Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
File: AS208985.roa (raw, json)
Hash identifier: 4RNGm+a9SgZabKsy+/VAcHg5ejatPPGgUcxoC7fKndQ=
Subject key identifier: 89:9F:F4:8F:FC:E6:14:F1:28:22:9F:41:9F:B8:2E:2C:78:03:58:BD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6F8153595DDD3C445BE5E637DAF44A455576CF1C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 208985
IP address blocks: 2a06:a005:710::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:81:53:59:5d:dd:3c:44:5b:e5:e6:37:da:f4:4a:45:55:76:cf:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=899FF48FFCE614F128229F419FB82E2C780358BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fc:2f:19:9a:a7:41:2f:6e:32:eb:1e:a0:cb:
53:23:3c:b4:78:c7:86:fb:6e:d5:d7:9d:98:bf:6a:
0f:51:df:90:fa:9b:aa:9a:75:49:03:d2:6f:a2:6b:
f1:62:66:3d:8a:44:19:4c:4e:03:e3:e2:a0:a9:c2:
08:0b:94:0b:09:e9:e0:b7:52:bf:40:65:d9:84:ec:
01:f3:31:e9:6f:05:60:ef:b7:1e:00:b3:3c:2f:63:
99:9e:76:83:58:bf:f7:43:87:b4:a9:6a:50:fe:54:
e0:37:21:87:5d:40:51:b1:5b:1a:06:26:0e:c9:66:
08:77:70:ef:f7:55:d7:c4:c4:4e:b9:2b:77:76:33:
12:79:4a:ee:0a:cd:10:32:c8:62:11:d0:7c:8a:97:
a6:a0:00:c4:29:84:ad:52:79:40:22:76:b6:8f:6b:
fc:30:64:3b:b3:0d:94:9b:10:c7:00:cd:ea:d5:00:
df:c2:f1:27:a2:d6:c5:ed:05:b4:17:5c:70:45:f8:
15:0a:48:a7:a3:c9:ec:39:71:67:25:1a:68:5d:67:
d0:ed:64:cf:f6:b8:cd:fc:78:ac:24:72:54:ec:e8:
1c:95:7c:9f:02:8b:d1:de:95:92:e8:24:59:7f:3e:
f9:5e:92:3c:51:68:11:00:a1:59:93:3c:83:69:2a:
90:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9F:F4:8F:FC:E6:14:F1:28:22:9F:41:9F:B8:2E:2C:78:03:58:BD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:710::/44
Signature Algorithm: sha256WithRSAEncryption
0b:db:49:f1:f6:e0:3c:31:92:bc:6d:85:21:78:6d:e9:3b:57:
5c:d7:62:b3:e0:30:b8:6a:e6:d1:61:b4:00:88:dd:e5:4a:11:
cd:0f:da:f3:64:22:51:06:70:41:2e:52:07:c9:c4:b5:7c:cd:
a6:b5:53:d2:10:3c:be:60:1d:c0:8e:98:35:61:80:7a:22:9c:
8a:b9:a0:81:45:11:db:03:e3:fb:62:ce:81:ea:e2:7a:c9:e2:
9d:85:c0:51:cf:13:ca:60:ea:62:a6:b9:95:91:7f:2a:5e:e0:
bc:a6:b3:22:b1:04:20:b3:94:90:b7:f7:a1:e9:3f:94:82:39:
0e:1d:70:7b:13:98:60:33:c7:38:a4:93:c0:af:b4:1d:5d:c8:
47:d3:29:e6:cd:0a:59:8c:74:47:75:d5:79:5e:00:6a:2e:1f:
11:9f:46:73:27:d4:b8:d2:87:0f:6e:fd:c0:1e:2e:09:1b:47:
6b:a1:7f:e4:72:4e:a9:29:5a:ff:f5:a5:d3:eb:49:8f:59:89:
87:c7:a6:06:a2:8c:d1:f3:56:8d:bd:2c:3a:b3:2f:7c:88:d4:
35:42:c4:b4:b5:8a:0a:ca:0d:da:7d:1b:5a:77:41:91:da:57:
b6:9f:36:ce:9d:db:28:5c:d6:61:7d:4a:a9:5f:a0:d3:44:03:
22:81:fa:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org