Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209556.roa
File: AS209556.roa (raw, json)
Hash identifier: 77YnfOzDiura6KPvOvI0icGAfUaCug6nlQycVZgDprQ=
Subject key identifier: C1:29:B1:3E:9E:A4:22:3E:47:83:8D:78:04:0F:61:C2:D6:01:60:B6
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6540A5CF2DB0807F042FDB61C0C34788041EA81A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209556.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 209556
IP address blocks: 2a06:a005:a80::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:40:a5:cf:2d:b0:80:7f:04:2f:db:61:c0:c3:47:88:04:1e:a8:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=C129B13E9EA4223E47838D78040F61C2D60160B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:ef:0d:46:77:a9:e5:80:49:46:51:45:df:
d6:5f:0e:68:03:2d:bb:5c:32:1c:71:77:19:d6:65:
28:43:9b:18:ad:b4:c9:0e:0d:82:0d:c4:43:1f:56:
5a:17:b4:29:84:67:a0:b3:d1:3b:e7:d4:84:df:49:
4e:3b:4a:40:04:f4:dc:4a:4c:75:cb:f5:8d:2a:51:
2a:8c:8d:61:6c:4e:0e:6d:f3:f2:1f:e3:ed:59:b1:
a0:49:dd:2f:18:e6:30:66:b0:20:0f:bd:cc:61:94:
71:0b:22:3f:fc:4b:12:f3:a5:c0:d3:02:0e:b1:3c:
52:3f:95:91:ee:c2:e7:e1:ae:1c:e1:3e:20:d1:b2:
96:6b:29:46:73:0c:da:32:f5:d8:c3:ec:43:01:38:
2f:0e:dd:e1:2e:e3:70:f4:e0:29:95:05:a3:03:fd:
c7:b4:83:d7:51:63:70:45:30:f0:60:07:3b:c1:36:
ec:43:7d:7b:5c:a1:f0:cb:1b:66:b5:32:f0:e4:cd:
30:07:a0:62:a5:31:85:ee:7c:7b:5a:01:05:64:2f:
aa:d3:3c:ff:13:a8:82:75:22:87:17:9d:50:d2:5d:
fe:43:3f:a1:7d:0d:e6:a8:93:1d:6d:a2:eb:3b:d4:
de:d9:ef:61:54:3c:b0:e2:82:73:70:de:25:57:ae:
95:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:29:B1:3E:9E:A4:22:3E:47:83:8D:78:04:0F:61:C2:D6:01:60:B6
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209556.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a80::/44
Signature Algorithm: sha256WithRSAEncryption
35:02:f9:d9:13:05:8e:59:17:91:89:6f:87:67:89:03:d0:2c:
86:92:ba:a3:c6:6b:1c:93:ff:b3:12:4a:f6:56:0a:a3:15:d5:
36:a6:4a:9f:e1:ac:89:50:6b:12:58:4c:1a:25:79:70:fb:74:
cb:dc:4b:b2:7d:9d:38:47:a9:47:24:4d:ee:e0:1d:05:82:fe:
e7:10:0a:41:18:50:14:06:89:1e:7e:7c:5f:20:26:cf:f4:4f:
18:2d:4c:3d:86:7f:1a:fe:23:67:1c:fb:6d:75:b8:58:9a:e1:
77:f1:96:d2:ef:6c:65:6b:51:2e:8d:23:72:1f:6d:0c:68:ed:
32:34:ac:a6:58:01:20:c7:0f:4e:d3:e8:11:c8:3c:a2:f8:ad:
84:c2:b8:57:15:42:ad:c8:cd:1a:f1:a7:25:ca:fd:0b:ff:6e:
6c:82:02:b5:76:f2:61:6f:53:60:d0:9d:d5:50:b1:b4:23:66:
6e:ad:1d:4d:b9:9d:2f:f9:d8:78:df:c5:71:37:f9:5e:c0:b8:
30:12:17:5b:cf:c3:cc:80:b1:00:48:8c:eb:08:c1:59:10:27:
7b:88:1a:d4:9d:17:ee:c2:02:e9:48:e8:3e:08:16:c0:95:25:
49:3a:4d:c6:92:c9:f0:36:d4:09:4a:db:ce:ee:c5:76:82:3f:
60:60:85:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org