Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
File: AS210630.roa (raw, json)
Hash identifier: qy9W/Ru3tOA7RPTwC84nt6Zw2qtHTgdWd67JDBx+41Y=
Subject key identifier: F3:51:23:74:31:49:34:F9:C8:8B:1D:25:EE:08:BA:36:1A:0A:57:9B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2B178098EB63368BE5D75D2846C4268ACCA109BF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
Signing time: Tue 05 Dec 2023 02:44:19 +0000
ROA not before: Tue 05 Dec 2023 02:39:19 +0000
ROA not after: Tue 03 Dec 2024 02:44:19 +0000
asID: 210630
IP address blocks: 2a06:a005:15d1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:17:80:98:eb:63:36:8b:e5:d7:5d:28:46:c4:26:8a:cc:a1:09:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:19 2023 GMT
Not After : Dec 3 02:44:19 2024 GMT
Subject: CN=F3512374314934F9C88B1D25EE08BA361A0A579B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:24:56:af:a4:57:a9:73:2d:95:1f:bd:99:7d:
b8:01:81:6b:4d:95:46:d7:cc:0b:91:53:07:8c:c6:
c2:09:43:65:e9:8d:0f:99:2c:2a:f4:38:d9:e5:fb:
cb:5f:a6:1d:35:05:3d:e3:99:75:a2:7f:9e:b7:e4:
ed:6f:bb:46:aa:dc:36:b6:13:cc:61:a5:48:f1:c7:
db:4e:bc:a4:e4:29:9d:33:31:23:36:29:31:15:fe:
f9:29:a7:28:a5:75:12:df:6b:33:4c:61:68:53:90:
74:52:5e:c4:4b:10:5d:26:05:15:fd:49:94:0c:34:
4b:2e:b6:bc:fb:17:56:33:2e:51:c0:33:3e:e2:24:
11:9c:bb:0d:6b:51:4d:af:2c:30:a6:1c:ee:83:9a:
10:3d:97:a2:c5:1d:70:da:9b:3d:dd:2d:be:ad:2d:
7c:28:7a:44:bf:32:de:fb:1d:c5:cc:61:3b:46:20:
eb:86:a5:d1:5c:a3:14:d5:92:4e:be:c4:d5:5d:85:
ae:43:98:cd:fe:71:c1:27:da:1f:a7:1d:1a:d1:7a:
07:a1:6c:5b:5e:79:d8:83:87:34:46:8a:dd:bb:17:
85:f6:5b:3c:8c:ba:8a:90:48:90:c4:f6:68:14:5f:
df:75:4a:10:ae:ee:0a:8d:3f:be:b4:cb:04:90:29:
cc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:51:23:74:31:49:34:F9:C8:8B:1D:25:EE:08:BA:36:1A:0A:57:9B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15d1::/48
Signature Algorithm: sha256WithRSAEncryption
b4:25:f9:5c:a7:0d:3e:07:de:20:b6:5d:e0:13:ac:f9:b8:b8:
30:25:9f:9a:d7:3c:30:cf:8e:1e:0c:6b:ee:c0:05:14:44:81:
e8:78:2a:24:61:f0:fb:52:19:af:b8:8d:b4:6f:6a:2e:f4:2a:
0a:86:ca:2a:a8:5a:86:ae:40:8b:51:3e:2b:c6:af:fe:5b:d2:
ff:a0:28:7c:73:a5:de:52:49:5e:3e:6f:a1:8c:34:cd:5b:be:
79:b4:be:a3:aa:a5:1e:ee:67:8b:63:15:38:78:57:6a:37:e2:
e1:76:68:ce:06:e1:f2:1d:14:8f:b3:07:91:a8:2e:a4:f7:96:
84:3f:83:22:ef:9e:07:29:97:93:39:03:31:00:0d:6d:6b:c8:
ac:1c:b7:8b:28:73:c2:2a:c3:23:5c:0c:24:66:27:8d:f8:46:
9c:15:b8:11:4f:50:bf:0e:5a:3c:a6:0d:cf:44:b1:17:17:21:
fa:21:74:e4:dd:72:a2:fe:83:5e:a3:8d:0d:06:fa:d4:f7:cd:
48:48:92:cb:78:64:87:f5:52:bf:cf:71:bf:ff:4c:1b:ce:33:
6c:0d:13:9b:bd:1c:9a:14:36:d0:c0:78:19:f4:73:3d:e3:f2:
44:b1:66:63:9c:6e:bd:d9:d6:29:fd:25:b8:fc:ba:f4:5e:ee:
d4:f7:fd:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org