Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208796.roa
File: AS208796.roa (raw, json)
Hash identifier: 9lRehf9QaePpJLJ+G5AJV+5n/IDzMlKoytign0HSs/w=
Subject key identifier: 21:26:50:39:32:46:16:6F:10:8F:4B:A0:FA:C2:06:55:FA:5A:5A:6B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 71A83CEB37A8E4F51176981CE8AF642B02D2AEC2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208796.roa
Signing time: Fri 08 Dec 2023 21:44:21 +0000
ROA not before: Fri 08 Dec 2023 21:39:21 +0000
ROA not after: Fri 06 Dec 2024 21:44:21 +0000
asID: 208796
IP address blocks: 2a06:a005:d4f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:a8:3c:eb:37:a8:e4:f5:11:76:98:1c:e8:af:64:2b:02:d2:ae:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 8 21:39:21 2023 GMT
Not After : Dec 6 21:44:21 2024 GMT
Subject: CN=212650393246166F108F4BA0FAC20655FA5A5A6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:5d:18:20:0a:ed:ba:f0:92:0b:8d:b3:37:
af:af:ec:2b:06:a3:6b:de:c1:33:28:7d:b6:7f:61:
fb:69:8c:9f:62:33:d9:20:fe:4b:63:9e:2f:29:a0:
44:7e:64:09:9b:f4:91:e0:f4:de:9d:e1:04:b3:c1:
4c:ad:24:89:20:0d:b9:8b:96:d1:55:81:9c:b6:ff:
de:18:c4:f5:6f:a8:c8:6e:71:1d:75:78:5a:3c:87:
b3:18:5a:41:7d:91:af:bb:1e:a5:e3:6a:b7:06:30:
62:8b:2a:66:0d:53:db:57:f6:0c:76:0d:ee:4b:f9:
54:e2:da:dd:a2:14:bb:f0:18:29:db:18:ef:ab:48:
df:59:2d:aa:56:11:01:e5:c6:62:6e:6a:63:56:0c:
32:a6:8d:d5:8c:b0:c2:46:11:9d:1a:5c:34:e5:07:
53:29:d7:78:c8:0b:27:11:27:b4:36:99:c1:80:27:
7d:5d:de:ea:2b:70:e8:b3:42:00:a5:38:6b:dd:58:
f3:04:78:c4:27:4b:26:92:80:9a:61:c5:20:e5:15:
4e:4a:ed:dd:c8:7c:2d:5c:fe:8f:54:a2:ec:b1:5c:
a2:ab:2b:5b:6b:54:df:f2:2a:9d:66:c7:07:7a:b2:
b4:96:81:a4:73:01:44:9d:df:8d:86:9b:4a:e5:5a:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:26:50:39:32:46:16:6F:10:8F:4B:A0:FA:C2:06:55:FA:5A:5A:6B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208796.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d4f::/48
Signature Algorithm: sha256WithRSAEncryption
4f:28:98:bf:f4:9d:68:1c:33:83:3a:b8:2d:a3:07:93:9a:b0:
d8:fc:0d:bb:2c:e7:05:cb:e9:e1:0a:56:aa:f7:71:30:97:fb:
f9:71:38:82:26:bc:fd:d3:57:99:23:b4:77:fa:d9:0c:54:83:
38:60:66:df:c0:69:01:b2:fc:23:34:20:0a:a3:be:5a:d8:c3:
44:7a:40:9f:d5:d2:cc:3c:3f:9c:a3:e7:32:3e:d6:7f:71:75:
8c:f9:c3:0f:a0:15:8d:7d:72:0c:5f:37:3b:6a:18:73:06:d3:
8f:d3:a6:a7:e5:b4:08:e1:3f:fd:3a:43:43:c0:a6:fc:96:01:
d8:00:91:38:fd:20:e6:e2:ca:31:96:93:59:cf:80:1f:b0:6c:
75:7a:d2:32:02:b5:aa:93:81:c0:87:07:42:14:4c:f2:e7:05:
b4:d0:d3:9c:a5:58:5d:87:d3:0d:c4:de:55:e3:05:bb:6e:b7:
ce:a9:e2:52:f5:4c:c3:f8:29:f5:18:13:ba:5d:20:b2:57:08:
fb:f2:1c:b1:68:f3:9f:ee:b7:67:a3:e0:0e:f0:b0:ad:16:dc:
4b:49:48:77:f1:c7:55:0a:45:98:c3:cc:5e:14:80:76:19:b1:
d0:b0:89:0f:cc:c5:83:2c:96:03:aa:0d:d1:eb:a7:70:b3:b9:
a2:ff:40:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org