Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
File: AS210305.roa (raw, json)
Hash identifier: WNJw44mgqUT8X4mqIK5ygyP4tnGsRpO1kOSfECwOFmo=
Subject key identifier: C7:10:C2:6E:95:2B:AD:B1:F0:3C:D5:8C:21:26:AC:F5:3A:1F:62:32
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2AF1FC9AF5CAEDF8014EBF7941EDAE4F50EA9349
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 210305
IP address blocks: 2a06:a005:5b5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:f1:fc:9a:f5:ca:ed:f8:01:4e:bf:79:41:ed:ae:4f:50:ea:93:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=C710C26E952BADB1F03CD58C2126ACF53A1F6232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a6:db:7d:c5:ba:7d:e6:34:aa:9b:0d:f0:ff:
ea:54:24:74:d0:41:c3:b9:bb:b7:5e:76:a9:f4:87:
ed:6f:94:c9:db:3b:c9:3c:17:7e:31:51:77:ba:57:
49:58:db:3d:6f:99:61:99:5b:5e:6e:37:84:a6:4f:
52:40:d4:29:dd:c2:21:70:7b:f8:b6:09:a3:ae:67:
f9:04:35:9d:97:88:6c:39:cc:59:f5:17:d1:39:e3:
db:f5:e7:31:44:b2:82:af:b8:3f:da:7e:75:5b:35:
b4:40:d9:db:03:09:6d:1d:08:78:96:f8:ea:3a:b7:
6e:12:f7:67:0d:e4:74:f2:3d:45:aa:ac:ba:8f:9b:
83:a8:7d:2c:59:5c:e3:32:74:d0:a7:75:f7:f1:6f:
b7:ad:f1:5a:78:c9:37:bc:2a:30:cf:fb:74:62:01:
86:93:ee:a7:8a:66:0b:70:1e:60:41:70:34:e9:01:
fb:53:bb:b5:3b:27:66:c6:b4:15:cf:d7:25:b7:8d:
63:c8:5a:be:98:d4:e6:c6:b1:8a:c8:51:fe:62:f0:
6f:34:78:ec:75:16:a0:ef:fc:ac:90:5e:6c:f7:96:
05:e4:59:c4:d6:77:50:58:04:c4:c2:cd:76:1f:2a:
18:dc:77:30:c8:4c:5d:37:96:95:00:41:ab:90:8c:
6e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:10:C2:6E:95:2B:AD:B1:F0:3C:D5:8C:21:26:AC:F5:3A:1F:62:32
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210305.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5b5::/48
Signature Algorithm: sha256WithRSAEncryption
c7:fd:3f:c9:d9:68:1b:20:6a:d5:24:36:37:4c:0b:97:41:0f:
8d:c1:d0:6d:fa:8e:ec:e4:d8:31:c8:e5:cf:fe:4b:09:6a:4c:
37:c9:ea:22:01:9b:bb:7a:3f:96:0f:f8:0b:46:59:b2:17:ac:
bd:ed:ec:11:2c:56:10:f2:06:70:bd:d1:0c:f2:61:cc:63:64:
87:ba:db:3d:05:5e:da:a7:01:94:62:69:ca:ee:6b:c0:fa:77:
0f:90:c0:2a:39:77:b5:8d:1f:cb:ea:9f:78:2e:1d:4d:3e:ef:
70:93:10:1a:e8:96:9b:0b:b4:5d:3b:91:4c:64:97:28:c3:04:
85:03:6b:e4:a0:e1:1a:95:f4:a5:34:90:6f:a2:ae:7c:73:1d:
37:f5:9f:0e:7c:3e:6d:c4:c2:bb:53:ee:64:f6:32:59:14:3c:
7e:23:93:08:ee:e8:73:37:7b:e9:8e:0a:8e:9d:22:b2:00:5d:
d9:bc:10:02:45:48:6b:6a:2e:53:74:20:e2:26:64:b9:94:8c:
67:80:85:bc:63:da:d7:d0:1c:8c:76:1c:a0:78:f7:cb:02:f4:
cc:7a:43:cf:d1:0d:86:c7:01:a7:ad:67:3f:33:d7:3c:38:c3:
22:17:e8:c4:f0:a9:b9:ca:e3:e0:db:07:e8:a3:a2:78:f2:f0:
9d:3f:21:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:11 2024 by rpki-client on console-ams.rpki-client.org