Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209652.roa
File: AS209652.roa (raw, json)
Hash identifier: 2+SaR450Kv5DTiHYcbmKWRc+/MhOoRcNri/E9xbGUDQ=
Subject key identifier: 4C:87:47:9F:7C:5C:39:B6:4F:78:57:89:AC:8E:C2:02:08:4A:DE:C8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2572446F41245D51BCF6B38E275718F3418FC444
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209652.roa
Signing time: Tue 12 Dec 2023 14:44:21 +0000
ROA not before: Tue 12 Dec 2023 14:39:21 +0000
ROA not after: Tue 10 Dec 2024 14:44:21 +0000
asID: 209652
IP address blocks: 2a06:a005:b61::/48 maxlen: 48
2a06:a005:2ad0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:72:44:6f:41:24:5d:51:bc:f6:b3:8e:27:57:18:f3:41:8f:c4:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 12 14:39:21 2023 GMT
Not After : Dec 10 14:44:21 2024 GMT
Subject: CN=4C87479F7C5C39B64F785789AC8EC202084ADEC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:aa:9e:d1:9c:8c:f6:a6:9a:cb:b6:f9:c1:af:
43:24:7e:83:80:48:a2:8e:52:0d:86:ac:6b:f8:95:
e0:93:e7:e2:48:e1:d7:cf:b4:b3:89:b7:2b:b8:bb:
64:94:31:03:99:e2:fc:73:b9:54:1c:fd:cb:aa:21:
21:be:b3:81:90:36:54:0e:7b:d7:59:e8:be:d2:d9:
67:a6:90:c1:c9:48:0f:96:96:fc:12:b5:c6:c3:45:
3f:92:27:c8:74:1e:fd:57:e3:db:f4:14:80:6a:98:
9e:9c:14:93:ac:7c:c5:3d:d2:1b:7d:24:e6:34:32:
92:d0:64:b2:f9:dc:d7:74:4a:44:6f:77:cd:db:5a:
ae:c7:93:45:23:93:1b:7d:76:03:8d:e4:11:08:d0:
59:e0:d9:08:e0:17:ff:cc:1b:72:8d:9a:37:53:67:
0c:0f:ac:29:fb:2b:31:cf:98:c4:c7:25:49:bd:6f:
b8:a5:2b:5a:d9:a9:22:2b:87:d6:9e:fb:14:c0:2d:
29:92:a8:28:1a:1a:c8:1c:48:e7:11:01:45:14:83:
6a:c0:40:49:fe:7f:e0:0d:a0:bb:32:82:9e:82:15:
c9:96:82:82:5b:fe:bc:29:22:ef:73:b8:a9:3d:e6:
97:03:01:51:3a:ed:03:72:67:56:ed:bd:ef:be:6e:
4a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:87:47:9F:7C:5C:39:B6:4F:78:57:89:AC:8E:C2:02:08:4A:DE:C8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209652.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:b61::/48
2a06:a005:2ad0::/44
Signature Algorithm: sha256WithRSAEncryption
1c:de:ce:47:9c:b9:d0:9f:87:5c:e3:ae:e1:03:e3:b5:26:30:
ab:9f:00:0b:b9:6f:be:95:d3:97:4f:84:36:75:e4:6e:fb:ba:
75:f0:49:64:23:91:7f:dc:a8:f2:7a:ec:11:f9:c8:8c:b5:bd:
ab:54:0f:63:55:f1:d0:9c:47:6c:20:76:5f:10:53:6d:d5:27:
c6:45:81:84:c4:15:30:8c:d0:16:7a:ed:ec:7e:e7:5b:57:23:
6d:37:9b:a4:48:43:95:6a:2a:0c:b2:96:94:45:d0:7c:bd:7c:
c5:a1:c7:12:74:4a:76:a6:84:55:9d:5c:f7:de:af:a2:9c:be:
b6:47:e1:73:a7:02:fc:84:c7:f7:c7:49:83:82:e2:98:d4:b5:
2e:12:f1:60:a2:8c:9a:80:6a:a2:b2:a7:0c:6f:b7:9f:eb:72:
4e:f8:58:e1:3e:65:1b:68:a2:d8:f7:6b:d7:41:f7:04:c4:79:
5b:1a:fb:7b:c5:8f:80:7a:7b:03:0f:1e:87:a0:08:32:ad:c5:
dc:59:55:32:7a:5b:b7:6e:e9:6b:36:66:f3:8a:df:06:7a:d7:
4c:0e:e3:83:6a:b3:4d:b0:6a:69:04:46:b1:33:0e:9a:e1:44:
b6:62:c3:0c:72:0f:95:25:4d:19:05:42:62:73:a0:41:d6:9b:
1d:c2:ec:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org