Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207556.roa
File: AS207556.roa (raw, json)
Hash identifier: wQREmIndaU/Uvh7Wdt1lGK/luHJpHCoobazEULdEiSI=
Subject key identifier: C9:B9:87:24:1F:10:D0:20:57:AC:99:8A:4A:E4:BA:D0:BD:25:4E:78
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 491F0DC9D75E000E1F650A774404E25A7A462C2C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207556.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 207556
IP address blocks: 2a06:a005:720::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:1f:0d:c9:d7:5e:00:0e:1f:65:0a:77:44:04:e2:5a:7a:46:2c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=C9B987241F10D02057AC998A4AE4BAD0BD254E78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f4:13:ca:51:ab:04:0d:9d:46:9c:33:3e:1e:
56:4a:d0:5e:dd:81:c7:5f:93:bf:47:73:26:ea:6a:
db:ea:aa:48:9c:af:72:30:f1:01:59:f7:e4:31:c9:
ee:ab:a8:91:52:44:61:7c:92:62:c4:ce:0c:ac:f2:
28:a3:f8:14:34:2f:06:11:89:bc:f2:88:2a:ec:fc:
83:4d:92:c0:5a:b1:f3:81:e5:74:47:36:13:8a:1d:
fb:20:ab:95:d3:e5:5e:b7:bf:61:11:45:2a:9f:1b:
a1:11:c4:10:99:ab:a9:1b:3e:b1:e2:31:b5:ec:98:
cf:15:f8:21:bf:cc:06:6d:18:12:e7:0d:00:4c:48:
09:cc:5d:0b:c6:c5:00:5a:49:74:f7:1b:0e:aa:d3:
80:cc:d4:78:58:f5:0e:cb:cb:da:a1:33:8d:53:d4:
84:0a:30:3f:e5:57:f1:c9:5b:e7:e6:fa:9f:7b:be:
71:1a:73:08:98:f6:cc:13:dc:5d:77:41:54:e8:f5:
5d:1b:7e:70:74:d4:7f:42:fb:49:d4:2b:ac:15:ca:
b1:5b:b6:b3:0d:cd:be:c1:07:bd:b8:b8:60:23:1b:
50:b6:c8:b6:24:db:0c:17:34:25:ae:6d:6a:48:40:
38:1d:98:1b:ed:0c:9b:7c:63:ec:e3:20:a0:36:30:
c5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B9:87:24:1F:10:D0:20:57:AC:99:8A:4A:E4:BA:D0:BD:25:4E:78
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207556.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:720::/44
Signature Algorithm: sha256WithRSAEncryption
91:ea:9f:c4:28:6f:aa:87:2d:33:0a:59:9d:0c:e8:26:c5:ba:
11:2f:c7:06:0d:6c:4a:0c:21:d0:50:17:96:62:33:3a:29:24:
dc:93:28:e3:65:5f:06:2b:24:d1:e8:43:3c:73:f2:eb:1b:98:
ec:29:ce:fa:b5:24:22:bb:f7:34:02:93:d2:ca:6f:ba:da:44:
ba:65:9f:7b:b4:18:e8:c5:2e:06:14:5f:b1:9a:cd:42:0d:b6:
99:ed:6a:e7:20:70:c1:06:c7:35:1d:cb:8e:ad:78:f6:ed:24:
dd:81:50:6f:59:67:b7:28:5b:e5:2d:60:b5:2a:c6:e8:22:ed:
85:1f:19:25:6a:4f:08:bd:92:db:7d:54:31:77:32:e1:2e:2d:
cf:97:59:0a:4b:38:47:ce:23:ce:fa:a4:32:ec:a6:16:ee:fe:
96:bb:7e:4f:dc:03:8b:68:a3:b7:e6:e0:5e:53:5e:07:3f:4b:
f1:7e:97:f0:39:12:c9:89:5f:0e:8a:9a:02:28:4d:f9:1f:28:
ca:92:44:de:65:f5:cd:66:7f:b5:8f:6b:94:d4:3b:e3:e4:3f:
b1:d0:7c:eb:ef:b7:55:04:f0:e1:1b:ce:f5:4e:6b:b5:ee:8a:
9c:c6:a6:11:ec:67:14:7f:f1:aa:f3:dd:be:c5:38:e2:7f:92:
ee:c8:7f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org