Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210370.roa
File: AS210370.roa (raw, json)
Hash identifier: 3HztlQmHHFFb1urz7RwTIDqLJF7ggbx7QUz+4tQhIgs=
Subject key identifier: EC:5B:BC:A9:21:1C:A7:82:8F:00:39:A0:F0:EC:65:5F:33:F1:4A:72
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 522629765B35CA43625D8020C420BB42A05308CE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210370.roa
Signing time: Tue 05 Dec 2023 02:44:20 +0000
ROA not before: Tue 05 Dec 2023 02:39:20 +0000
ROA not after: Tue 03 Dec 2024 02:44:20 +0000
asID: 210370
IP address blocks: 2a06:a005:4::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:26:29:76:5b:35:ca:43:62:5d:80:20:c4:20:bb:42:a0:53:08:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:20 2023 GMT
Not After : Dec 3 02:44:20 2024 GMT
Subject: CN=EC5BBCA9211CA7828F0039A0F0EC655F33F14A72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:88:19:95:b6:7e:f4:5b:46:1f:e3:39:ca:
3c:df:5a:2f:b3:d1:55:5f:16:74:29:65:67:a0:67:
e6:a1:a9:4e:57:79:cf:fd:77:b1:2e:43:53:c8:f0:
38:6a:4e:9d:59:97:f5:eb:dd:6f:24:4c:8a:0f:49:
9e:ef:16:ce:54:a3:00:77:b3:ac:55:05:18:fd:c8:
51:22:84:41:cd:05:df:95:ea:ab:1b:e0:d3:9c:fb:
ed:cc:7a:25:79:a2:aa:e9:7e:d1:36:4b:9f:3a:1a:
27:9c:c3:0a:b2:a9:45:1a:52:47:82:15:04:09:4d:
88:b2:a2:da:a4:47:6b:28:fa:05:35:93:9c:94:54:
aa:8d:1b:52:14:90:79:72:ef:91:0c:8e:c7:45:dd:
86:48:80:bc:cb:90:b2:41:b6:6b:79:8d:ab:23:31:
03:95:09:fa:12:45:f2:ac:5c:1b:0b:9a:ad:a2:d3:
0b:66:41:35:a1:31:dc:12:4b:d0:61:14:36:c2:d0:
58:49:64:13:26:4c:95:c1:e6:8b:e4:1e:69:35:5e:
5e:60:bb:5d:be:79:0a:06:dc:e9:bb:bc:10:c9:54:
f8:44:fd:4c:bc:23:a3:99:26:e1:af:b9:87:1d:ca:
54:97:10:56:5d:bc:40:8e:7b:45:9b:c0:07:65:d6:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5B:BC:A9:21:1C:A7:82:8F:00:39:A0:F0:EC:65:5F:33:F1:4A:72
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210370.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:4::/48
Signature Algorithm: sha256WithRSAEncryption
0b:4f:ee:25:92:8a:e0:02:90:31:46:ef:8a:65:d5:1f:a5:5f:
55:65:3a:35:90:52:8e:f5:a5:f3:2b:26:6c:a6:90:5b:e5:be:
ba:e7:43:72:69:f4:32:85:79:8d:61:a7:9a:3e:64:b8:74:02:
83:3b:a2:f1:bc:77:d7:1b:5d:68:63:6d:6e:26:8b:04:9a:1a:
1b:7b:86:98:94:40:44:00:6f:1a:37:92:72:72:e0:e9:07:a1:
28:e2:a0:51:47:cc:f4:9d:fb:fa:af:97:ac:26:2a:cb:98:51:
2a:a1:4f:67:d9:15:cc:cf:6a:e1:34:8e:19:c5:2a:ee:19:ba:
9a:0b:19:da:a6:99:82:f9:8f:c8:19:e3:97:f8:65:f8:c3:c3:
e0:8e:81:6e:23:38:ee:d2:47:22:fa:a0:73:68:0c:06:f8:eb:
ee:95:50:44:c3:5e:54:39:2d:c6:a7:2e:07:c6:9a:56:25:c0:
83:9d:5c:b1:27:f2:61:7c:46:76:36:31:36:36:1d:21:32:46:
3e:6b:90:58:47:c2:a9:6f:e4:6b:14:51:7f:bb:06:46:0f:93:
e0:d4:20:78:de:13:8f:e9:c8:15:5e:58:57:29:f3:bf:07:01:
67:d6:c6:2b:73:af:ba:a1:ac:f7:d4:e3:85:03:34:4c:89:ef:
37:da:f6:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org