Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210576.roa
File: AS210576.roa (raw, json)
Hash identifier: PsDK6FaoHxE2cff9juRw1u/+HJH7TXRsNvXD14ejErA=
Subject key identifier: F9:9E:50:0F:45:76:8A:F2:F2:C4:E4:23:1E:FE:2A:19:4B:D8:38:10
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7C187291F830B2CCF6AF70FDAA904C45F8694322
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210576.roa
Signing time: Fri 13 Dec 2024 02:56:30 +0000
ROA not before: Fri 13 Dec 2024 02:51:30 +0000
ROA not after: Fri 12 Dec 2025 02:56:30 +0000
asID: 210576
IP address blocks: 2a06:a005:1110::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:18:72:91:f8:30:b2:cc:f6:af:70:fd:aa:90:4c:45:f8:69:43:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:30 2024 GMT
Not After : Dec 12 02:56:30 2025 GMT
Subject: CN=F99E500F45768AF2F2C4E4231EFE2A194BD83810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e6:8b:c6:ad:75:b2:33:21:20:3c:c7:f4:2e:
73:20:42:b9:74:fb:cc:f8:23:a9:9b:6f:dd:27:b1:
57:39:a8:e5:1d:92:97:5e:df:10:85:25:03:e3:cc:
0c:38:9a:57:93:f7:32:9d:b7:58:e0:f2:d3:dd:3e:
d9:5c:f1:a9:2c:5c:92:89:0f:da:86:2d:6e:8f:17:
c8:59:39:1c:ea:7f:5d:80:87:59:1f:48:4a:7e:16:
21:e6:ef:7f:8b:15:c6:69:50:ce:a9:54:06:58:d2:
43:9c:cf:de:e1:6e:de:a5:01:12:a9:9a:48:18:3e:
51:91:f0:f1:07:31:f1:8d:b7:8b:16:bd:a5:a2:d5:
4a:58:a6:61:b0:12:fc:33:c7:ed:6c:1c:94:12:d2:
6c:29:be:26:12:b8:f6:1a:8a:c1:f0:aa:9a:31:b8:
d9:69:08:50:22:52:53:56:7a:38:ea:8b:ef:6d:bd:
3f:de:44:6e:a5:45:16:39:a1:d2:e5:77:fc:86:aa:
3a:63:c9:58:7f:65:91:56:7e:43:93:23:67:e7:3a:
82:ad:da:2c:65:f0:a4:6d:74:67:ae:4c:cf:2a:7e:
8b:f3:b2:ff:a8:e2:41:70:71:10:01:7c:f0:df:83:
ba:94:18:e4:c1:c8:eb:bc:99:81:40:5f:5e:30:98:
41:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9E:50:0F:45:76:8A:F2:F2:C4:E4:23:1E:FE:2A:19:4B:D8:38:10
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210576.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1110::/44
Signature Algorithm: sha256WithRSAEncryption
5a:58:e5:33:19:42:c9:40:2c:0b:c6:bf:db:16:7a:fc:27:fb:
db:e0:a5:53:5f:dc:17:f9:db:07:22:16:ed:a3:5c:b8:0c:7d:
bc:24:4b:71:28:7a:82:68:be:21:1c:44:e5:a9:62:63:f1:c8:
cb:24:42:a6:3c:3f:37:74:61:ee:21:6f:ac:8f:68:48:23:50:
58:30:c7:19:b2:39:f9:1c:04:44:16:cf:45:70:96:5c:53:01:
e4:98:32:86:f5:eb:aa:7c:61:5a:c0:5c:78:63:76:0c:57:34:
d2:7f:8f:3c:22:d8:f6:c5:33:13:ae:34:87:bc:69:0b:21:2a:
47:af:24:6d:be:af:ec:af:ff:30:4d:2c:5c:6d:8f:0d:4a:d1:
3a:bd:b2:2a:30:39:73:bf:0f:ee:dd:9f:30:fb:19:81:a3:af:
56:6e:c0:3c:a4:7c:4b:08:da:42:97:90:ed:2e:63:6a:72:74:
4f:0b:76:2f:83:4a:42:57:e3:d2:f6:87:97:75:17:f5:46:8b:
c3:8f:1e:1c:d7:5e:dc:59:8e:bb:ce:19:e8:9c:53:05:56:61:
a7:0e:ef:e1:e3:e8:fa:9d:b5:d2:00:e3:e1:dd:e9:b7:23:e4:
25:52:88:6b:92:08:b4:00:57:1f:5a:70:63:2d:87:fc:76:e7:
b9:16:70:cf
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUfBhykfgwssz2r3D9qpBMRfhpQyIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMTMwMjUxMzBaFw0yNTEyMTIwMjU2MzBaMDMxMTAvBgNV
BAMTKEY5OUU1MDBGNDU3NjhBRjJGMkM0RTQyMzFFRkUyQTE5NEJEODM4MTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5ovGrXWyMyEgPMf0LnMgQrl0
+8z4I6mbb90nsVc5qOUdkpde3xCFJQPjzAw4mleT9zKdt1jg8tPdPtlc8aksXJKJ
D9qGLW6PF8hZORzqf12Ah1kfSEp+FiHm73+LFcZpUM6pVAZY0kOcz97hbt6lARKp
mkgYPlGR8PEHMfGNt4sWvaWi1UpYpmGwEvwzx+1sHJQS0mwpviYSuPYaisHwqpox
uNlpCFAiUlNWejjqi+9tvT/eRG6lRRY5odLld/yGqjpjyVh/ZZFWfkOTI2fnOoKt
2ixl8KRtdGeuTM8qfovzsv+o4kFwcRABfPDfg7qUGOTByOu8mYFAX14wmEHpAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQU+Z5QD0V2ivLyxOQjHv4qGUvYOBAwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEwNTc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBREQMA0GCSqGSIb3DQEBCwUAA4IBAQBaWOUz
GULJQCwLxr/bFnr8J/vb4KVTX9wX+dsHIhbto1y4DH28JEtxKHqCaL4hHETlqWJj
8cjLJEKmPD83dGHuIW+sj2hII1BYMMcZsjn5HAREFs9FcJZcUwHkmDKG9euqfGFa
wFx4Y3YMVzTSf488Itj2xTMTrjSHvGkLISpHryRtvq/sr/8wTSxcbY8NStE6vbIq
MDlzvw/u3Z8w+xmBo69WbsA8pHxLCNpCl5DtLmNqcnRPC3Yvg0pCV+PS9oeXdRf1
RovDjx4c117cWY67zhnonFMFVmGnDu/h4+j6nbXSAOPh3em3I+QlUohrkgi0AFcf
WnBjLYf8due5FnDP
-----END CERTIFICATE-----
Generated at Fri Apr 4 17:39:18 2025 by rpki-client