Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208529.roa
File: AS208529.roa (raw, json)
Hash identifier: 4RWwDsHK1i7qfzSnsKi1lX8liXiiD0E7JH0bzBO20eQ=
Subject key identifier: 29:BE:99:94:B5:19:38:72:A6:3F:AD:84:BE:6E:69:AF:CA:9C:55:BD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3B3E4F73A92787D1AED8ED2E28E840B89D7FDD51
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208529.roa
Signing time: Sat 09 Nov 2024 22:40:12 +0000
ROA not before: Sat 09 Nov 2024 22:35:12 +0000
ROA not after: Sat 08 Nov 2025 22:40:12 +0000
asID: 208529
IP address blocks: 2a06:a005:5e7::/48 maxlen: 48
2a06:a005:c60::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:3e:4f:73:a9:27:87:d1:ae:d8:ed:2e:28:e8:40:b8:9d:7f:dd:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 9 22:35:12 2024 GMT
Not After : Nov 8 22:40:12 2025 GMT
Subject: CN=29BE9994B5193872A63FAD84BE6E69AFCA9C55BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1a:2b:2e:77:cf:fe:a7:b3:54:a0:62:21:fb:
95:0d:f9:d7:09:f6:ad:1e:43:98:34:15:51:1e:02:
80:c7:d1:48:14:4d:48:55:83:64:27:ba:c3:9a:d4:
aa:d0:d1:ac:9b:12:01:85:6c:db:f5:b4:32:70:d7:
0f:30:16:9a:63:ba:c9:fd:f7:ad:64:98:ea:cc:c3:
f1:a6:a5:d4:27:cc:15:8c:6e:3b:5d:a6:20:34:6d:
a6:49:f8:a7:ed:4b:41:d3:4e:3b:5f:50:1b:04:0d:
63:85:6f:6c:ec:1a:75:47:95:51:bc:53:71:d8:7f:
54:55:16:27:62:59:e6:12:1a:7c:9e:f6:84:74:da:
ba:d0:15:2c:44:35:cd:39:9b:83:12:e0:91:ac:4b:
f3:f8:ab:51:ae:c0:d0:25:37:b2:12:75:20:9a:a6:
9d:e7:e4:40:2e:db:d3:be:db:a1:51:e1:f2:53:4c:
59:01:bc:41:1c:6a:47:bf:f4:8b:1d:92:31:39:f9:
e1:8e:f6:08:ab:ae:5e:18:f1:84:35:c7:69:61:9f:
ff:21:aa:3b:e3:fa:b0:a4:53:45:66:fc:3b:00:38:
eb:2a:1b:83:a9:5f:75:bb:3d:88:ba:3a:76:83:1c:
b7:30:34:dc:c9:2f:f9:5f:e3:d2:6a:45:8b:38:1d:
87:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:BE:99:94:B5:19:38:72:A6:3F:AD:84:BE:6E:69:AF:CA:9C:55:BD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208529.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e7::/48
2a06:a005:c60::/44
Signature Algorithm: sha256WithRSAEncryption
0d:cd:33:61:b6:54:05:a6:82:7c:21:48:95:c5:bb:4f:12:59:
04:f0:74:27:d5:04:dc:dd:1a:f6:56:aa:96:91:f4:10:91:25:
5d:f9:89:d3:d8:6b:e6:71:8a:9f:65:fa:28:f9:2a:7b:b8:7f:
54:55:e6:f7:86:fc:c9:a3:f2:c6:29:50:0e:ce:2d:9e:66:0f:
6e:f5:87:c2:02:cf:0f:e4:5a:99:c0:0b:f7:09:e4:0f:f0:da:
6f:ef:67:f3:44:6c:3d:56:e7:8d:0e:3f:6b:f3:db:fc:90:40:
76:d0:80:ae:8e:ed:04:f3:c5:ff:4b:c2:8f:91:52:97:db:ca:
3a:5f:ac:5d:49:1a:fe:12:ce:7d:72:9e:0b:11:1f:4d:85:19:
e1:a2:29:22:ec:3a:0c:cf:7f:b8:3b:5b:f9:d2:5d:0d:f6:62:
02:e0:28:a3:28:be:98:3d:a6:76:8e:6e:5c:78:d8:c9:8e:0e:
08:58:12:62:f6:95:9d:83:81:02:35:35:c5:d4:f2:85:2f:42:
76:2f:10:c5:2f:dd:b2:6b:f7:90:fa:4f:5a:4f:39:18:4b:ab:
81:25:0d:81:f5:af:43:93:9c:a0:e0:10:8a:2b:f0:14:be:b0:
16:18:13:11:fa:73:3e:78:90:98:f0:a0:67:10:9e:dc:8e:ce:
d0:ea:b2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:55 2024 by rpki-client on console-ams.rpki-client.org