Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
File: AS210305.roa (raw, json)
Hash identifier: zJwtiZEXXuKa8F0Yi30s7fd86k9z3lae05SKRlPxxVc=
Subject key identifier: 8D:2E:13:4D:25:7B:B2:AB:DF:16:CB:F4:C9:FF:58:C5:6E:EF:B1:2F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 14740427BEBB661D34B8F0E28AC6A61D2D2692D5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 210305
IP address blocks: 2a06:a005:5b5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:74:04:27:be:bb:66:1d:34:b8:f0:e2:8a:c6:a6:1d:2d:26:92:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=8D2E134D257BB2ABDF16CBF4C9FF58C56EEFB12F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ca:db:f1:4f:0c:74:84:f8:be:d3:8d:57:c3:
1b:a2:ed:43:a9:83:fa:e8:17:c9:99:f6:bc:23:1d:
eb:c2:0b:65:42:df:e7:2f:1b:ce:63:0a:f5:a4:56:
0f:9c:ed:48:2f:98:80:f6:ca:95:16:40:4e:71:fc:
c8:43:25:3b:da:5b:d9:f5:04:1a:95:e3:a8:cf:b6:
20:74:9c:84:cd:55:30:3b:fe:04:f2:86:00:14:7f:
88:84:43:10:9c:8d:aa:e6:86:01:d9:de:4f:30:f8:
2d:a0:75:3a:ec:1f:da:3d:36:86:58:1b:01:e7:de:
a0:46:eb:e0:53:a6:99:ab:54:9f:04:0d:5c:9a:d1:
57:32:22:2c:b2:8d:31:47:d8:9a:f0:9f:8a:21:1a:
f0:a2:7b:c5:ce:38:ed:bb:01:00:33:a6:d1:f6:d9:
68:27:e0:22:48:1e:b2:fb:7f:c3:ca:79:be:7f:df:
bf:1a:6f:a7:b9:35:67:c0:0c:62:c4:5e:c1:50:87:
6b:98:71:83:53:da:db:b6:93:cb:19:76:a2:33:a5:
b8:4e:c1:f1:2a:dd:4e:f7:74:42:d5:28:78:e6:ef:
72:c9:d8:a5:91:59:41:31:9c:78:31:3c:15:79:44:
71:21:8c:83:21:dc:67:36:10:d3:fa:75:63:77:15:
c9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2E:13:4D:25:7B:B2:AB:DF:16:CB:F4:C9:FF:58:C5:6E:EF:B1:2F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5b5::/48
Signature Algorithm: sha256WithRSAEncryption
30:87:5b:08:36:01:08:4f:b0:6e:73:8d:91:cd:9c:ad:d8:4b:
d0:a4:16:26:5d:fd:0b:4e:c8:be:24:3e:24:eb:44:96:ff:3f:
c5:73:77:2e:d9:2b:7b:d1:37:84:39:b3:7f:33:be:a2:46:95:
77:e1:c1:97:b5:c8:a8:eb:21:89:9b:dd:ed:ce:d9:0d:6d:e3:
6d:b7:bc:1e:13:81:08:c6:16:65:de:e6:f1:c5:bc:de:1c:c4:
9c:00:af:39:56:7b:d7:95:e8:33:7b:51:8f:62:a2:97:5b:30:
26:5f:f1:a8:26:60:c9:ce:9b:1d:f8:3c:26:c3:07:3c:56:42:
78:d5:c5:e6:87:6e:16:59:67:83:25:23:4b:bf:78:45:0d:a6:
13:0c:b3:a8:50:58:ec:20:f3:98:73:f8:cc:2c:eb:38:95:00:
51:93:6f:c4:63:9a:5a:56:a4:1f:7a:ae:b8:96:b6:aa:32:64:
59:47:c5:d1:25:2d:7a:15:a6:13:2e:14:71:90:1d:37:7e:33:
d3:08:1f:42:85:c9:d7:dd:ff:1c:3e:d9:45:a0:7c:25:0f:5f:
f0:4f:2c:94:05:a0:22:f0:d1:2e:46:95:a9:28:08:17:f3:46:
de:2d:6c:9a:52:63:ea:90:4e:0c:c7:eb:29:67:ac:64:30:1c:
dc:7a:af:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org