Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207317.roa
File: AS207317.roa (raw, json)
Hash identifier: veXdfPAZowraRFSlYQyd8Hwgqxk2Ty3M6heJBbl7bHs=
Subject key identifier: 14:CB:CB:8A:7F:A8:B5:9B:B0:46:D6:1F:81:E7:E9:BC:2E:FB:29:7A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1838C52FA0126801B7C92973B5A6AE1B2D488083
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207317.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 207317
IP address blocks: 2a06:a005:2800::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:38:c5:2f:a0:12:68:01:b7:c9:29:73:b5:a6:ae:1b:2d:48:80:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=14CBCB8A7FA8B59BB046D61F81E7E9BC2EFB297A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:33:f5:c4:b1:00:06:5a:07:72:68:10:40:
c2:43:6c:e6:48:18:bc:f7:09:bb:98:69:ec:98:ed:
7e:56:9f:62:2d:61:d9:e9:7e:36:38:6b:94:3e:65:
af:f0:df:8f:e4:e0:33:21:ff:e2:19:2c:e2:3c:ed:
4f:30:80:1e:85:55:f0:38:07:ab:ef:2b:d0:77:83:
6f:b9:f3:b3:51:57:bb:64:c7:a1:46:9a:db:f9:e9:
ac:a9:ca:3b:dc:fd:36:87:f4:3d:30:96:40:f6:b6:
64:2e:24:c8:15:01:bc:a1:f0:94:c0:40:00:67:19:
b5:5c:90:a1:6d:dc:7f:84:4d:da:2e:65:17:05:1e:
d7:47:70:28:01:d8:5e:4d:d4:8c:5d:70:9c:d1:ca:
cd:88:4a:cc:2c:99:e7:df:8b:52:3d:23:ec:90:a6:
b5:6f:4c:89:a7:03:1e:85:d3:3c:f0:da:cb:27:1e:
1b:59:3f:6e:6b:0b:df:5e:96:40:53:6e:8a:49:0e:
56:c3:ff:91:80:7e:aa:31:fa:39:53:14:f2:f9:24:
bb:4c:b4:53:1c:3a:67:d0:f6:1d:8b:49:32:ca:b5:
e8:0b:b0:08:fb:3a:62:8d:98:42:ff:b7:60:88:5e:
48:3b:8d:90:15:c9:5a:fd:66:ec:55:ba:b7:5c:9d:
9f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:CB:CB:8A:7F:A8:B5:9B:B0:46:D6:1F:81:E7:E9:BC:2E:FB:29:7A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2800::/44
Signature Algorithm: sha256WithRSAEncryption
91:14:29:12:a8:46:37:0a:d5:17:7c:db:ff:f9:21:bd:80:ef:
fd:f0:07:9d:47:2b:ab:8b:25:84:f4:b5:a7:3c:dc:1c:d6:2d:
19:b5:9b:a8:2a:b0:31:d5:c3:7a:6d:ef:6e:2c:92:f4:2e:a5:
76:3a:bb:94:b2:74:a5:c4:6a:aa:71:f5:a2:e0:aa:1e:d9:85:
cc:14:a5:dc:78:2f:aa:18:00:eb:a2:6e:fa:f5:87:a7:85:d4:
5a:20:19:7e:3f:71:e1:f8:9e:06:9a:3f:b0:65:e0:4d:45:2f:
d3:f5:7b:7c:2b:c5:b3:b8:96:69:60:e9:17:af:87:76:45:96:
0b:02:a4:9a:6d:2b:6a:ba:99:84:f0:a2:45:e7:06:c4:10:f8:
77:c2:45:21:d6:28:cc:63:97:0a:17:3d:44:99:ed:8b:2e:32:
4b:c1:25:77:22:09:18:18:c2:f0:17:06:9c:34:70:03:b9:b8:
6e:cf:fc:49:70:ae:ab:90:11:a8:dc:ce:d8:b9:08:9e:e8:af:
6d:4f:24:2a:46:a9:ed:d8:a5:8e:ad:f5:01:13:45:ac:40:43:
a2:5c:9a:f9:4a:23:77:68:e7:c7:b7:34:dd:bf:f8:30:67:5d:
6d:99:e6:72:15:03:44:62:f8:30:aa:e5:58:b9:52:e8:11:39:
bc:6f:ae:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org