Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206729.roa
File: AS206729.roa (raw, json)
Hash identifier: FhQXScx+tzJZFeBwNRh4EPKkK45bCsG0jYe5Vu2PEd0=
Subject key identifier: F5:65:AB:8F:8B:BE:30:41:66:67:BC:56:ED:CC:D6:C6:95:B8:8B:35
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4510FA0A181369A5451716621514F22B9AC86D14
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206729.roa
Signing time: Sat 13 Jan 2024 11:44:21 +0000
ROA not before: Sat 13 Jan 2024 11:39:21 +0000
ROA not after: Sat 11 Jan 2025 11:44:21 +0000
asID: 206729
IP address blocks: 2a06:a005:9e0::/44 maxlen: 48
2a06:a005:1c40::/44 maxlen: 48
2a06:a005:21d0::/44 maxlen: 48
2a06:a005:21e0::/44 maxlen: 48
2a06:a005:2200::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:10:fa:0a:18:13:69:a5:45:17:16:62:15:14:f2:2b:9a:c8:6d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 13 11:39:21 2024 GMT
Not After : Jan 11 11:44:21 2025 GMT
Subject: CN=F565AB8F8BBE30416667BC56EDCCD6C695B88B35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6a:49:c3:01:f7:f2:9f:d8:22:0a:2b:88:d6:
07:3f:00:c5:58:1f:d4:76:b5:67:04:2f:67:a7:59:
9f:99:83:b5:5b:c7:51:19:83:f7:dc:39:91:f3:6b:
f7:82:a0:f9:5f:ab:58:70:08:98:a5:27:fd:10:36:
3f:0a:37:49:c0:31:44:08:3d:b0:11:6c:58:d1:02:
0b:3f:14:1f:69:84:1d:a4:bc:28:c7:91:97:0d:ae:
bb:1a:c6:d2:e8:c3:a8:e6:b0:01:8b:5b:ae:28:84:
85:e1:7f:f3:38:8c:f3:1d:bb:90:94:42:59:d1:9c:
65:ad:25:e9:99:17:4f:b4:e1:cb:c1:db:99:d1:df:
2a:2f:80:9a:88:07:87:c3:91:65:70:a1:ae:2e:eb:
87:5c:27:c4:ab:03:ee:ae:fa:d5:85:da:42:ec:1f:
53:b3:70:e7:ae:22:77:3c:62:2d:7e:00:6b:21:e5:
30:20:b4:49:b2:43:54:ed:5f:81:d2:29:c8:88:e3:
66:29:c0:66:79:5b:64:04:9d:48:5c:14:94:a6:21:
94:8e:ef:e1:fc:bb:5f:9d:0c:32:07:ed:ff:fc:e6:
a7:86:b4:0b:fb:d2:74:86:9a:65:5d:d7:c4:51:b5:
9c:3f:bd:88:57:ec:57:ea:49:d2:fc:75:a8:58:f2:
25:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:65:AB:8F:8B:BE:30:41:66:67:BC:56:ED:CC:D6:C6:95:B8:8B:35
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS206729.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:9e0::/44
2a06:a005:1c40::/44
2a06:a005:21d0::-2a06:a005:21ef:ffff:ffff:ffff:ffff:ffff
2a06:a005:2200::/44
Signature Algorithm: sha256WithRSAEncryption
82:ce:d6:5c:bf:08:1d:f9:40:98:48:5a:85:d6:0d:36:97:fb:
69:bf:ca:f9:0c:ac:11:88:ef:8b:3d:e5:5f:47:13:50:6f:de:
ab:c1:31:12:62:8f:86:bb:d1:46:2a:96:64:96:75:b4:75:f8:
de:f3:56:3c:4b:47:2f:fd:63:30:8d:bd:80:d0:04:b6:0d:68:
d5:f5:e5:8e:28:c9:2f:c4:6e:13:0b:a7:67:51:8b:5a:d1:46:
7b:c3:fe:73:8a:8c:e9:68:5e:a6:3f:3a:4b:13:c5:8b:86:4d:
17:0c:85:36:08:18:bf:5f:1c:fb:34:aa:f4:b0:60:f5:42:00:
08:6d:9b:91:0e:2b:3a:31:49:6f:fc:ef:89:35:15:2f:57:8c:
b7:e1:f4:7b:80:96:6b:8e:31:e1:e5:73:89:a9:91:f4:4b:05:
33:85:96:9c:19:87:ba:87:ce:a7:03:eb:7b:8c:93:e2:b6:21:
73:5c:0b:d8:cf:99:6b:de:ba:ff:21:b8:db:c6:84:ca:d1:a3:
e4:16:96:93:31:d0:88:b0:48:20:03:80:4d:10:37:1e:67:1b:
c7:a7:74:b0:ce:97:82:f0:81:88:db:e9:74:8e:ca:89:38:81:
04:83:25:d0:41:ab:a5:5d:f1:15:2d:d2:56:93:78:49:a7:93:
a2:39:f9:6f
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIURRD6ChgTaaVFFxZiFRTyK5rIbRQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDAxMTMxMTM5MjFaFw0yNTAxMTExMTQ0MjFaMDMxMTAvBgNV
BAMTKEY1NjVBQjhGOEJCRTMwNDE2NjY3QkM1NkVEQ0NENkM2OTVCODhCMzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5aknDAffyn9giCiuI1gc/AMVY
H9R2tWcEL2enWZ+Zg7Vbx1EZg/fcOZHza/eCoPlfq1hwCJilJ/0QNj8KN0nAMUQI
PbARbFjRAgs/FB9phB2kvCjHkZcNrrsaxtLow6jmsAGLW64ohIXhf/M4jPMdu5CU
QlnRnGWtJemZF0+04cvB25nR3yovgJqIB4fDkWVwoa4u64dcJ8SrA+6u+tWF2kLs
H1OzcOeuInc8Yi1+AGsh5TAgtEmyQ1TtX4HSKciI42YpwGZ5W2QEnUhcFJSmIZSO
7+H8u1+dDDIH7f/85qeGtAv70nSGmmVd18RRtZw/vYhX7FfqSdL8dahY8iXzAgMB
AAGjggIYMIICFDAdBgNVHQ4EFgQU9WWrj4u+MEFmZ7xW7czWxpW4izUwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA2NzI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEH
AQH/BDkwNzA1BAIAAjAvAwcEKgagBQngAwcEKgagBRxAMBIDBwQqBqAFIdADBwQq
BqAFIeADBwQqBqAFIgAwDQYJKoZIhvcNAQELBQADggEBAILO1ly/CB35QJhIWoXW
DTaX+2m/yvkMrBGI74s95V9HE1Bv3qvBMRJij4a70UYqlmSWdbR1+N7zVjxLRy/9
YzCNvYDQBLYNaNX15Y4oyS/EbhMLp2dRi1rRRnvD/nOKjOloXqY/OksTxYuGTRcM
hTYIGL9fHPs0qvSwYPVCAAhtm5EOKzoxSW/874k1FS9XjLfh9HuAlmuOMeHlc4mp
kfRLBTOFlpwZh7qHzqcD63uMk+K2IXNcC9jPmWveuv8huNvGhMrRo+QWlpMx0Iiw
SCADgE0QNx5nG8endLDOl4LwgYjb6XSOyok4gQSDJdBBq6Vd8RUt0laTeEmnk6I5
+W8=
-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org