Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
File: AS208584.roa (raw, json)
Hash identifier: SrZZyEjoMOFNpioDWvJjO9r4dOmxquQDURweSMtdVno=
Subject key identifier: 3E:D5:6A:87:6B:B9:E2:51:AB:57:BC:FA:11:4F:DD:BA:56:60:4D:C8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 168D466DA62EEF95C2CF3B1849BCC7D5478ECBD3
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 208584
IP address blocks: 2a06:a005:460::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:8d:46:6d:a6:2e:ef:95:c2:cf:3b:18:49:bc:c7:d5:47:8e:cb:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=3ED56A876BB9E251AB57BCFA114FDDBA56604DC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:92:6f:ad:16:12:08:b7:5e:68:cc:13:07:
ba:e6:aa:12:f9:ae:08:97:41:3e:8f:e1:70:b7:80:
41:0b:7a:4b:1a:64:fb:79:13:46:1a:93:c5:1d:58:
b5:a0:ad:9f:eb:2e:5c:68:5e:d8:1a:9a:90:3a:04:
65:f8:ad:35:53:af:e8:49:b1:04:ef:8f:db:4a:45:
3f:13:53:e0:ca:76:d4:3f:11:eb:e2:0d:8e:9b:8d:
27:c9:46:20:7f:bb:80:68:35:17:ef:6d:69:da:3d:
d2:6a:69:0b:fd:2c:4a:a4:24:0f:16:94:33:ce:fa:
8c:5d:a2:2d:7f:bb:86:35:fd:7c:9e:97:4e:74:84:
59:16:e8:4f:e9:67:5a:99:16:a6:83:98:5f:06:25:
1a:39:c8:9b:99:5e:44:29:f1:65:3a:e7:be:d9:b6:
41:63:17:d3:58:76:8a:7b:1f:01:40:79:fc:97:d7:
d0:b7:82:b9:83:9f:27:4a:ff:48:10:f8:ea:5a:50:
c3:27:72:05:57:c0:17:9a:78:dd:1d:2a:7c:1e:1d:
ac:ab:5c:a9:44:5f:3e:44:2c:f7:3f:0e:0d:52:47:
d0:8c:fe:02:67:08:e4:db:10:f1:64:1a:2e:9b:20:
28:e7:80:21:14:9c:24:96:d3:d4:7f:2f:fc:c2:55:
d5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D5:6A:87:6B:B9:E2:51:AB:57:BC:FA:11:4F:DD:BA:56:60:4D:C8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208584.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:460::/44
Signature Algorithm: sha256WithRSAEncryption
6d:d1:b2:55:7f:d6:9b:ef:9e:50:f9:70:cf:6f:1d:2b:ec:23:
f1:ee:db:1f:c0:e4:b1:73:3c:68:48:aa:5b:e0:17:39:ed:77:
a8:6a:93:ae:fe:85:6e:5c:a2:9d:1e:05:b4:9c:4a:45:54:38:
ad:38:31:70:cb:42:aa:1f:ff:50:1f:44:f0:c1:fe:bb:c0:f6:
07:8b:ee:6a:ae:1e:55:c0:bb:fd:10:70:14:99:2a:a6:57:0b:
c4:21:c4:b1:16:e5:a9:f1:bd:f1:dc:4c:78:ae:ab:3f:54:52:
0c:89:0e:73:23:a6:52:49:52:86:83:70:bd:71:ee:b2:47:08:
f4:ba:c2:5a:10:7a:a4:de:4f:95:ca:9e:1b:26:8e:e2:e5:18:
f7:8b:2f:11:22:4a:1b:31:3e:6b:19:b5:43:5d:81:2f:e1:f2:
b6:75:5b:ed:c9:5b:47:2b:29:a2:5c:54:f6:05:95:a8:71:82:
2e:c8:0a:08:48:7a:c2:2b:b4:7b:ce:aa:d7:71:f4:fb:2d:4a:
35:21:f1:e3:bc:06:a8:5d:62:41:08:46:6c:87:da:d6:d0:b2:
21:75:70:de:c1:1f:9a:9d:68:9a:18:62:fb:a5:15:0a:19:0b:
e9:35:b0:c7:05:c5:a3:7c:d4:2c:b6:f2:c5:f7:50:2d:c6:ad:
42:97:08:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:51 2025 by rpki-client