Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
File: AS207445.roa (raw, json)
Hash identifier: dpvIVxBlOwWLdzL1YtG+dz7Xus7pGUL76AHhHZB5haw=
Subject key identifier: A9:57:45:E6:13:AC:9F:7C:A2:4B:92:B8:B2:63:A4:39:1E:82:09:F3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 582A21126A7F0ED19E044855720E8A4B3CDDA96D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 207445
IP address blocks: 2a06:a005:f90::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:2a:21:12:6a:7f:0e:d1:9e:04:48:55:72:0e:8a:4b:3c:dd:a9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=A95745E613AC9F7CA24B92B8B263A4391E8209F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ef:2a:ad:87:64:fb:6d:cf:3f:fb:b4:05:14:
1a:7b:1a:e8:01:26:52:0c:fd:da:cc:d0:f1:21:14:
e3:05:ec:19:d7:8c:bc:69:d5:12:2a:21:52:15:8e:
6b:d4:24:25:19:fd:79:73:e2:6e:e4:d1:cc:aa:89:
6f:0f:08:0d:fa:b6:f9:87:d3:85:67:e0:74:b3:d3:
fc:3a:20:d3:95:d3:56:e9:4b:f3:ca:8f:3a:6c:c1:
6c:62:e8:e4:9c:bb:6e:eb:51:80:10:ea:1e:ee:b7:
00:73:4b:6d:5b:e0:41:05:99:c1:30:26:17:07:bd:
6f:19:49:14:a3:40:58:ab:53:00:02:ef:2f:f1:4e:
f5:4b:ef:2f:b8:de:5a:fa:96:83:63:05:52:a8:90:
c6:03:34:ac:f6:db:f3:f4:2d:86:25:72:f5:e2:55:
50:59:39:45:ec:df:14:ae:45:5c:f5:da:0c:0e:29:
9d:5b:57:0e:74:ce:00:c5:3b:84:22:2f:bf:8f:e3:
8e:8d:b0:76:f5:9f:e9:9b:9d:85:3d:fb:51:25:24:
e9:b3:a7:de:ee:1d:d8:8a:76:b4:19:29:f7:24:13:
8d:d5:ba:b7:68:8d:ee:b8:9a:8e:66:ec:32:09:28:
a9:1f:a7:22:2f:97:57:36:86:8d:05:83:c3:65:db:
fb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:57:45:E6:13:AC:9F:7C:A2:4B:92:B8:B2:63:A4:39:1E:82:09:F3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207445.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f90::/44
Signature Algorithm: sha256WithRSAEncryption
c5:bd:6e:e1:a7:12:c2:99:03:db:8e:7e:16:16:52:76:f5:69:
45:49:69:b0:4a:85:5e:69:bf:3e:dc:54:d3:5d:44:15:03:84:
85:57:78:78:62:5e:b0:3a:9d:66:b2:cb:c2:6d:c8:a6:48:c3:
2b:f0:71:0f:f1:8c:82:b9:26:00:f9:c8:01:50:b0:83:73:21:
f9:d1:89:3a:59:0a:94:67:a9:44:2a:44:0d:ef:5a:15:ac:b9:
34:1d:48:5d:a3:bf:fc:85:de:97:c9:07:7c:f9:1f:f3:0f:2d:
6c:be:33:c8:2d:31:02:90:12:be:c4:16:f7:f1:7b:c5:b9:f1:
1d:f2:38:67:54:ac:d5:66:2e:60:f4:d6:23:06:e5:1b:a0:9d:
b2:2c:73:40:c2:e2:9e:e8:9a:7a:5a:b1:7c:f4:0a:b1:c9:3f:
7f:c8:f7:30:ad:76:dd:e7:c1:64:94:69:6b:e4:ee:17:a0:0e:
7d:de:27:36:a7:ea:0b:e9:29:c2:25:b1:6b:a3:88:ea:84:78:
85:ec:de:02:6b:03:30:1f:73:26:e2:84:31:77:dc:02:85:ae:
cd:7d:fb:05:cf:83:9f:12:95:90:8f:b9:60:1a:5e:50:1d:b2:
d1:95:68:9a:6f:66:d8:65:9b:55:9e:b1:cb:24:ae:c7:69:7d:
5a:a9:e0:4b
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUWCohEmp/DtGeBEhVcg6KSzzdqW0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUwMjM5MDlaFw0yNDEyMDMwMjQ0MDlaMDMxMTAvBgNV
BAMTKEE5NTc0NUU2MTNBQzlGN0NBMjRCOTJCOEIyNjNBNDM5MUU4MjA5RjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD7yqth2T7bc8/+7QFFBp7GugB
JlIM/drM0PEhFOMF7BnXjLxp1RIqIVIVjmvUJCUZ/Xlz4m7k0cyqiW8PCA36tvmH
04Vn4HSz0/w6INOV01bpS/PKjzpswWxi6OScu27rUYAQ6h7utwBzS21b4EEFmcEw
JhcHvW8ZSRSjQFirUwAC7y/xTvVL7y+43lr6loNjBVKokMYDNKz22/P0LYYlcvXi
VVBZOUXs3xSuRVz12gwOKZ1bVw50zgDFO4QiL7+P446NsHb1n+mbnYU9+1ElJOmz
p97uHdiKdrQZKfckE43Vurdoje64mo5m7DIJKKkfpyIvl1c2ho0Fg8Nl2/ufAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUqVdF5hOsn3yiS5K4smOkOR6CCfMwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA3NDQ1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBQ+QMA0GCSqGSIb3DQEBCwUAA4IBAQDFvW7h
pxLCmQPbjn4WFlJ29WlFSWmwSoVeab8+3FTTXUQVA4SFV3h4Yl6wOp1mssvCbcim
SMMr8HEP8YyCuSYA+cgBULCDcyH50Yk6WQqUZ6lEKkQN71oVrLk0HUhdo7/8hd6X
yQd8+R/zDy1svjPILTECkBK+xBb38XvFufEd8jhnVKzVZi5g9NYjBuUboJ2yLHNA
wuKe6Jp6WrF89AqxyT9/yPcwrXbd58FklGlr5O4XoA593ic2p+oL6SnCJbFro4jq
hHiF7N4CawMwH3Mm4oQxd9wCha7NffsFz4OfEpWQj7lgGl5QHbLRlWiab2bYZZtV
nrHLJK7HaX1aqeBL
-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org