Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209419.roa
File: AS209419.roa (raw, json)
Hash identifier: 02IBmC5/EWkZw+zL9iXXqlA6kGWTBDEnvJvHPfpvLKY=
Subject key identifier: 00:1E:48:A4:79:1F:9F:2A:BD:A4:1B:FA:DF:F5:7F:FF:B9:77:99:31
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2A8D84C2A87E886D9E51FE0F117CE6288C2A2F35
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209419.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 209419
IP address blocks: 2a06:a005:43f::/48 maxlen: 48
2a06:a005:4d0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:8d:84:c2:a8:7e:88:6d:9e:51:fe:0f:11:7c:e6:28:8c:2a:2f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=001E48A4791F9F2ABDA41BFADFF57FFFB9779931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a3:e2:95:f5:29:1a:11:be:c0:d2:8b:a2:0b:
85:4f:7a:d5:56:cc:da:17:05:88:9c:0c:6e:43:2f:
2e:28:4d:21:80:40:7c:6d:ce:d6:fe:fc:d8:7b:d6:
b0:25:dc:05:bf:aa:ea:19:17:e4:48:00:8f:98:91:
32:f4:05:43:d6:00:07:51:c7:60:ee:22:05:75:e6:
d1:68:ed:78:31:bd:cc:05:21:19:86:d0:48:57:89:
a2:a8:00:4a:a5:56:1f:9c:9a:18:5d:c0:cf:20:b0:
3b:79:01:89:52:27:91:33:7f:7e:ea:2f:64:59:7d:
1b:88:c2:0f:18:08:72:a3:17:f2:96:60:4d:0c:5d:
c2:f5:ab:36:95:92:6f:ba:b9:ea:3c:23:e1:ad:89:
4d:bd:14:a4:22:a3:cd:91:70:a7:b4:46:ed:c6:48:
2b:f3:cc:1e:f5:c3:92:03:94:38:ad:68:17:7b:0d:
f7:8c:fd:95:6c:f9:75:5a:52:31:0a:7c:e3:02:51:
6e:96:4d:3d:74:a3:6c:32:53:aa:1f:3a:48:32:34:
20:1f:24:a5:82:1c:2a:b8:40:b7:b5:00:75:f7:5e:
53:7d:61:17:8b:ab:bd:2c:04:7f:49:c3:60:50:96:
90:1d:8a:d5:66:9f:a4:23:94:cb:75:19:54:e5:75:
20:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1E:48:A4:79:1F:9F:2A:BD:A4:1B:FA:DF:F5:7F:FF:B9:77:99:31
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209419.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:43f::/48
2a06:a005:4d0::/48
Signature Algorithm: sha256WithRSAEncryption
56:e8:ea:5f:77:ce:33:3d:e3:07:86:82:79:e3:17:ce:29:5c:
dd:c7:b7:80:ad:7c:cf:05:3d:cf:14:e2:c3:cc:2c:8b:44:cf:
be:eb:88:8a:7d:4c:96:dd:fe:d5:a3:2b:6d:8b:c0:5c:77:f0:
ec:bf:ff:c4:a3:23:85:7d:2a:d3:e7:3e:72:dc:61:97:a5:6f:
f7:93:e2:f2:27:7a:8b:ab:e9:47:c8:fe:fb:46:c5:4d:a6:69:
80:a5:ff:71:13:47:85:3e:b8:66:cf:20:d1:45:7a:21:15:07:
50:15:0b:f1:80:fd:73:c8:50:8a:4a:44:e0:eb:64:8f:e2:c0:
e5:95:12:ec:99:7d:f0:49:6a:84:01:fe:08:99:4d:1f:2e:b9:
8d:bc:53:b6:d2:31:ab:62:fa:7d:0c:1a:68:cf:f5:5b:4e:ea:
f8:f3:f0:e3:11:75:64:96:51:61:09:ea:2e:0c:02:01:11:ba:
a6:de:0d:c6:75:6f:77:e7:42:0b:52:56:59:18:c6:1a:1b:0a:
db:78:28:35:28:c4:88:21:62:a8:8d:45:9a:b6:8d:e9:55:e8:
1f:09:83:6a:cf:ca:a8:f4:83:d1:4d:3b:2a:bb:15:66:aa:fd:
4c:9c:4a:42:e9:5b:8e:a1:c4:7b:da:a6:13:87:42:30:82:bd:
7b:8d:f3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org