Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
File: AS210260.roa (raw, json)
Hash identifier: WoUPL+RvAgu1gHNJHfKmZpXFAQo4EEi0iEOmGsA8J+4=
Subject key identifier: 42:8E:51:7A:B2:18:DC:B3:AD:22:85:D0:57:99:0A:4F:AD:A8:EE:8D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1F88E9F22AC4D3C1FC78B0E4E967BD2293192D58
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
Signing time: Fri 13 Dec 2024 02:56:29 +0000
ROA not before: Fri 13 Dec 2024 02:51:29 +0000
ROA not after: Fri 12 Dec 2025 02:56:29 +0000
asID: 210260
IP address blocks: 2a06:1286::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:88:e9:f2:2a:c4:d3:c1:fc:78:b0:e4:e9:67:bd:22:93:19:2d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:29 2024 GMT
Not After : Dec 12 02:56:29 2025 GMT
Subject: CN=428E517AB218DCB3AD2285D057990A4FADA8EE8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:53:28:28:12:d4:1b:fd:7a:0a:6b:3d:b4:f9:
8c:d8:64:11:cb:2b:80:41:67:7e:5c:e8:8d:ed:cf:
ba:9a:bb:f4:ea:8a:d5:20:9a:ff:eb:25:c6:b7:8f:
b1:45:5c:cd:61:4e:39:b4:68:ef:3b:a7:72:c6:83:
78:ec:43:d6:d4:a7:c4:6f:8d:13:5c:85:ca:a4:91:
77:bb:4a:21:bb:dd:f4:a6:20:1f:44:9a:74:cc:e8:
d5:2e:f7:01:67:cf:2e:da:1e:4a:e0:fb:df:03:84:
e3:27:1f:8a:81:f0:1b:97:dd:9c:e7:42:e2:16:29:
5c:14:3d:4f:b6:47:66:b7:96:86:90:99:42:2f:82:
ba:6b:c0:9f:35:a9:14:da:03:07:aa:3d:8c:86:88:
5b:c0:06:d5:92:16:9f:51:54:00:c3:5f:6f:0e:0e:
b5:f6:15:06:54:2b:5e:cc:fb:1c:24:4d:65:b1:74:
54:91:20:e9:cc:99:b1:f1:a7:0f:43:86:db:de:3d:
c9:fa:77:f3:c7:1f:62:55:4d:4d:38:4b:8c:31:7a:
6e:33:62:3a:2d:dd:bd:da:65:91:f9:5d:9f:bc:87:
1f:da:5f:fb:f3:05:1c:46:c9:77:70:c6:dd:ac:a4:
e7:97:9a:c5:e1:20:e2:a2:55:0a:3e:fd:31:a8:7c:
61:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8E:51:7A:B2:18:DC:B3:AD:22:85:D0:57:99:0A:4F:AD:A8:EE:8D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
Signature Algorithm: sha256WithRSAEncryption
55:0d:27:04:9c:d6:bb:e1:38:77:74:93:eb:d9:7d:e2:c3:f0:
16:02:e6:cd:b9:65:42:18:f2:2a:92:3a:81:62:19:d8:09:a9:
2a:65:6a:c9:ea:2d:98:d7:f2:e8:f3:a6:79:d9:b0:ad:69:6f:
fe:93:f1:1e:5b:aa:43:0b:43:b6:30:92:74:94:04:c1:75:ee:
ec:66:3e:30:63:fa:b3:aa:66:ee:69:96:c8:cf:13:81:b5:45:
17:f3:cf:bc:10:00:ef:2b:35:64:78:f6:fd:72:e5:7d:38:37:
f5:73:ec:c9:10:03:0f:87:ae:1e:f7:66:9c:36:e8:eb:77:7f:
2e:41:3d:de:b6:95:ce:a6:53:51:b4:7d:60:a5:6c:81:29:a0:
de:77:01:a8:29:1a:34:db:20:4b:d2:f5:55:7f:c0:fc:30:1a:
75:24:54:33:47:fa:2e:c2:60:8c:6e:88:35:50:48:ee:a6:ae:
de:96:10:35:ee:9c:fe:58:eb:78:b8:63:18:20:ec:bd:db:1a:
49:e7:bd:11:3c:21:28:6c:d1:e3:e1:a7:7a:70:f0:fd:2c:c9:
14:4b:10:34:7a:f4:b2:cd:91:11:fd:c0:c8:0e:30:39:52:bb:
b9:de:5d:0e:bf:30:03:e9:f5:02:b0:d9:48:5f:48:96:db:db:
f0:4a:dd:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:41:24 2025 by rpki-client