Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
File: AS210260.roa (raw, json)
Hash identifier: MyILrksnelFu7oSvGyNDmKaGPJjYsvtEHvTA8Io+yiM=
Subject key identifier: 62:31:F9:57:F2:87:E6:D9:FE:D4:01:2D:73:D6:D2:0B:98:F8:41:7D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6BDF619A6E3BD2A615BA0BC6FF3CA710EC7E491C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 210260
IP address blocks: 2a06:1286::/32 maxlen: 48
2a06:a005:20::/44 maxlen: 48
2a06:a005:30::/44 maxlen: 48
2a06:a005:40::/44 maxlen: 48
2a06:a005:50::/44 maxlen: 48
2a06:a005:1650::/44 maxlen: 48
2a06:a005:1a20::/44 maxlen: 48
2a06:a005:1a30::/44 maxlen: 48
2a06:a005:1a40::/44 maxlen: 48
2a06:a005:1a50::/44 maxlen: 48
2a06:a005:1a60::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:df:61:9a:6e:3b:d2:a6:15:ba:0b:c6:ff:3c:a7:10:ec:7e:49:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=6231F957F287E6D9FED4012D73D6D20B98F8417D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5e:ea:e4:f5:24:2f:8c:0f:a5:1c:bb:58:a7:
df:83:86:c5:80:b5:97:91:03:35:ee:aa:0e:1c:b1:
25:bf:73:d7:b0:d8:06:c3:12:9b:df:5a:b4:ac:e5:
23:ed:64:3d:73:23:a9:f1:1f:cc:76:ef:1e:6a:9f:
07:2c:ad:07:86:33:37:67:45:bd:f4:6d:e6:be:15:
96:18:80:16:63:3e:cd:d1:0c:fc:93:22:11:2e:bf:
f9:f6:d3:3d:a1:f5:f3:38:55:1c:b7:38:70:93:39:
6c:4d:f3:b8:65:06:b6:20:00:d5:77:ac:4e:5f:c4:
83:6e:24:ac:fe:91:f1:31:64:87:0b:cf:44:58:49:
96:a6:c4:3c:80:7c:2d:9e:15:72:eb:0d:bf:7e:72:
c8:8e:30:79:ae:5e:62:a6:ef:91:99:97:ca:36:51:
9f:e3:f4:f3:50:39:1e:50:ab:07:5c:b5:06:cb:90:
df:26:1e:63:64:3b:dc:96:56:bf:73:6c:11:7f:55:
b2:f2:d0:70:1d:d5:e7:b5:0a:23:a5:03:46:4f:3e:
e2:0f:45:b4:3f:90:b8:c4:0e:a1:a4:44:88:44:7c:
1b:90:ac:84:9d:63:d6:e9:1b:4c:a3:69:d4:0e:6a:
5d:61:9a:81:25:f5:69:40:ad:3c:a1:48:2b:b5:ce:
ac:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:31:F9:57:F2:87:E6:D9:FE:D4:01:2D:73:D6:D2:0B:98:F8:41:7D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
2a06:a005:20::-2a06:a005:5f:ffff:ffff:ffff:ffff:ffff
2a06:a005:1650::/44
2a06:a005:1a20::-2a06:a005:1a6f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8a:bd:de:c7:ec:9d:3f:17:9e:6d:00:13:ec:bd:66:62:82:30:
6e:df:ab:c3:6b:42:d2:5f:8e:3b:f8:61:8d:2d:1d:df:85:13:
27:34:d0:c4:85:a6:d8:4f:18:a0:ec:a9:f8:ad:c2:d5:6c:78:
33:8e:d6:d8:24:e0:88:6b:99:bb:59:8f:da:11:c4:5c:bb:2e:
d0:d1:a0:cd:86:65:25:c0:8d:df:c6:70:cd:78:b3:72:d8:41:
1c:2a:42:85:78:7c:c6:71:e5:83:4e:b9:8a:90:3d:27:60:65:
8a:9e:4e:2e:de:70:f5:0e:75:88:5d:25:96:39:74:93:e6:8a:
43:8d:0c:63:39:bd:ba:a4:17:44:c2:38:25:44:c4:fb:f4:43:
7e:df:50:b6:a0:f1:b0:e9:47:bd:af:82:3b:3f:e2:e1:90:ef:
68:3a:d0:25:46:2b:14:fc:85:4f:18:d3:92:5a:96:66:77:54:
fd:28:c3:6d:52:9a:e8:2d:3f:70:28:0a:42:a6:7e:91:cd:7a:
d6:6a:90:bd:74:c6:b9:00:02:ec:28:a5:ad:5b:ac:bc:17:c5:
78:52:a7:c3:cc:b4:1f:03:45:94:57:9e:28:d2:1b:45:c1:c3:
b8:8f:9b:e7:ac:a9:41:4b:62:28:d5:4a:16:84:74:8d:72:74:
89:6f:11:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org