Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
File: AS207445.roa (raw, json)
Hash identifier: +rb7S47a5DAHIuynAfjOx2T4R659k0VdtVxqbPNs6PE=
Subject key identifier: 6F:3B:8C:B9:15:64:0A:6A:28:21:E1:0C:B2:A7:34:C9:B6:2C:AB:7B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 57E848DB9E14EC3EBE2D5C695D44C003A8E4E6BC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 207445
IP address blocks: 2a06:a005:f90::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:e8:48:db:9e:14:ec:3e:be:2d:5c:69:5d:44:c0:03:a8:e4:e6:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=6F3B8CB915640A6A2821E10CB2A734C9B62CAB7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c4:12:32:8f:87:be:e9:08:8c:ae:61:e8:67:
4a:4e:e7:f6:46:c7:0b:2e:34:1c:d4:2f:80:76:2d:
1e:e1:86:4e:c0:2a:a1:d7:cf:34:6f:c2:86:65:6b:
eb:67:65:2a:e0:3a:1e:48:8b:8a:00:20:1e:24:75:
c1:06:62:fa:c0:9d:7d:ad:54:1d:2e:f9:71:1c:81:
c4:19:63:54:c1:aa:d8:90:72:77:a5:0d:4a:03:62:
f9:1b:b5:08:e3:01:bf:dc:6c:07:a6:a6:3e:52:f9:
1d:d9:26:72:86:f1:12:b9:1f:be:3f:cf:9b:92:ed:
5d:24:91:ad:18:98:d3:82:61:6b:4c:07:db:54:80:
32:3e:45:7f:7f:61:e2:b9:63:1f:4a:b4:6e:03:a6:
1f:5c:a3:cf:c0:a9:65:a1:0c:7d:62:9c:9c:d5:26:
3a:fc:d3:2d:46:3e:47:da:8a:de:2e:99:a3:72:69:
0d:c8:b3:e0:d5:a6:b6:27:a8:5b:bf:3d:92:51:ce:
08:57:ef:ad:a1:97:52:26:38:4b:27:24:74:77:8a:
f2:55:eb:99:d8:43:58:d1:b5:76:4b:47:89:ec:a7:
97:9c:d3:98:95:e8:23:dc:70:db:24:4d:ef:64:30:
d9:4a:56:61:d3:79:a5:7a:c5:79:c3:c1:da:0c:dd:
fc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3B:8C:B9:15:64:0A:6A:28:21:E1:0C:B2:A7:34:C9:B6:2C:AB:7B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f90::/44
Signature Algorithm: sha256WithRSAEncryption
af:ec:7a:e5:b7:f3:29:e7:cf:cb:9f:66:e0:57:65:e0:f8:5a:
ba:96:68:6e:6f:ff:7e:19:0d:94:32:ff:a0:b0:5b:dc:94:28:
d0:ff:b5:47:ff:25:2e:bd:0e:f9:f0:41:d8:39:ed:85:18:94:
25:c2:03:53:12:9d:7f:13:2c:24:d3:c3:00:5e:52:48:ac:58:
26:44:6b:50:26:e6:cf:48:ee:9f:8a:8f:44:ae:19:ba:dd:00:
12:e6:17:2a:05:1d:f1:27:c8:6a:b9:69:04:01:d5:d5:95:b7:
bb:1c:62:6e:12:b1:2c:a7:71:da:e6:c5:c1:24:af:06:80:de:
cd:d7:2a:b6:d6:c5:74:d1:a7:29:7a:be:29:84:ed:64:2e:3a:
35:47:70:26:99:9b:49:e8:b1:8f:91:d2:15:64:92:ae:a0:ee:
08:d2:ee:dc:3b:e4:56:0d:3a:32:56:05:6d:db:0f:ca:18:ff:
29:a9:db:e0:89:24:86:f0:8b:92:15:7f:37:52:42:39:73:81:
20:f8:54:0c:22:a6:69:a2:54:a4:7c:b4:51:3d:60:eb:94:95:
27:69:db:17:c9:37:5e:61:1d:af:fa:70:22:53:9c:89:83:0a:
ce:46:99:02:2a:76:12:3d:79:13:08:5f:c2:8b:e2:7a:a7:62:
02:04:a3:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:23 2024 by rpki-client on console-fra.rpki-client.org