Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207852.roa
File: AS207852.roa (raw, json)
Hash identifier: PW7KpcURnvX0azjPPARB/Xf9J7+AKem8vneJMO0QiA4=
Subject key identifier: D5:70:37:0A:C8:DB:DE:2C:FD:7A:B5:0D:4C:3F:96:21:76:D7:55:90
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 71AF841CDD4AD67FE3011884F2C29987FF727012
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207852.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 207852
IP address blocks: 2a06:a005:4b0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:af:84:1c:dd:4a:d6:7f:e3:01:18:84:f2:c2:99:87:ff:72:70:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=D570370AC8DBDE2CFD7AB50D4C3F962176D75590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:38:74:34:88:e6:47:c1:38:53:c1:51:51:c9:
20:19:88:51:a1:1e:1b:3a:4e:9e:8e:7d:f8:e7:96:
8f:5b:e4:8c:2c:bb:d9:de:12:fa:ba:1e:80:d6:13:
76:67:64:fd:ed:93:76:a5:ec:92:a4:49:15:74:b7:
88:d5:52:8e:4f:49:fd:99:29:ba:bf:87:55:23:ee:
c3:50:42:c3:62:3b:46:9d:0a:e3:f9:66:60:7f:59:
10:99:81:e5:c0:8c:60:08:dd:34:44:16:7e:64:b7:
61:3d:c0:44:3e:57:af:a3:7d:0b:69:98:58:38:2a:
d4:0e:3d:8c:13:6d:3f:a7:93:a0:97:aa:0f:99:34:
5a:32:a4:00:7f:de:ff:99:7c:73:c4:8c:d1:e2:3d:
87:9b:7b:bb:bd:f2:49:c7:37:40:c4:27:2f:9e:7d:
d4:4e:93:0f:3b:58:61:c9:f5:e0:ba:cb:98:25:21:
92:17:dc:c6:3b:3d:77:bd:18:be:9e:cc:2b:d4:d9:
66:f9:73:c7:a2:79:df:0e:36:4d:e3:9d:bb:7e:62:
22:9e:e9:c5:8f:99:45:9b:38:a7:ab:e9:43:fe:e6:
ef:16:c3:0e:fc:6d:07:3f:d3:82:f8:94:ca:6a:ca:
93:ab:44:6a:f3:5d:8f:15:4f:52:7b:e1:2e:50:96:
c3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:70:37:0A:C8:DB:DE:2C:FD:7A:B5:0D:4C:3F:96:21:76:D7:55:90
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207852.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4b0::/44
Signature Algorithm: sha256WithRSAEncryption
0b:65:96:0d:a5:f1:c1:38:45:f7:45:c0:e8:46:e5:99:87:12:
88:6e:98:1a:d4:43:b2:a3:99:8a:f1:ad:1a:ac:8b:a0:ec:08:
8c:bb:e6:e1:d5:4b:44:a6:db:62:51:d9:7d:7b:96:a1:c0:d1:
3b:e3:87:90:69:bb:08:39:c9:9c:7d:ca:36:a8:11:43:69:fc:
c2:e5:72:be:5b:34:77:0a:69:cf:97:24:03:ea:42:9c:ce:f2:
61:aa:e4:d9:7b:d2:0c:d0:74:85:e4:9f:b1:9a:70:e2:ca:62:
ac:1c:e4:32:c6:5b:80:39:45:88:a4:3d:18:9f:29:08:08:6e:
88:6a:12:44:82:91:46:1f:a5:a5:16:ba:cd:b7:12:95:e5:84:
c9:40:b4:6e:3b:7e:d4:1e:79:3a:33:73:91:b1:5f:9e:c5:b4:
77:62:26:07:75:78:ae:64:a6:1e:ab:71:ca:3b:a2:01:6d:55:
c8:de:48:95:9b:b8:09:3e:ba:9b:6b:6c:2f:3b:83:a0:c3:ac:
d9:c4:f8:19:54:60:2b:96:a9:0b:cc:6a:b3:af:f8:d9:f0:1a:
20:19:89:d7:c1:f0:fb:8d:a5:32:13:a7:df:4f:c9:fb:35:70:
ab:d7:b2:ec:0f:f6:25:2f:8d:85:05:e7:85:f8:10:11:78:08:
5b:13:86:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org