Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210667.roa
File: AS210667.roa (raw, json)
Hash identifier: TzBwhrpV/p2LiT1Rasr8684EeMFkC4k1ID8u1Sd6+qs=
Subject key identifier: 46:46:50:D3:FF:30:3B:48:C8:59:AC:EA:C1:29:6B:72:7E:9C:DC:27
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5C115F02100C42F913E5B618939E577FFB52424A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210667.roa
Signing time: Wed 14 Feb 2024 04:23:36 +0000
ROA not before: Wed 14 Feb 2024 04:18:36 +0000
ROA not after: Wed 12 Feb 2025 04:23:36 +0000
asID: 210667
IP address blocks: 89.39.211.0/24 maxlen: 24
2a06:a005:2de::/48 maxlen: 48
2a06:a005:1250::/44 maxlen: 48
2a06:a005:1bb0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:11:5f:02:10:0c:42:f9:13:e5:b6:18:93:9e:57:7f:fb:52:42:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 14 04:18:36 2024 GMT
Not After : Feb 12 04:23:36 2025 GMT
Subject: CN=464650D3FF303B48C859ACEAC1296B727E9CDC27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f1:b7:f4:45:39:cc:07:8a:9d:94:71:cf:da:
f8:f5:6d:cd:07:7e:ae:7c:5b:db:80:32:1f:8a:a2:
26:fc:df:7d:1c:86:2c:f5:20:9d:4b:ed:f0:c4:a1:
c3:e7:19:42:51:27:40:46:0b:1a:b5:26:0d:01:1f:
8e:71:b2:7e:27:6f:d8:4a:8a:f0:ed:83:56:5e:37:
07:c5:71:ea:d0:aa:c1:5f:7f:ae:07:b5:d5:03:59:
85:e9:a5:e9:19:f7:93:7a:d1:24:7a:d7:e4:0f:81:
8d:0f:e7:56:ba:3b:91:5d:86:20:cb:3c:a4:20:8d:
73:dd:c3:d4:79:6d:cf:d6:10:1f:50:b8:29:51:07:
58:37:f3:d7:cc:6f:0d:c6:ca:65:5d:d6:ad:02:e1:
d5:fd:ac:4d:f7:64:53:c0:7a:e8:95:e5:3b:5c:00:
8c:42:b9:59:5f:92:4c:d5:3c:fe:dd:f0:c5:75:c7:
c7:d6:bc:15:89:d1:af:21:9b:04:33:e3:40:c0:8b:
40:96:08:82:16:70:0f:5e:b9:17:be:3b:21:5b:38:
e9:1b:17:6d:27:5d:5f:c1:b7:b6:2d:60:97:e3:d4:
92:79:b1:5d:42:d8:4e:1f:b1:cd:a0:17:e4:fa:a8:
23:29:85:94:71:c3:9d:09:f7:4c:7a:84:6b:77:6d:
20:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:46:50:D3:FF:30:3B:48:C8:59:AC:EA:C1:29:6B:72:7E:9C:DC:27
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.211.0/24
IPv6:
2a06:a005:2de::/48
2a06:a005:1250::/44
2a06:a005:1bb0::/44
Signature Algorithm: sha256WithRSAEncryption
86:6f:04:4e:9c:95:09:86:e2:9e:7a:11:22:f7:9a:34:ea:3e:
79:ac:ce:43:38:6d:9d:33:c9:91:e2:65:2c:f0:62:89:42:79:
b2:93:2b:75:78:48:a9:1e:2d:46:ea:2e:79:50:13:54:32:e5:
51:80:73:7a:72:6e:55:66:68:22:98:7b:77:b3:c3:7a:fb:63:
6c:6d:9f:95:c8:24:6e:61:a1:31:6d:b5:2d:d8:9a:7f:db:94:
73:62:cc:08:e4:03:76:9f:ec:86:24:f4:71:ea:51:e5:38:c4:
9a:56:53:bf:2f:33:1e:95:2d:14:93:a1:c9:9d:7d:99:39:30:
70:52:23:c4:7e:e1:fd:f1:d7:70:fc:f7:fd:9a:db:9f:94:3c:
7c:61:db:1b:32:f9:97:76:9e:32:da:1a:7c:95:b7:0e:81:9e:
9d:4c:cc:21:8d:48:7c:b9:5b:03:60:c5:59:d8:49:f1:69:ec:
8a:f1:79:97:7c:45:3a:01:4d:85:22:57:8b:dd:3a:76:f1:43:
a2:7b:d5:45:27:c5:1d:50:e6:16:a0:45:f9:61:23:8e:c4:03:
ee:1a:e5:af:69:0a:74:fc:01:aa:30:18:d0:bb:3a:c0:d7:ac:
01:52:06:87:f6:7b:48:68:9e:9f:a8:41:58:78:71:59:dd:a9:
fb:b5:4f:98
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgIUXBFfAhAMQvkT5bYYk55Xf/tSQkowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDAyMTQwNDE4MzZaFw0yNTAyMTIwNDIzMzZaMDMxMTAvBgNV
BAMTKDQ2NDY1MEQzRkYzMDNCNDhDODU5QUNFQUMxMjk2QjcyN0U5Q0RDMjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC8bf0RTnMB4qdlHHP2vj1bc0H
fq58W9uAMh+Koib8330chiz1IJ1L7fDEocPnGUJRJ0BGCxq1Jg0BH45xsn4nb9hK
ivDtg1ZeNwfFcerQqsFff64HtdUDWYXppekZ95N60SR61+QPgY0P51a6O5FdhiDL
PKQgjXPdw9R5bc/WEB9QuClRB1g389fMbw3GymVd1q0C4dX9rE33ZFPAeuiV5Ttc
AIxCuVlfkkzVPP7d8MV1x8fWvBWJ0a8hmwQz40DAi0CWCIIWcA9euRe+OyFbOOkb
F20nXV/Bt7YtYJfj1JJ5sV1C2E4fsc2gF+T6qCMphZRxw50J90x6hGt3bSCpAgMB
AAGjggISMIICDjAdBgNVHQ4EFgQURkZQ0/8wO0jIWazqwSlrcn6c3CcwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEwNjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEH
AQH/BDMwMTAMBAIAATAGAwQAWSfTMCEEAgACMBsDBwAqBqAFAt4DBwQqBqAFElAD
BwQqBqAFG7AwDQYJKoZIhvcNAQELBQADggEBAIZvBE6clQmG4p56ESL3mjTqPnms
zkM4bZ0zyZHiZSzwYolCebKTK3V4SKkeLUbqLnlQE1Qy5VGAc3pyblVmaCKYe3ez
w3r7Y2xtn5XIJG5hoTFttS3Ymn/blHNizAjkA3af7IYk9HHqUeU4xJpWU78vMx6V
LRSTocmdfZk5MHBSI8R+4f3x13D89/2a25+UPHxh2xsy+Zd2njLaGnyVtw6Bnp1M
zCGNSHy5WwNgxVnYSfFp7IrxeZd8RToBTYUiV4vdOnbxQ6J71UUnxR1Q5hagRflh
I47EA+4a5a9pCnT8AaowGNC7OsDXrAFSBof2e0honp+oQVh4cVndqfu1T5g=
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:23 2024 by rpki-client on console-fra.rpki-client.org