Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
File: AS207142.roa (raw, json)
Hash identifier: WnMSAOdhCnIFjhS+lgaBOKB0LCa8bVkKtP0mRtIFF18=
Subject key identifier: 16:E5:3E:FE:01:E3:69:DB:1E:50:63:C3:A1:A1:94:36:FD:03:9A:26
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3B1B889967FBD9B172A1C8E9D39353775BE7AB26
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 207142
IP address blocks: 2a06:a005:2580::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:1b:88:99:67:fb:d9:b1:72:a1:c8:e9:d3:93:53:77:5b:e7:ab:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=16E53EFE01E369DB1E5063C3A1A19436FD039A26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2b:d0:ee:df:a9:65:b3:44:90:27:c3:21:6a:
e9:54:80:49:ee:09:90:5e:8b:f8:39:80:67:cf:70:
0d:63:f1:3d:ba:4e:27:d8:69:37:1a:91:9d:bb:6a:
08:27:78:f2:63:ee:60:2c:3e:40:6b:db:76:2c:c5:
bb:fc:7e:6e:23:7d:57:9a:e9:1b:31:a0:14:79:35:
9d:a5:9b:80:f2:22:e6:cd:79:32:70:cd:14:d3:df:
63:14:e4:60:15:78:8e:4f:cb:5c:78:87:15:22:86:
b6:d5:b3:b5:15:5e:71:a8:c4:08:3a:2d:a8:cd:03:
3b:92:f0:48:b9:4e:cb:e3:46:e5:7a:dd:93:d0:49:
4a:d1:f0:98:83:29:87:f7:f1:a8:63:30:cb:66:4a:
b2:30:67:d7:0e:e5:a4:2a:85:84:6d:e3:1b:cf:d8:
41:f0:98:12:4e:49:6a:4b:35:78:0c:dd:eb:e9:b0:
3a:6a:b8:33:08:cf:12:e6:9d:7b:0a:29:fe:d8:ea:
a6:db:08:58:10:68:9d:07:48:11:80:00:72:ff:9d:
c6:b0:4e:65:2c:e0:b8:67:dc:58:84:38:9d:9c:bf:
8e:53:c6:03:02:e1:8f:03:5d:7e:04:e6:4e:d7:fb:
d3:d3:a0:4b:a2:28:96:e3:a4:40:9e:9c:86:10:47:
d1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E5:3E:FE:01:E3:69:DB:1E:50:63:C3:A1:A1:94:36:FD:03:9A:26
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2580::/44
Signature Algorithm: sha256WithRSAEncryption
4b:0e:3a:4e:3a:e6:6a:02:fa:8e:b7:35:31:ec:5d:28:49:b0:
33:f3:ad:51:a4:d1:9b:3a:83:d5:f8:4f:05:8f:67:1a:3c:26:
64:ad:1a:1a:7a:e6:7b:33:b2:5d:0b:e8:96:63:a1:49:8e:04:
3a:91:63:b3:d9:a5:39:0d:2e:63:b0:45:e9:83:a3:ac:a5:69:
3b:68:3b:3e:87:f3:53:08:16:64:1d:93:39:55:38:e3:03:90:
b8:36:c2:77:ac:59:0f:0c:d0:9c:73:5a:5c:ed:5c:6b:18:7e:
54:cf:7d:b1:75:c6:d3:76:60:b9:c6:1f:5d:23:05:1f:6b:dc:
2a:64:96:fc:60:b2:36:6f:ab:bf:e8:e8:c6:cd:e2:f3:17:13:
f1:9e:b7:37:2f:2f:70:6a:cf:f0:99:37:60:97:ca:6f:2c:e4:
3e:e8:f6:0e:c1:15:87:0a:4c:83:af:e6:8f:92:7c:bb:c0:78:
51:e5:21:87:b5:8a:b4:e8:7c:0e:ff:19:5d:33:b0:85:a4:aa:
81:33:86:55:da:bc:8b:5d:b1:79:fe:93:18:d1:2c:b8:aa:5b:
7f:2f:5f:f8:e3:c2:e2:46:60:e3:00:76:dd:0e:59:23:6e:1f:
81:ff:5a:58:86:b6:67:2c:3e:60:08:74:58:13:15:bc:aa:f3:
fe:ba:40:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:11 2024 by rpki-client on console-ams.rpki-client.org