Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210842.roa
File: AS210842.roa (raw, json)
Hash identifier: Tqyoa+KmQVIqjBFcoFbux4beuWrosMYj21qwRT9COgA=
Subject key identifier: C5:08:1A:A3:B3:15:9E:E0:CB:67:28:71:44:D3:FC:D9:53:BD:82:FB
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6793178CA063784CA2E3B9DDE22A87D207B82B33
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210842.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 210842
IP address blocks: 2a06:a005:880::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:93:17:8c:a0:63:78:4c:a2:e3:b9:dd:e2:2a:87:d2:07:b8:2b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=C5081AA3B3159EE0CB67287144D3FCD953BD82FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f7:5f:ac:63:7b:11:98:1e:8c:32:ff:d2:c2:
2d:de:55:66:40:38:41:11:3c:0f:08:fd:ef:0b:07:
dd:f6:65:31:a6:a1:a3:7b:4d:e7:28:2b:32:72:b9:
5e:6b:a7:9f:94:64:3f:33:b4:27:34:5f:69:c2:3d:
70:19:c7:83:7c:be:f7:9a:b4:e1:82:cf:dc:a5:a7:
57:c5:d7:79:99:12:58:9c:18:7d:7b:73:bc:d1:f3:
28:57:d0:5c:e0:22:36:68:a5:a4:59:f7:57:98:b7:
76:21:15:0a:31:40:66:6a:72:08:f8:54:e9:2c:c3:
fe:04:4a:e8:e2:12:47:08:d8:6f:44:ea:06:81:ee:
22:78:5a:68:5b:38:34:aa:a3:c7:e1:11:ab:2a:94:
11:0d:bf:7d:cf:d4:73:5f:60:34:4c:b4:09:1a:a3:
80:b1:1d:bb:ea:3f:6e:d8:42:e1:d3:4a:a5:ab:81:
21:3b:c9:85:57:0c:24:96:07:9f:b9:cd:dd:13:b0:
72:d5:a9:42:65:09:3f:30:d3:34:ea:18:8d:a2:5a:
e8:0a:0e:b1:3e:2d:ce:30:0e:d4:65:89:c1:1f:d4:
c7:87:03:aa:29:e5:69:b0:91:d1:1f:25:31:8c:bc:
1f:dd:67:e1:20:d7:d3:ea:af:4e:43:2d:ac:9a:c9:
46:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:08:1A:A3:B3:15:9E:E0:CB:67:28:71:44:D3:FC:D9:53:BD:82:FB
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210842.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:880::/44
Signature Algorithm: sha256WithRSAEncryption
25:ee:3e:3e:63:30:41:33:70:89:b5:d0:32:40:13:60:ab:7c:
0f:37:ee:42:b6:19:5e:e9:3f:24:4f:42:6a:b7:1b:c0:13:9b:
38:37:36:46:47:1a:8b:63:94:c7:f7:e8:d2:c5:b1:f2:91:23:
68:8e:6e:11:6f:82:2c:3a:cb:7e:14:34:d9:08:8a:a4:6a:05:
cc:a0:82:58:5c:f9:ec:05:90:91:d7:e0:48:00:cb:ac:88:02:
72:75:38:4f:ea:6f:1a:54:52:55:6a:2e:36:c5:31:b2:c4:ce:
8b:50:ae:50:20:48:6f:9f:34:af:2f:b1:01:3b:ea:8f:34:1c:
b3:c7:0b:3f:8e:0a:c9:73:bb:e5:e1:c2:b2:dd:a2:8e:85:3f:
5f:3e:7b:d8:70:87:da:78:a7:e7:1b:5b:6d:3e:d2:23:91:1d:
97:37:a5:8c:c9:e0:98:4f:c3:30:9c:b6:f9:56:8a:b2:e1:14:
1e:3f:df:3b:42:95:38:6b:eb:8c:c7:24:ec:ba:8f:ba:84:93:
25:03:04:42:94:05:9e:a4:4e:62:51:96:d1:51:64:18:81:b6:
54:d6:54:30:40:e5:53:b9:e0:96:75:4a:7f:ca:57:b7:b3:f6:
18:2f:89:ed:eb:51:13:a4:fa:56:d0:88:9c:c1:ef:64:08:93:
73:45:a8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org