Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
File: AS208059.roa (raw, json)
Hash identifier: IExp9NgKjwXINYfVhXaREWwF3XIL5+/IxU9Zp0ZsDJc=
Subject key identifier: 00:FB:5A:43:43:DF:5D:61:76:3D:F4:2B:77:AA:90:43:0C:5C:76:21
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 521BF77086253F1D9594A75E8F861E21C7B26311
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
Signing time: Tue 05 Nov 2024 03:40:07 +0000
ROA not before: Tue 05 Nov 2024 03:35:07 +0000
ROA not after: Tue 04 Nov 2025 03:40:07 +0000
asID: 208059
IP address blocks: 2a06:a005:d28::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:1b:f7:70:86:25:3f:1d:95:94:a7:5e:8f:86:1e:21:c7:b2:63:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:07 2024 GMT
Not After : Nov 4 03:40:07 2025 GMT
Subject: CN=00FB5A4343DF5D61763DF42B77AA90430C5C7621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:65:e9:1a:27:d3:18:38:73:07:fa:1d:61:f6:
46:09:c6:45:5f:e1:39:4e:b2:3b:e0:55:66:11:ed:
55:ca:02:ca:91:6a:cf:a7:a9:4d:4d:e9:5d:9b:31:
20:74:4d:c4:1a:4b:a5:1e:fc:c4:f4:a2:88:df:2d:
3c:53:38:a3:5f:4e:eb:e7:ff:30:aa:bd:c0:b9:6f:
b5:8b:3f:d8:4e:57:e4:38:15:b1:06:db:89:0e:9c:
63:3b:0b:90:59:28:3c:9d:39:6d:f0:ac:a8:2e:cc:
4a:7f:4c:e9:d4:4c:6e:af:fe:37:a3:b2:4c:f4:b3:
52:59:7d:d4:aa:9f:d3:24:0e:84:33:ed:8e:e3:09:
62:91:d1:d6:82:76:d9:4a:59:3c:5b:89:3a:40:47:
f1:76:1c:9f:f1:d2:2c:a8:1a:0b:b0:f2:c8:d1:a7:
83:dd:bb:1c:c6:29:f2:df:f5:11:fd:a7:e1:b1:f7:
3e:c3:3a:7d:07:52:1f:03:37:44:5c:b9:b2:7c:6a:
7b:8e:05:78:1a:ce:d0:31:fc:e0:27:cb:29:70:03:
59:19:65:a0:4b:db:27:42:1e:3b:0a:1a:f9:a8:ef:
45:9b:96:25:ff:13:27:a0:e6:0e:11:53:3c:0c:68:
de:18:b0:64:c2:90:5c:85:30:a3:32:10:41:14:d8:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FB:5A:43:43:DF:5D:61:76:3D:F4:2B:77:AA:90:43:0C:5C:76:21
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d28::/48
Signature Algorithm: sha256WithRSAEncryption
59:3d:93:32:aa:74:19:ea:1c:8b:4e:2b:11:7c:37:e0:46:db:
6c:db:93:ff:71:38:53:24:68:36:f7:4c:53:38:94:e7:7f:31:
ac:47:56:a1:00:9f:1a:7a:84:7e:cd:c7:da:bd:5b:29:08:df:
85:7d:7c:60:86:38:d7:dc:d7:86:49:eb:79:80:b3:80:11:ee:
df:8e:a2:68:b8:90:36:c4:45:6d:c6:da:ca:c1:1f:bf:bc:40:
c6:11:a5:2f:84:61:01:97:61:b9:36:75:5b:e1:56:c3:fa:f5:
87:4a:c2:77:88:ae:99:e3:3e:6a:1b:9c:66:67:b5:3d:bd:93:
fe:0f:32:6b:91:5c:53:8f:d4:f5:61:fd:e3:14:10:a1:5f:4f:
06:0a:08:3a:05:4e:92:bd:a3:5e:fc:ba:06:99:94:01:af:db:
4f:6f:21:13:7e:08:42:3e:87:12:8e:22:19:a1:58:db:d4:1b:
f2:09:cc:cd:73:b5:3a:0b:70:bb:6b:f9:70:e5:3f:b3:4c:72:
9e:7c:a2:62:31:a4:4a:f4:ca:c1:36:91:e1:5d:fd:44:59:c2:
b0:52:5b:b9:2c:0a:af:89:1d:43:91:c4:db:2a:57:84:76:0d:
87:2c:4a:d1:a1:9f:79:0c:f1:e2:6b:ac:dc:01:94:b4:07:57:
38:27:01:49
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUUhv3cIYlPx2VlKdej4YeIceyYxEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDdaFw0yNTExMDQwMzQwMDdaMDMxMTAvBgNV
BAMTKDAwRkI1QTQzNDNERjVENjE3NjNERjQyQjc3QUE5MDQzMEM1Qzc2MjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgZekaJ9MYOHMH+h1h9kYJxkVf
4TlOsjvgVWYR7VXKAsqRas+nqU1N6V2bMSB0TcQaS6Ue/MT0oojfLTxTOKNfTuvn
/zCqvcC5b7WLP9hOV+Q4FbEG24kOnGM7C5BZKDydOW3wrKguzEp/TOnUTG6v/jej
skz0s1JZfdSqn9MkDoQz7Y7jCWKR0daCdtlKWTxbiTpAR/F2HJ/x0iyoGguw8sjR
p4PduxzGKfLf9RH9p+Gx9z7DOn0HUh8DN0RcubJ8anuOBXgaztAx/OAnyylwA1kZ
ZaBL2ydCHjsKGvmo70WbliX/Eyeg5g4RUzwMaN4YsGTCkFyFMKMyEEEU2GKlAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUAPtaQ0PfXWF2PfQrd6qQQwxcdiEwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA4MDU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQ0oMA0GCSqGSIb3DQEBCwUAA4IBAQBZPZMy
qnQZ6hyLTisRfDfgRtts25P/cThTJGg290xTOJTnfzGsR1ahAJ8aeoR+zcfavVsp
CN+FfXxghjjX3NeGSet5gLOAEe7fjqJouJA2xEVtxtrKwR+/vEDGEaUvhGEBl2G5
NnVb4VbD+vWHSsJ3iK6Z4z5qG5xmZ7U9vZP+DzJrkVxTj9T1Yf3jFBChX08GCgg6
BU6SvaNe/LoGmZQBr9tPbyETfghCPocSjiIZoVjb1BvyCczNc7U6C3C7a/lw5T+z
THKefKJiMaRK9MrBNpHhXf1EWcKwUlu5LAqviR1DkcTbKleEdg2HLErRoZ95DPHi
a6zcAZS0B1c4JwFJ
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org