Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
File: AS208584.roa (raw, json)
Hash identifier: aLRx0Lgnr5sUG0xj+2cXCz/WDFnQz8bxMTcgmmKqWWE=
Subject key identifier: 16:39:56:81:12:FC:5B:E9:F5:69:F7:15:70:08:88:6E:CD:11:41:15
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0F797F9513D611A4E66C1802ACC02F771AC4AF38
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 208584
IP address blocks: 2a06:a005:460::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:79:7f:95:13:d6:11:a4:e6:6c:18:02:ac:c0:2f:77:1a:c4:af:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=1639568112FC5BE9F569F7157008886ECD114115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:bb:5b:37:86:f1:cb:9c:9f:3f:a1:76:ba:
47:d3:0d:ad:36:0c:1a:2b:2b:e6:2b:26:22:ed:ea:
67:e7:76:75:06:7d:ec:c3:82:4e:19:c3:30:7a:2e:
49:d0:f9:b6:0f:ec:fd:c0:3e:94:30:c3:82:09:01:
80:54:9c:cf:2c:61:e0:f6:57:18:3f:83:cb:d4:c0:
ce:dd:83:ce:88:c6:74:6f:55:1e:1f:fe:b3:7d:23:
40:d8:a8:0a:3a:94:97:19:bd:33:f4:31:99:77:da:
d6:dc:b8:27:a2:37:56:3a:b8:d5:87:21:55:86:6d:
bd:07:4a:f6:c5:98:38:18:e0:67:ce:b7:50:23:45:
b6:e8:d8:5e:b0:6f:64:d0:b6:e8:3d:72:12:6d:8c:
f4:a7:3f:82:c2:71:7f:80:c1:62:f9:aa:1e:88:ab:
61:fd:b7:e8:d5:ce:70:62:8d:ea:d3:6e:04:ef:fa:
40:52:b3:e5:64:27:b3:6c:25:79:6d:8f:f9:8c:e5:
6a:6d:51:50:f2:74:f5:d7:83:2b:86:8c:ff:60:e8:
df:91:54:28:a8:02:aa:0f:12:de:7f:06:b5:b1:29:
d5:cb:85:7c:89:69:18:6b:54:aa:37:ae:1c:b1:5e:
21:10:e0:13:fe:49:35:fa:61:ef:e0:71:5a:38:c3:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:39:56:81:12:FC:5B:E9:F5:69:F7:15:70:08:88:6E:CD:11:41:15
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:460::/44
Signature Algorithm: sha256WithRSAEncryption
23:d3:91:60:fe:6f:01:fe:c6:69:0d:fe:cc:30:0a:32:11:71:
df:d0:f0:1e:e4:52:e2:5a:2f:c7:68:63:1a:4a:10:50:af:95:
f8:37:93:74:0b:e0:98:a6:ef:7b:a4:4f:4f:62:b7:83:ca:b5:
02:6d:b7:42:1e:9b:20:49:68:c4:60:d5:ca:19:be:b0:10:11:
42:32:ed:c6:b3:a9:92:b9:dc:d4:e7:65:1d:79:15:0d:8c:5c:
ec:f0:d7:69:7a:d7:b6:54:1a:5c:73:54:0f:06:06:d0:70:65:
ae:77:5f:b3:1f:60:a2:4e:73:84:70:5f:32:d1:b1:fb:cb:17:
b3:dc:48:9e:f4:5f:9c:ce:0b:79:84:a9:ba:00:3d:d0:5a:b0:
0f:d3:a2:40:25:aa:ae:95:35:e2:c2:2a:bb:07:51:78:c9:18:
92:56:1a:9f:19:28:f0:8c:57:9c:e3:65:c9:84:10:0d:65:f0:
87:ed:c2:56:c6:01:69:65:bd:08:e1:ec:76:35:17:72:6d:6f:
e8:ac:1a:e8:78:57:1a:c5:8b:c8:ea:5e:93:73:7e:ed:29:50:
bc:16:8d:ee:40:dd:9c:6c:59:8c:22:b1:5e:65:9b:b3:b4:cd:
d1:32:bf:00:29:e6:2c:e6:8b:d0:e8:bf:e8:19:38:69:38:8b:
f8:9c:41:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org