Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206633.roa
File: AS206633.roa (raw, json)
Hash identifier: VlZh5opMZPDbjtfU+TZH4jgam1aCfhjXvuWIn1K4vpk=
Subject key identifier: 48:1B:1F:35:17:04:72:2E:78:56:88:BA:1A:01:0B:AA:8E:1A:35:C3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1E7C5962BEF3828215BA4FD26C0069523550C3C8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206633.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 206633
IP address blocks: 2a06:a005:150b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:7c:59:62:be:f3:82:82:15:ba:4f:d2:6c:00:69:52:35:50:c3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=481B1F351704722E785688BA1A010BAA8E1A35C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3d:21:40:55:61:fe:aa:1d:e7:c9:9d:60:97:
68:dc:ba:fa:17:49:a4:da:64:f6:2c:2b:14:d0:45:
75:9c:a2:c8:a8:86:76:cf:9c:54:2e:f3:e2:13:c0:
82:eb:99:28:18:3d:9a:ba:de:0c:33:21:80:d3:3d:
8e:38:aa:85:8f:76:18:ec:4c:93:44:0b:e0:17:43:
64:3d:f2:30:91:a7:c5:00:47:1a:24:32:8b:34:ab:
fa:8a:36:77:f6:c9:cc:ed:9a:49:05:7c:4d:92:0d:
22:7b:32:ee:52:e4:29:b6:29:de:e1:19:c7:ad:84:
8a:d3:4b:8b:78:11:b3:02:54:58:f6:7e:22:95:7e:
07:5f:6a:31:b3:61:70:38:1a:85:4e:ce:10:c2:6e:
cd:88:5c:72:06:60:96:2a:2e:a7:77:0e:62:fb:4e:
b3:ae:d5:ac:9f:7a:b8:87:44:e9:6a:bd:ab:b7:54:
44:6d:2a:7b:c8:8d:8b:88:fd:68:b0:d5:59:d1:82:
66:15:4d:e2:8b:24:21:cf:77:68:2d:7b:65:54:dc:
01:33:c2:17:d5:8f:8f:b4:20:95:66:2b:ab:d2:18:
96:69:e4:3d:85:d2:70:6a:0c:25:09:f1:5f:a8:6e:
9e:a3:df:03:97:3a:83:39:81:b3:4f:ad:7d:b6:20:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:1B:1F:35:17:04:72:2E:78:56:88:BA:1A:01:0B:AA:8E:1A:35:C3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:150b::/48
Signature Algorithm: sha256WithRSAEncryption
3a:6a:ad:ed:0f:b2:d1:0f:43:4d:09:53:6f:da:c3:ac:6d:02:
fe:ad:7a:53:70:b6:e1:f5:13:9f:25:28:0a:cd:89:be:ed:a9:
95:c1:05:b5:b4:10:6a:5f:09:94:b5:ae:23:13:4b:31:99:87:
c2:63:ad:65:3d:87:ef:fc:d3:1b:8d:f3:9e:be:23:10:13:04:
40:f3:74:1d:aa:ee:de:01:0f:f0:77:4d:56:ca:b3:73:32:b8:
1d:5f:d4:3c:5b:ba:9e:19:c0:ae:89:b1:55:37:23:65:01:fe:
2c:1b:6c:a5:cb:f3:0d:2e:4f:ca:a7:53:56:6f:ee:b3:19:c3:
0a:38:ed:27:1c:ac:f1:42:87:41:3c:e4:aa:41:dd:f6:2c:ea:
5f:7e:1f:44:04:c5:58:a7:bb:1f:74:50:c9:d9:3d:dd:5e:e5:
66:a8:4d:35:d6:ff:0f:52:73:40:1f:b1:e7:bd:45:45:dd:ef:
3b:73:d8:65:28:d6:27:ca:e0:b1:60:c3:b0:e6:f9:f6:76:8f:
1d:2d:b9:ad:71:be:a2:5a:41:08:8f:26:de:00:bb:20:43:2a:
21:a8:85:0b:78:b5:82:44:5a:0e:65:d7:01:46:21:8e:cf:df:
90:e9:80:f9:05:8f:fb:54:ed:07:4b:5b:9f:e3:90:71:c5:b0:
87:30:ef:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org