a4:37:88:88:
48:c8:89:e9:a5:d8:47:60:5a:ca:33:6e:e6:ba:7a:24:d3:80:
24:07:36:8c:34:3d:b9:27:49:bf:28:b3:ed:46:9f:8b:82:94:
99:05:32:c9:7e:27:74:fa:b8:2a:bf:0c:37:79:63:34:04:9f:
3d:24:e2:51:d2:e7:da:14:f7:14:ae:71:70:1a:67:63:c6:a3:
1a:28:d2:a5:1c:ae:66:bb:dc:68:96:85:c8:da:8c:d3:f1:fe:
e1:8b:b3:42:c1:2f:e4:32:4d:39:1b:21:0f:35:2b:50:dd:27:
2e:62:8c:2e:c2:87:96:30:f7:a9:2e:ec:1e:10:53:4f:34:92:
f9:e5:e5:1d:dd:1a:59:f1:b8:80:c8:fc:ba:fa:b7:8a:5f:37:
e1:52:83:12:b8:f1:6a:dd:39:ac:67:97:cd:d7:01:98:24:72:
4f:c7:1a:94:ee:93:79:d3:33:e7:0c:80:b2:f5:c5:2d:5e:ea:
16:5f:96:f5:d7:7b:e5:39:6a:ba:e7:b6:16:49:42:95:d2:db:
8f:77:2f:07:25:ca:f3:b7:7f:28:ea:5c:92:e7:14:c5:74:4d:
e5:d5:85:70
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUAzD0PoRPtHR5Hl4KXQDGVZgM6nswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDFaFw0yNTExMDQwMzQwMDFaMDMxMTAvBgNV
BAMTKDM4RThCMUUzRDJBNjJGNjM5N0ExQUFEOEQ0MjZGMjlDRUFGMjdDQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI+81X8bKlZxcPoWeknTZCkhDd
9l2Vlad4h3BODvzaJJeFDeb82DWmhAYd4cTSuiwmID7+KL0nbILSzsgNQ8POrTM3
Vkcd9VrQRw/ATFBXdgn9uB8UeOZrV/kLCHiVRWCJh1uTpVXV/RKMX1nOWGipswsD
IXJ/riTl6lmY+DXc1uplPiO6wKxQuk0fbNeNCkei80NCgso+p6ZoKspzyIV3MMxA
p0XjlbJw60bJkmcARVRlnz9srGxxccgCv7hrDav6F0ZE1KHAuy1Sz+eIdRENqrgP
gU57t23uE1UYJ/t5HN4wwcdss6pHB/aXIhZ1MeEMWrmfA9RVqJNuj87/6awVAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUOOix49KmL2OXoarY1CbynOryfKowHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA2NTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBSAAMA0GCSqGSIb3DQEBCwUAA4IBAQCGTLuE
yqc5BgpD+MyVdz648oq7rvfhQbSfzJpi+3niwaQ3iIhIyInppdhHYFrKM27munok
04AkBzaMND25J0m/KLPtRp+LgpSZBTLJfid0+rgqvww3eWM0BJ89JOJR0ufaFPcU
rnFwGmdjxqMaKNKlHK5mu9xoloXI2ozT8f7hi7NCwS/kMk05GyEPNStQ3ScuYowu
woeWMPepLuweEFNPNJL55eUd3RpZ8biAyPy6+reKXzfhUoMSuPFq3TmsZ5fN1wGY
JHJPxxqU7pN50zPnDICy9cUtXuoWX5b113vlOWq657YWSUKV0tuPdy8HJcrzt38o
6lyS5xTFdE3l1YVw
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org