Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210461.roa
File: AS210461.roa (raw, json)
Hash identifier: jla/ktU8QljqZwmNNzwNOEborelhsdt6cn5jMUr1eU4=
Subject key identifier: A2:35:33:46:C1:31:00:4E:74:AE:B1:6D:34:C0:E5:0E:81:17:58:CB
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 78E11D48946621BD2F2FE65EB8461AE302213D1D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210461.roa
Signing time: Tue 05 Nov 2024 03:40:04 +0000
ROA not before: Tue 05 Nov 2024 03:35:04 +0000
ROA not after: Tue 04 Nov 2025 03:40:04 +0000
asID: 210461
IP address blocks: 2a06:a005:16::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:e1:1d:48:94:66:21:bd:2f:2f:e6:5e:b8:46:1a:e3:02:21:3d:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:04 2024 GMT
Not After : Nov 4 03:40:04 2025 GMT
Subject: CN=A2353346C131004E74AEB16D34C0E50E811758CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:89:6d:88:1f:9c:9b:3b:46:a1:8e:c1:51:3a:
83:b1:b1:41:57:71:7a:fd:78:20:ed:f8:f2:f3:5d:
7f:3b:21:a5:7a:e1:c0:83:47:b7:de:8b:ee:9c:f1:
4b:bc:0e:fd:ed:51:5a:19:bc:4f:82:31:7f:b9:8e:
ce:4d:35:b5:27:e3:a9:8a:cb:6c:7e:8a:ba:a9:45:
ff:a6:be:07:b6:45:0e:10:a3:23:97:8c:e4:06:93:
7b:f5:82:8f:b5:75:d2:29:a6:60:85:e3:b0:91:7f:
f6:0b:52:52:b1:98:0a:ac:68:47:36:7f:53:c0:b5:
60:31:9a:67:69:aa:8a:07:e4:b5:f8:8d:46:48:5a:
90:f2:a4:93:0f:20:8a:8b:ad:de:00:ad:87:26:f5:
fd:ab:a5:18:40:b7:5b:ca:90:34:cf:cd:eb:c3:21:
a8:97:21:c1:9d:29:83:b1:80:00:ed:ca:b5:7f:be:
5a:30:95:f5:90:a3:d5:30:41:a7:24:39:48:8b:50:
02:5c:da:61:10:59:e6:f6:3f:a9:e9:be:90:f9:42:
64:a0:f0:98:6a:57:22:ca:a0:a0:4e:f9:13:a1:36:
fe:2c:41:80:4f:3d:b2:9e:cd:a8:35:19:b4:85:fb:
1f:4d:50:0d:2c:a8:02:4f:11:73:74:6a:c5:16:b5:
cf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:35:33:46:C1:31:00:4E:74:AE:B1:6D:34:C0:E5:0E:81:17:58:CB
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210461.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:16::/48
Signature Algorithm: sha256WithRSAEncryption
bd:9c:26:23:63:84:4b:3e:94:85:bc:39:ef:26:cf:54:c0:0c:
22:50:4a:5b:d2:ae:51:5e:77:49:9c:60:da:3b:fb:24:91:c9:
f7:eb:e5:ae:f1:62:ff:e9:ea:44:eb:7f:a0:47:dc:be:f9:f5:
c7:a9:9e:b1:15:01:5f:7b:13:26:5b:0e:6f:df:6e:2c:e9:45:
00:97:cc:a8:9b:1a:f9:d0:1d:10:dd:99:8b:3e:b5:32:db:a4:
46:16:5f:6f:c1:2b:08:c6:2c:e2:9e:6b:92:ce:95:86:7d:4a:
8d:50:93:7c:4a:73:45:fc:fe:52:f4:c1:b2:96:2c:a2:a2:8f:
fe:62:59:8f:57:63:5f:34:2d:56:2a:53:83:7d:8a:bd:da:a3:
0b:47:f1:4a:e4:94:5f:34:de:bf:59:70:eb:13:16:83:32:d8:
31:97:c2:ee:21:cf:fd:25:83:02:02:ef:36:ad:35:2c:67:04:
fa:53:c2:98:6f:b9:3c:2c:b8:d1:b9:d4:32:fd:1d:4f:1a:f8:
5c:e3:91:46:f3:c8:ec:0e:cd:09:1a:4c:cd:5b:68:a6:f8:8c:
22:47:44:9a:6a:48:84:18:36:f3:ef:14:32:15:90:85:68:14:
ab:5b:01:a6:ca:b1:2d:9f:ab:04:fd:cf:31:8a:1e:ca:46:51:
3c:ff:b2:9b
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUeOEdSJRmIb0vL+ZeuEYa4wIhPR0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDRaFw0yNTExMDQwMzQwMDRaMDMxMTAvBgNV
BAMTKEEyMzUzMzQ2QzEzMTAwNEU3NEFFQjE2RDM0QzBFNTBFODExNzU4Q0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoiW2IH5ybO0ahjsFROoOxsUFX
cXr9eCDt+PLzXX87IaV64cCDR7fei+6c8Uu8Dv3tUVoZvE+CMX+5js5NNbUn46mK
y2x+irqpRf+mvge2RQ4QoyOXjOQGk3v1go+1ddIppmCF47CRf/YLUlKxmAqsaEc2
f1PAtWAxmmdpqooH5LX4jUZIWpDypJMPIIqLrd4ArYcm9f2rpRhAt1vKkDTPzevD
IaiXIcGdKYOxgADtyrV/vlowlfWQo9UwQackOUiLUAJc2mEQWeb2P6npvpD5QmSg
8JhqVyLKoKBO+ROhNv4sQYBPPbKezag1GbSF+x9NUA0sqAJPEXN0asUWtc8nAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUojUzRsExAE50rrFtNMDlDoEXWMswHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEwNDYxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQAWMA0GCSqGSIb3DQEBCwUAA4IBAQC9nCYj
Y4RLPpSFvDnvJs9UwAwiUEpb0q5RXndJnGDaO/skkcn36+Wu8WL/6epE63+gR9y+
+fXHqZ6xFQFfexMmWw5v324s6UUAl8yomxr50B0Q3ZmLPrUy26RGFl9vwSsIxizi
nmuSzpWGfUqNUJN8SnNF/P5S9MGyliyioo/+YlmPV2NfNC1WKlODfYq92qMLR/FK
5JRfNN6/WXDrExaDMtgxl8LuIc/9JYMCAu82rTUsZwT6U8KYb7k8LLjRudQy/R1P
Gvhc45FG88jsDs0JGkzNW2im+IwiR0SaakiEGDbz7xQyFZCFaBSrWwGmyrEtn6sE
/c8xih7KRlE8/7Kb
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org