Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210881.roa
File: AS210881.roa (raw, json)
Hash identifier: 17lOhsUpuZAnMpXtEdXhQnIXc3IWqNYqpVl7hxgDWuM=
Subject key identifier: 9E:5A:F5:75:FC:49:D7:7F:60:D7:73:27:2D:FC:92:26:41:F8:CD:01
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4223EB7D713CF9595C81A83D792F64D6DDC7CD9A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210881.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 210881
IP address blocks: 2a06:a005:920::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:23:eb:7d:71:3c:f9:59:5c:81:a8:3d:79:2f:64:d6:dd:c7:cd:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=9E5AF575FC49D77F60D773272DFC922641F8CD01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8b:b9:09:64:43:b9:5c:ee:d9:72:8e:3a:15:
a2:1d:79:0a:1d:1e:e6:79:0a:fc:a4:cf:e3:98:c3:
98:2e:6d:14:82:dc:53:98:40:9c:6c:cd:3e:e5:a1:
46:0b:50:e4:94:84:95:d3:bf:44:a6:b8:50:c7:a0:
90:1e:79:4a:ec:21:d4:58:02:ea:1b:40:59:96:3a:
1d:b8:08:88:ac:cd:55:15:a2:6f:4e:57:63:93:b9:
ce:a2:db:74:f5:9a:20:56:d1:5e:dd:97:4d:d3:33:
19:12:3e:f5:f7:8a:20:01:1b:4c:88:48:de:79:18:
c0:06:85:db:1e:68:bb:94:e4:83:70:1c:16:a0:2a:
e8:e0:71:ff:2f:43:83:06:8b:67:aa:71:f9:58:ee:
e3:cb:70:1f:a9:48:9c:f3:4c:a5:61:ff:a7:b2:6e:
36:d6:b3:10:6f:27:91:d1:a7:f8:a9:d1:88:00:3b:
44:77:b5:7e:2d:4c:67:f7:11:d8:bd:28:a1:af:29:
f6:89:c0:e0:ec:6f:5c:ff:ba:10:f8:9a:d2:18:a7:
fd:76:f5:b0:bf:ef:de:75:60:92:09:8a:71:e7:b0:
5d:94:af:ef:f0:38:9c:9c:df:3f:92:84:da:3b:cb:
8e:88:4e:88:cc:d7:f1:51:33:61:8b:7a:ca:34:1f:
fd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:5A:F5:75:FC:49:D7:7F:60:D7:73:27:2D:FC:92:26:41:F8:CD:01
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210881.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:920::/44
Signature Algorithm: sha256WithRSAEncryption
1b:8c:b1:c2:4f:b9:2c:ad:f6:89:8c:60:18:d2:f5:55:01:ec:
96:74:9a:05:ae:2c:00:01:fc:2a:50:42:62:2b:bf:01:fd:97:
b0:1d:f3:15:39:c4:14:3f:68:54:c6:b8:60:2d:76:b9:8f:b1:
94:16:fe:ec:8a:b7:dd:9d:0e:51:34:6c:7d:17:48:b6:15:c0:
cd:10:b3:f6:41:0f:69:38:51:6c:ad:f8:bc:12:33:16:f3:61:
3c:55:d1:49:e3:88:37:e1:c9:83:9f:86:3f:52:61:0b:b3:93:
9e:ca:f8:e9:c5:0e:f6:6c:76:55:9b:8a:de:c6:27:74:45:95:
50:e6:d0:13:b0:00:da:21:d5:49:94:49:66:c5:6e:87:7a:4b:
23:cf:9f:39:72:f1:2b:b4:bb:f9:f0:9c:37:8b:6d:a7:fb:55:
0e:43:64:60:44:85:26:2d:7d:d5:49:00:8b:d5:0c:56:92:a8:
c8:4a:0c:82:26:1e:57:79:8d:c6:63:a1:59:53:63:3c:6a:37:
a9:24:bc:d0:f5:f6:da:0e:28:90:94:0e:9c:83:02:b5:ba:29:
a2:88:c2:2f:5f:64:06:a8:0d:41:ec:95:45:72:bd:8d:ba:15:
d0:c9:be:55:30:41:0b:82:81:40:69:46:ce:12:47:f1:b4:7b:
bc:01:de:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org