Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
File: AS210260.roa (raw, json)
Hash identifier: ITUmPGuapOlPBpwvMfIOEtv3Qv0lwi/YI4D95eKyWfY=
Subject key identifier: 71:E9:41:45:D1:C9:DE:1D:7B:96:3D:53:F8:78:E2:82:AD:7E:3E:B1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5D5ABB90778302E7E7F0CF3BE91EFBD6ABAA3F19
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
Signing time: Tue 05 Dec 2023 02:44:16 +0000
ROA not before: Tue 05 Dec 2023 02:39:16 +0000
ROA not after: Tue 03 Dec 2024 02:44:16 +0000
asID: 210260
IP address blocks: 2a06:1286::/32 maxlen: 48
2a06:a005:20::/44 maxlen: 48
2a06:a005:30::/44 maxlen: 48
2a06:a005:40::/44 maxlen: 48
2a06:a005:50::/44 maxlen: 48
2a06:a005:1650::/44 maxlen: 48
2a06:a005:1a20::/44 maxlen: 48
2a06:a005:1a30::/44 maxlen: 48
2a06:a005:1a40::/44 maxlen: 48
2a06:a005:1a50::/44 maxlen: 48
2a06:a005:1a60::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:5a:bb:90:77:83:02:e7:e7:f0:cf:3b:e9:1e:fb:d6:ab:aa:3f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:16 2023 GMT
Not After : Dec 3 02:44:16 2024 GMT
Subject: CN=71E94145D1C9DE1D7B963D53F878E282AD7E3EB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fd:6a:54:f6:85:f3:55:c9:8e:be:14:8e:18:
58:af:44:a1:5f:2d:a2:e2:6c:89:2d:07:a6:bd:35:
b7:f5:69:ae:b4:c1:dc:ec:a3:9b:66:48:2d:2a:d4:
f5:05:98:45:c2:ff:1f:db:3a:56:bc:f1:d6:3a:30:
b6:a8:77:25:10:7c:d8:15:21:a4:36:dd:2f:d5:b2:
f6:26:a6:39:dc:78:30:a4:e0:09:f6:d0:6c:0f:4b:
17:68:3e:a0:6e:7e:c0:dd:18:9f:a7:c2:2c:34:80:
15:d4:1f:eb:2b:76:fd:8c:82:e9:73:df:e1:db:28:
2a:87:67:3b:2f:d3:b9:26:19:48:1a:2c:05:ed:6a:
cc:b2:ae:36:49:db:c3:ba:c2:17:43:ec:74:8f:d3:
1d:a2:d3:09:59:a2:c4:71:51:60:10:55:8c:e7:72:
60:33:3b:83:92:21:34:2f:fa:71:3a:a0:96:ed:9a:
af:8a:38:2b:2a:bd:c7:e5:64:b3:94:0f:bb:6e:86:
34:43:eb:fc:f6:7a:f2:46:85:42:84:d4:95:fa:c7:
05:b2:cf:e1:2c:3e:4c:91:57:f3:39:f9:42:b7:6c:
d4:86:7d:9d:ee:a3:c8:91:5c:a2:f2:b6:9b:5d:11:
55:91:78:92:4c:41:da:98:11:e5:ca:a9:6a:77:df:
d7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E9:41:45:D1:C9:DE:1D:7B:96:3D:53:F8:78:E2:82:AD:7E:3E:B1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
2a06:a005:20::-2a06:a005:5f:ffff:ffff:ffff:ffff:ffff
2a06:a005:1650::/44
2a06:a005:1a20::-2a06:a005:1a6f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0a:18:38:1d:f6:c7:3a:fd:c9:2c:9e:af:d7:c3:59:4e:7f:fe:
1a:c0:30:38:0a:e5:0f:58:9c:7c:ff:d9:f3:2c:05:20:d4:d6:
82:a4:d2:a9:ab:2f:c9:66:0f:11:fa:1b:63:45:a5:36:df:13:
af:fb:3a:70:bc:95:a9:69:20:be:0f:ba:b5:cb:7b:25:2d:2b:
7f:78:6b:7f:ef:01:2c:71:cc:28:5c:94:2f:a4:ad:65:a6:ed:
a2:76:59:05:36:0d:94:b2:6c:4d:c6:97:2e:01:f7:3c:da:05:
65:7c:64:75:54:fb:54:f9:36:09:06:49:ac:6d:14:cd:29:dd:
9b:83:9a:42:a2:6b:73:32:84:5f:1f:45:84:a5:86:bd:53:04:
cf:c0:45:c0:6b:09:cd:07:a9:cd:2e:8a:e9:c5:23:ec:aa:d0:
b9:18:89:00:14:90:03:f4:fa:d3:6d:ad:ad:25:d0:a3:24:60:
16:e4:9a:16:6d:ae:e1:4d:bc:11:87:c8:23:18:d4:49:85:b5:
cd:5e:38:0d:df:a4:f8:e0:cd:4c:d2:0f:c6:04:c0:2c:86:94:
b8:b8:b5:25:fe:5e:89:86:2a:f3:ed:ea:ec:56:30:92:ec:cf:
62:02:0c:af:4d:02:a9:1a:dc:6d:64:e3:3b:2a:b4:96:88:c2:
5f:ef:f5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org