Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
File: AS210779.roa (raw, json)
Hash identifier: fHPMsZ+RCjegbaXEnQNm3DFmZDzCNMfglGPKMacc6hI=
Subject key identifier: F9:A2:8C:28:51:A1:77:6E:3C:9C:30:6E:6D:BD:AA:0B:A4:B1:F7:05
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4E91248213D8657DDDD21591E1AF856EDCD9A630
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 210779
IP address blocks: 2a06:a005:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:91:24:82:13:d8:65:7d:dd:d2:15:91:e1:af:85:6e:dc:d9:a6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=F9A28C2851A1776E3C9C306E6DBDAA0BA4B1F705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:21:0b:9b:96:9a:e2:09:29:a9:00:8a:98:
9e:75:f8:14:50:4e:ec:11:c5:86:26:83:81:30:7d:
db:c8:5f:54:78:d0:c8:89:47:13:44:16:39:86:d5:
a0:7c:ab:bc:82:f5:a5:27:34:0d:13:c3:78:bd:21:
22:65:68:5d:84:a9:77:b9:00:07:ae:dd:8d:41:b1:
26:5b:4d:13:ea:b7:8b:43:a9:7e:00:38:59:6d:2f:
84:ec:0e:86:cb:a3:58:cb:cc:21:7c:a1:7b:69:6a:
36:80:5b:27:80:0b:04:57:93:2f:3c:5b:53:cd:c9:
9d:48:14:a8:41:83:b9:16:2b:81:c6:8a:b1:48:fc:
da:fb:8a:e5:0f:38:a4:f3:7a:06:2f:4a:12:e2:f4:
19:7f:12:bf:13:75:80:cb:b3:d8:01:30:ea:19:a8:
e4:e8:fb:34:21:09:f6:9b:1c:c4:dd:a0:4c:51:5a:
8e:de:84:86:bd:e1:bc:e2:90:ad:f9:30:c9:33:e2:
f3:a0:d2:92:74:87:f4:76:40:e8:1b:3f:39:41:eb:
89:ac:6e:01:83:76:d3:55:02:3f:e9:02:61:d2:f5:
1b:02:ad:18:13:c9:c4:dc:56:e3:0f:a2:f4:d5:a6:
2b:fb:54:57:8c:70:04:5d:62:6b:b4:d6:f9:04:9b:
c6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A2:8C:28:51:A1:77:6E:3C:9C:30:6E:6D:BD:AA:0B:A4:B1:F7:05
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210779.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2::/48
Signature Algorithm: sha256WithRSAEncryption
c4:cd:e7:ae:54:93:ea:d0:66:e5:a7:72:b1:a5:2f:d0:be:80:
8a:2b:60:50:c5:a0:89:91:c3:c2:70:77:95:1c:61:7d:31:f5:
5c:a8:59:0c:01:ae:8c:70:d9:48:78:3b:a0:f8:aa:e4:02:62:
9a:cb:79:06:f0:5b:13:70:ec:c7:a1:c8:e9:8a:af:b4:05:7f:
86:4f:28:4f:5b:62:0f:7e:56:a6:6a:7a:98:2f:f6:cd:31:8a:
ca:42:b8:d6:71:31:6f:f4:ab:46:4e:da:9d:a3:3e:25:70:47:
c7:4d:6c:cf:e4:36:b1:40:02:ad:90:89:86:6c:a6:55:50:6e:
fa:4b:65:0f:0b:c1:f9:de:f1:ae:1f:58:3b:90:4e:cb:5f:ff:
08:08:05:2f:71:97:dd:61:58:68:32:0c:8a:1a:1a:01:41:34:
4b:ae:7e:ed:d6:96:ac:2a:1d:46:38:f9:dc:c3:49:97:8a:81:
40:03:10:32:bf:db:46:81:79:bd:c4:d0:c3:2e:67:b6:eb:a3:
b2:78:d0:4c:85:df:c6:40:da:42:de:47:17:64:ae:d7:c5:88:
51:d2:0b:da:63:88:0d:cf:91:df:d2:d7:20:fd:1a:46:2d:7f:
83:6a:97:e5:2a:10:e4:e9:47:ce:ca:6d:80:06:29:b2:6c:28:
34:5b:5e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org