Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
File: AS210779.roa (raw, json)
Hash identifier: GQ2l1+5RCyG1TqYvPpAxRpSaByPY+K5oXV3QYyylr24=
Subject key identifier: C9:13:86:F1:BC:48:DF:20:A1:48:42:F7:7F:13:7B:EF:70:AC:22:B2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0B6F595F2871215D1E7A3D0A4A0484CCE3017AE8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
Signing time: Tue 05 Nov 2024 03:40:04 +0000
ROA not before: Tue 05 Nov 2024 03:35:04 +0000
ROA not after: Tue 04 Nov 2025 03:40:04 +0000
asID: 210779
IP address blocks: 2a06:a005:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:6f:59:5f:28:71:21:5d:1e:7a:3d:0a:4a:04:84:cc:e3:01:7a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:04 2024 GMT
Not After : Nov 4 03:40:04 2025 GMT
Subject: CN=C91386F1BC48DF20A14842F77F137BEF70AC22B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5a:6b:73:b6:a2:f6:9c:5e:64:41:f7:97:9e:
bd:90:3b:c4:f7:98:f3:d3:0d:c0:b5:da:bf:f4:52:
0f:c3:f5:bc:31:18:7e:e2:b4:af:07:42:05:a3:af:
6d:a6:f2:4e:f4:05:0d:b8:12:86:2a:63:01:61:ed:
d7:d2:89:35:7e:2b:bf:50:52:1e:90:fa:52:ca:a8:
d2:79:c5:70:24:5e:20:48:b0:b9:8e:be:bc:14:f6:
f9:ff:25:cf:50:fc:4b:7d:ca:db:78:fd:01:5e:8e:
2a:92:14:05:04:78:da:dd:bc:b5:0b:45:2d:ad:6e:
1b:1f:2d:9a:2a:c4:df:15:c4:75:67:38:40:6c:ff:
10:8f:06:53:c6:21:78:1b:af:28:47:9c:31:dc:91:
b5:88:17:c6:7e:f0:3a:30:e5:b7:91:67:07:86:15:
45:bb:8b:3b:74:4a:16:ef:ba:ff:5c:49:fd:46:6b:
5b:86:d6:b4:af:62:83:e4:d6:8a:f6:25:f6:b0:2f:
07:34:1a:f0:20:a9:56:a3:c1:40:10:f4:da:89:82:
18:78:9c:28:1a:c5:41:65:74:30:6e:22:8b:ef:fb:
0a:36:b7:38:d1:a4:38:ac:af:c5:0b:a2:01:5e:c0:
2d:96:ed:d6:95:59:9b:57:f9:71:b6:b4:de:e4:db:
6a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:13:86:F1:BC:48:DF:20:A1:48:42:F7:7F:13:7B:EF:70:AC:22:B2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2::/48
Signature Algorithm: sha256WithRSAEncryption
42:4b:a1:a8:2d:54:fd:b0:84:aa:d0:28:ec:98:d3:b7:9c:9d:
ca:21:f8:50:d4:11:bb:e6:e2:8f:c1:8a:fd:78:4f:ef:a9:f4:
b5:54:ae:91:c6:28:4a:4f:8c:08:05:13:2f:3d:5f:4a:d4:b5:
d4:54:37:8d:e8:b0:c1:4e:f8:7a:e2:0b:1e:81:28:7d:bc:c4:
b2:4a:f7:23:e7:cc:64:a3:13:18:5b:b9:76:0d:ca:fa:0a:69:
80:20:c0:e4:13:ea:c3:43:c7:40:d3:3f:3e:e6:4c:67:61:e2:
fa:a9:f6:c7:7f:68:24:6a:3b:a1:71:67:6c:58:b5:74:bb:3e:
fe:57:d0:64:7f:14:d1:ce:f9:e7:fd:00:21:32:6a:94:ed:64:
24:85:21:45:cb:98:d0:1f:b4:fd:b5:01:a6:c1:d5:fc:c7:68:
5f:9b:2c:79:0b:41:f7:5b:ae:1f:8b:9e:14:62:99:bb:49:55:
b6:31:fb:bb:c0:11:44:d7:62:aa:48:9f:04:7b:98:97:4e:2e:
56:3d:4c:ee:7d:15:78:66:fc:30:24:07:f0:7f:db:ba:3a:8a:
a6:22:94:67:46:16:df:6c:92:12:29:92:5c:48:1d:f4:8a:59:
b8:8d:22:c5:e2:d8:7c:68:90:60:5f:07:60:d5:46:54:91:c8:
6f:71:7b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:11 2024 by rpki-client on console-ams.rpki-client.org