Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
File: AS210630.roa (raw, json)
Hash identifier: sjJVxvBXe0UoIohxu9Ss0bmLpo9Djp1jK4EL+iazhgw=
Subject key identifier: AE:A3:D1:6A:86:F9:1D:3E:4D:10:52:E4:6B:FD:AB:B4:AA:F1:59:5C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 502DEB0CB74A7F30545ADBAC85BDEEC53D847DF4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 210630
IP address blocks: 2a06:a005:15d1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:2d:eb:0c:b7:4a:7f:30:54:5a:db:ac:85:bd:ee:c5:3d:84:7d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=AEA3D16A86F91D3E4D1052E46BFDABB4AAF1595C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bb:46:9e:90:98:c6:9d:9d:78:33:2a:84:ea:
d9:3e:bb:69:d3:5d:d0:16:e3:f4:1a:d3:74:6a:67:
8c:4c:31:51:5b:d2:a5:eb:9d:e3:fe:b7:24:39:68:
32:94:62:b0:b0:09:b0:2f:f3:d4:d6:c5:80:06:8a:
b5:ae:04:9e:7d:fd:42:41:70:e0:d2:93:ce:ff:74:
0b:78:63:8e:e6:20:9e:06:3c:51:03:66:8d:1f:89:
21:73:88:bf:7a:ad:dc:11:8d:74:20:65:3c:ed:af:
00:7c:22:32:ee:c2:3c:77:a9:67:fc:1b:0e:2e:30:
0b:6b:ee:7a:70:74:9d:66:2e:54:9e:32:36:fc:ab:
98:f4:93:80:54:ad:57:6c:98:c7:a0:7d:f2:b3:1d:
05:ea:8b:10:95:24:ec:02:20:0d:8d:d8:bf:79:ac:
ef:2f:8a:eb:d5:28:42:9b:61:49:18:73:d3:27:b6:
8c:64:7d:45:78:4b:1f:74:04:e7:7d:b7:f6:97:45:
62:f7:44:94:d9:00:e8:33:42:f1:e4:0a:bb:66:2d:
b1:c7:b4:24:25:e8:a4:60:04:a6:10:fc:d3:5a:64:
d9:c9:d0:cd:d7:99:29:96:54:63:86:eb:f8:8e:af:
fe:68:4d:f7:03:9d:14:53:41:56:f2:7d:f2:9a:40:
a0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A3:D1:6A:86:F9:1D:3E:4D:10:52:E4:6B:FD:AB:B4:AA:F1:59:5C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15d1::/48
Signature Algorithm: sha256WithRSAEncryption
19:e8:92:4f:31:dc:3a:94:0d:1d:e8:6e:c2:40:4a:a5:2b:d9:
a2:e7:46:93:1f:4d:f2:7e:d3:01:24:58:6c:9b:43:9c:72:ec:
ac:38:df:4e:3f:f8:fa:09:16:88:dc:cf:6f:fc:4e:ca:8f:63:
a6:94:fa:79:b4:58:da:1f:ac:c7:ad:d1:c7:4a:cd:93:3e:d2:
38:07:f8:ef:bb:94:11:fa:6c:a4:d3:c8:5c:92:87:98:60:4b:
b5:8d:58:b9:d0:4f:17:09:48:22:7f:fd:f4:31:6f:d5:8c:e2:
3c:60:5d:ff:33:2f:2c:d3:40:7e:1b:29:73:fe:f2:53:d7:e4:
5e:29:d2:40:67:bc:03:48:d5:60:b8:14:48:e5:4a:12:15:7c:
0f:bb:78:0e:4c:dd:81:99:a1:be:0c:8a:fc:5f:3b:b6:bd:b4:
15:17:4a:2e:fb:83:61:fe:8b:a3:b4:62:97:f3:11:bf:57:64:
9d:ec:32:13:9b:35:87:2d:d8:67:79:8b:b8:a1:ce:37:7f:1d:
48:d3:50:a5:74:75:86:38:a8:8f:75:99:ab:81:6c:eb:c3:8d:
bb:4a:8f:ba:c4:f5:7e:42:34:50:17:52:ab:96:1a:7c:60:4a:
d9:30:70:9a:8f:33:85:12:09:48:33:ba:0d:49:e5:91:a0:87:
22:fd:db:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org