Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
File: AS208046.roa (raw, json)
Hash identifier: r4Obfg7wvvlHhnFPTC4uBZTRHeEMXggY1dEpiImJWhE=
Subject key identifier: CD:11:B8:FD:F8:B2:2B:D6:72:B1:92:07:F1:12:23:88:3C:4D:6F:FD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 16B9F10D950B386C4C95285920B047D8C9C624A9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 208046
IP address blocks: 5.253.84.0/24 maxlen: 24
5.253.86.0/24 maxlen: 24
185.99.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:b9:f1:0d:95:0b:38:6c:4c:95:28:59:20:b0:47:d8:c9:c6:24:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=CD11B8FDF8B22BD672B19207F11223883C4D6FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:44:1a:fe:6a:b4:23:6c:40:a6:42:42:28:62:
7e:6f:e6:9b:17:68:9c:1d:a2:ab:3f:67:97:3e:4f:
47:32:22:7e:f0:e0:fb:c0:d8:25:02:33:c6:c6:d1:
be:a1:c0:12:94:ff:bc:84:24:4b:28:17:f9:9a:fb:
b8:05:e8:85:0d:62:24:91:23:ce:4d:65:21:d8:1b:
8a:e3:b7:92:27:1a:a9:69:07:43:54:15:6b:9b:e2:
12:80:20:a6:92:ba:f6:82:c2:f5:66:01:5d:18:14:
73:ab:aa:b3:d4:ad:b3:b8:8a:67:cb:a3:32:66:9f:
c0:4f:67:1e:cd:5a:7b:21:20:45:aa:4b:b8:6d:fb:
98:cd:ba:12:2d:9f:8f:c7:76:c4:b9:0a:1e:29:e9:
48:9f:93:95:f1:96:bd:5d:ce:98:18:5c:d1:3e:4b:
eb:63:09:08:83:b7:fb:9c:c8:61:8c:74:f7:ba:02:
b5:57:0a:f2:4c:32:6b:e3:dc:1a:8c:61:26:86:1b:
cc:6d:b7:dd:6b:c2:1c:15:30:91:d2:28:4f:90:c0:
88:c1:05:4b:78:a5:de:8a:57:1b:83:08:6e:b7:a2:
af:74:c0:72:37:46:56:63:21:be:e9:a2:d7:ec:2c:
17:6f:19:a7:a2:27:a8:49:1d:74:d9:ca:5c:c3:b7:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:11:B8:FD:F8:B2:2B:D6:72:B1:92:07:F1:12:23:88:3C:4D:6F:FD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/24
5.253.86.0/24
185.99.135.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:fd:64:30:48:c0:06:65:2d:ef:d2:39:40:4a:94:b0:41:a8:
d3:ba:a4:df:6d:dc:af:d5:91:42:aa:92:95:9f:4c:a6:99:cf:
7b:50:d4:0c:35:45:a3:27:37:ad:90:8b:07:1e:7f:b4:b8:04:
b7:8d:6c:cf:c4:d4:40:b0:2c:c8:1a:33:06:18:58:99:ad:ef:
a4:d6:dd:af:9e:3e:06:e0:2e:78:f8:2d:a7:67:bf:b4:c7:09:
67:ba:ae:80:a1:02:7a:55:51:af:37:be:23:69:1f:f5:ae:2e:
c2:6d:27:fc:b0:c0:ec:0a:29:e2:e2:df:c7:79:0b:58:b2:14:
17:2d:67:55:4b:bc:59:69:59:96:de:78:21:d1:24:d2:be:2d:
12:a1:17:94:6b:a1:b1:3c:43:1e:2b:50:39:c5:95:9b:d1:7d:
d3:30:99:c7:e4:f8:65:36:c8:a1:95:c9:b1:16:af:1c:14:a4:
a0:e5:55:ec:2e:27:86:15:8d:cc:32:79:22:0b:e0:78:0f:2a:
fc:fe:0b:b1:61:59:dc:d4:09:23:32:75:bf:0a:52:6c:bd:0b:
11:50:de:23:a8:8d:73:e2:88:90:ac:0c:4d:15:6c:5c:03:d5:
31:6b:1a:b9:d2:3e:1e:b7:23:e6:8c:75:8c:c4:96:61:a3:32:
67:f8:78:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:51:30 2024 by rpki-client on console-ams.rpki-client.org