Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
File: AS208059.roa (raw, json)
Hash identifier: m9I9t77u7+N6on8CxmoaTYtDBvVZsOzHoqbEn1/MDJA=
Subject key identifier: B3:2C:02:80:D8:38:E1:D5:7C:D2:E2:27:72:55:F7:F5:39:4D:B5:45
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 23AE5271C16DAB6D42DA5AD21807A89C6DD3B9A9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 208059
IP address blocks: 2a06:a005:d28::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ae:52:71:c1:6d:ab:6d:42:da:5a:d2:18:07:a8:9c:6d:d3:b9:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=B32C0280D838E1D57CD2E2277255F7F5394DB545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:18:db:12:1c:7f:02:6e:43:17:ef:60:fe:
2b:fc:4d:66:ad:93:3c:f8:63:fd:cc:ef:1a:94:2f:
74:82:60:ed:1e:9b:07:da:e5:37:32:96:32:79:b8:
18:0b:ca:64:8d:0c:c8:6b:e7:a8:ee:d3:bd:7a:db:
b5:20:fe:9b:69:11:19:41:b5:39:3c:c1:bd:29:a2:
82:31:84:37:52:1b:22:47:d4:35:b9:6d:5f:af:b9:
79:00:19:b5:cb:d9:12:ed:f2:9c:6a:ca:d1:e3:31:
53:5d:97:66:d8:bf:e6:2a:2d:35:a0:32:fe:31:65:
0f:c9:0f:96:8a:c9:74:08:70:af:e8:3d:1a:6f:ab:
2d:7d:e9:62:5c:c5:6c:c8:51:f8:11:f8:eb:d8:06:
9d:61:4c:57:b3:f6:2b:5f:dd:c7:ea:98:dc:be:41:
5d:88:b4:30:2d:47:6d:d8:78:17:3d:5d:9c:55:68:
6f:8e:6a:84:9b:58:d4:68:a1:b6:32:68:4c:a0:7b:
85:58:fa:eb:12:5f:d8:3c:be:c6:dd:d8:03:3b:ec:
5e:f5:0f:12:64:12:bd:a9:5c:7a:81:dd:2f:b0:e1:
89:12:c3:13:b0:5c:fd:c4:cb:9d:2c:85:8b:83:1e:
2c:07:c2:17:a6:a6:33:50:d4:03:eb:ed:d5:27:ea:
27:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2C:02:80:D8:38:E1:D5:7C:D2:E2:27:72:55:F7:F5:39:4D:B5:45
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d28::/48
Signature Algorithm: sha256WithRSAEncryption
0a:83:af:35:d4:59:cf:4a:82:f9:05:c4:69:8a:12:6d:71:79:
2a:b4:2f:ac:0c:ca:c1:b5:89:5e:98:bb:e3:a7:80:7a:9c:27:
d2:2b:94:f0:f8:04:c1:04:7f:f8:f1:f3:9b:81:79:be:8f:46:
6b:4d:fd:8a:34:89:8d:a5:31:ed:66:1f:73:b0:46:b3:b0:f1:
7b:de:1a:13:2e:a5:d0:e5:01:da:20:c6:39:47:fb:75:ad:68:
2d:42:48:9b:b0:ef:4e:49:8d:ec:a5:ce:58:e3:41:5a:0f:8f:
6c:a0:62:0d:e4:c8:62:c0:52:89:a3:86:6d:62:c5:76:ec:36:
61:64:2f:f5:ce:65:0d:41:3c:c1:95:a1:cb:45:66:e3:71:ed:
07:46:4e:78:78:a9:aa:cf:bf:cc:7d:72:f2:ee:a6:2e:2b:e8:
3a:62:c2:ff:e1:57:e4:52:4d:95:d8:54:f1:e0:3f:24:ca:99:
52:e4:5c:e5:9c:6e:f0:73:f2:82:1d:f9:12:a2:ea:da:83:d6:
97:56:cc:23:3c:10:d3:73:76:cb:0b:c9:f6:e9:15:0f:ac:b5:
25:5c:bd:1e:90:20:93:59:e2:7e:f7:aa:61:bf:fc:b0:27:c8:
56:c4:15:00:c9:f9:70:7f:51:90:74:81:3a:bf:09:05:d9:de:
cc:f6:30:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:12 2024 by rpki-client on console-fra.rpki-client.org