Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
File: AS207142.roa (raw, json)
Hash identifier: xpCb+pnCHqpuaKTo2IMg5JSLiWfncv9rRgDTM0qFjKA=
Subject key identifier: 87:BD:24:62:AE:A4:D8:DC:53:2F:E0:2A:A8:EE:E6:2E:16:D2:22:E7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2D2E13643C07B404E21DA02E675830D5C0597848
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 207142
IP address blocks: 2a06:a005:2580::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:2e:13:64:3c:07:b4:04:e2:1d:a0:2e:67:58:30:d5:c0:59:78:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=87BD2462AEA4D8DC532FE02AA8EEE62E16D222E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1a:dd:74:f3:32:2a:6d:1f:9c:0a:17:ac:e9:
0b:5e:bc:62:95:27:9d:8d:13:a7:29:b7:a1:75:63:
b9:34:ca:3a:ea:91:08:0e:82:cf:ae:14:bb:17:17:
ed:e8:99:41:3c:26:6c:a6:aa:2d:e3:bd:f8:dd:89:
f1:85:71:0f:40:d2:03:73:4a:d8:13:c3:2d:d0:77:
ca:37:80:1c:b1:f8:cc:0e:82:9c:21:bb:b8:78:1b:
48:c2:d6:91:31:b8:9c:9d:44:f4:b5:e1:82:db:d7:
63:fc:d0:d1:69:35:8f:e2:b3:09:64:8c:bc:cc:49:
06:4f:50:42:35:c4:62:ad:5f:53:06:20:71:c0:88:
83:e4:81:35:e2:b5:48:b4:91:60:34:b0:2e:f3:d2:
0e:60:0e:49:f4:62:de:19:e8:bc:7c:b5:f7:58:69:
a4:4d:24:56:52:4b:dd:07:ff:f0:6e:73:ba:39:14:
6e:74:c5:71:bd:fb:1d:a6:05:9b:c3:2c:c5:68:2f:
1e:5a:c2:24:d9:31:5b:cf:c2:c6:50:8a:f9:a4:7e:
31:9e:f3:1c:7c:6b:67:87:ec:32:11:6f:e9:b2:a9:
8c:92:d3:61:03:4e:83:ce:6f:5b:1a:3d:df:9c:c5:
ea:39:4e:8c:f4:7a:30:e7:1b:a9:7a:8f:91:d2:65:
38:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BD:24:62:AE:A4:D8:DC:53:2F:E0:2A:A8:EE:E6:2E:16:D2:22:E7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207142.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2580::/44
Signature Algorithm: sha256WithRSAEncryption
15:cb:66:50:d1:4f:0f:f3:8c:53:d2:00:2f:a3:5c:73:4b:08:
81:05:50:f2:27:58:04:40:d5:c4:02:24:bf:da:73:82:ae:56:
39:2d:87:f1:d2:78:fa:9a:5f:c0:29:87:03:8b:85:11:78:ce:
71:a8:18:58:77:35:f5:89:17:ef:35:7a:7a:ad:da:89:64:0c:
dc:c1:77:80:92:b5:16:8e:95:cd:b7:15:1a:e1:44:b1:d5:bb:
81:68:10:81:a2:22:fe:7c:32:e1:04:11:cb:a7:a6:81:ce:90:
cc:6c:9b:0c:bc:1e:cd:75:b9:66:6b:20:12:14:96:9c:88:2a:
14:25:19:44:80:94:d5:d8:47:66:5f:ab:23:48:70:77:c8:da:
23:bd:7a:83:1f:cd:86:94:17:9e:01:21:29:01:a0:65:0a:84:
59:e5:01:3c:6a:0e:7d:db:58:b7:cc:e2:7c:df:21:b4:c3:58:
b2:60:c7:3b:d6:da:ae:e9:55:39:48:df:03:93:44:f2:89:60:
08:fd:6f:fd:ca:fa:b5:c0:5a:04:e1:ef:68:7b:63:90:27:49:
42:6e:41:8e:cd:a4:54:8a:07:3c:dd:29:18:fc:7e:a5:60:b1:
39:e3:e5:7c:4f:16:bb:8a:8c:3b:e3:9d:53:3e:38:4f:d9:dd:
28:d7:13:f8
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIULS4TZDwHtATiHaAuZ1gw1cBZeEgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUwMjM5MTFaFw0yNDEyMDMwMjQ0MTFaMDMxMTAvBgNV
BAMTKDg3QkQyNDYyQUVBNEQ4REM1MzJGRTAyQUE4RUVFNjJFMTZEMjIyRTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQGt108zIqbR+cChes6QtevGKV
J52NE6cpt6F1Y7k0yjrqkQgOgs+uFLsXF+3omUE8Jmymqi3jvfjdifGFcQ9A0gNz
StgTwy3Qd8o3gByx+MwOgpwhu7h4G0jC1pExuJydRPS14YLb12P80NFpNY/iswlk
jLzMSQZPUEI1xGKtX1MGIHHAiIPkgTXitUi0kWA0sC7z0g5gDkn0Yt4Z6Lx8tfdY
aaRNJFZSS90H//Buc7o5FG50xXG9+x2mBZvDLMVoLx5awiTZMVvPwsZQivmkfjGe
8xx8a2eH7DIRb+myqYyS02EDToPOb1saPd+cxeo5Toz0ejDnG6l6j5HSZTiZAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUh70kYq6k2NxTL+AqqO7mLhbSIucwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA3MTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBSWAMA0GCSqGSIb3DQEBCwUAA4IBAQAVy2ZQ
0U8P84xT0gAvo1xzSwiBBVDyJ1gEQNXEAiS/2nOCrlY5LYfx0nj6ml/AKYcDi4UR
eM5xqBhYdzX1iRfvNXp6rdqJZAzcwXeAkrUWjpXNtxUa4USx1buBaBCBoiL+fDLh
BBHLp6aBzpDMbJsMvB7NdblmayASFJaciCoUJRlEgJTV2EdmX6sjSHB3yNojvXqD
H82GlBeeASEpAaBlCoRZ5QE8ag5921i3zOJ83yG0w1iyYMc71tqu6VU5SN8Dk0Ty
iWAI/W/9yvq1wFoE4e9oe2OQJ0lCbkGOzaRUigc83SkY/H6lYLE54+V8Txa7iow7
451TPjhP2d0o1xP4
-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org