Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
File: AS209310.roa (raw, json)
Hash identifier: FZd8RonbdmMRr1g+J7isONXvN6+og45uohjUGRvwJXU=
Subject key identifier: 92:28:9B:71:CB:A9:A0:84:DE:C1:63:02:4E:98:BE:E2:96:86:93:6A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 24E0C2768CD3D269D3442FCFA18EC67E47D984F5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 209310
IP address blocks: 2a06:a005:438::/48 maxlen: 48
2a06:a005:439::/48 maxlen: 48
2a06:a005:43a::/48 maxlen: 48
2a06:a005:43b::/48 maxlen: 48
2a06:a005:451::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:e0:c2:76:8c:d3:d2:69:d3:44:2f:cf:a1:8e:c6:7e:47:d9:84:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=92289B71CBA9A084DEC163024E98BEE29686936A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:27:57:f2:ad:ac:ed:48:ac:91:b4:13:ba:c4:
0d:40:74:3f:05:2b:ad:7c:8f:2a:0a:10:28:a8:5d:
c1:1d:4b:a9:29:65:2d:19:bb:a0:ad:5f:76:4e:f9:
cb:60:79:a4:ee:60:08:0e:69:36:58:1d:a1:15:19:
87:8a:4c:d9:79:bb:69:8a:95:be:9b:62:9b:6a:f1:
1e:d1:a1:47:bf:33:76:36:58:95:e8:8a:9b:b8:bc:
64:90:8b:b8:f4:da:e5:d9:45:a7:55:54:e0:da:ed:
40:39:ea:79:a7:70:12:1b:73:b7:e4:21:1a:d3:25:
92:35:85:1d:4e:01:57:cd:e0:a5:67:1a:aa:66:5b:
59:b3:65:22:83:32:5e:ed:ef:35:0e:7b:bd:e6:9e:
72:5f:7a:d4:0a:45:cd:14:1f:1e:d7:89:a0:3a:cc:
29:60:be:c9:66:f7:27:d0:05:ac:3e:ae:cc:b8:58:
1e:84:98:d4:cd:22:aa:30:48:3b:a6:91:52:2b:c5:
fc:a7:34:52:7e:b6:ca:e8:05:1f:4d:24:d4:c0:19:
de:24:1c:c3:cb:98:15:df:c6:06:07:cc:07:3e:ec:
59:64:d0:32:ba:0e:f5:ae:d9:85:0c:76:b2:ec:e9:
22:0d:b1:00:b0:db:54:96:b2:a6:33:14:a9:b8:b8:
13:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:28:9B:71:CB:A9:A0:84:DE:C1:63:02:4E:98:BE:E2:96:86:93:6A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:438::/46
2a06:a005:451::/48
Signature Algorithm: sha256WithRSAEncryption
1b:cb:f2:94:17:12:eb:92:04:49:ae:78:dd:d9:e0:3a:ec:1c:
57:ae:dd:f3:d0:bf:b4:09:da:0d:17:f8:44:6f:b5:57:a7:1e:
48:44:57:fb:36:b9:2d:19:f1:ff:88:ca:55:46:15:d3:c3:51:
a9:39:ed:6c:45:5b:b3:ad:3b:31:d0:dc:1e:5f:4d:d0:a5:f4:
d1:ba:fd:14:b3:2f:7d:fa:63:3d:0f:1e:ba:d7:84:07:48:c1:
8d:a5:cf:ab:5b:b7:6d:99:1e:5e:7e:af:8f:96:4e:60:65:0c:
84:d8:91:ef:3c:b2:18:3f:72:ce:b8:cc:67:34:81:c4:6c:2d:
69:63:20:e0:e9:42:2a:95:eb:21:8b:72:a1:00:c7:98:6b:e2:
9d:02:be:23:42:81:94:2f:4e:4d:bd:3e:5c:6f:f2:bc:45:6c:
0b:32:65:98:08:9e:7f:9e:60:12:bf:e9:b8:ba:ef:a3:29:e1:
2c:d3:3e:5d:6a:bf:6f:6d:78:35:61:7c:95:ab:0d:2d:5f:05:
98:ef:4b:b7:95:2e:ae:c4:a6:0d:b6:e7:39:f3:02:33:f5:59:
b7:84:af:c7:ea:42:d8:d9:3f:38:76:4c:d9:3f:c0:86:75:08:
12:d7:44:5e:3b:26:82:e2:68:5f:f9:41:33:64:17:db:c5:8b:
75:6d:5a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org