Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210932.roa
File: AS210932.roa (raw, json)
Hash identifier: iGS6nFg24IJiYrqJahAe1oFNnr3M8QP2kBDlzit115U=
Subject key identifier: 67:93:57:CA:B3:CC:38:46:98:9B:0D:1E:E9:3A:F8:B3:5F:58:02:1A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4F2B43FD761E208B3704D35D2D457597B72B7760
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210932.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 210932
IP address blocks: 2a06:a005:570::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:2b:43:fd:76:1e:20:8b:37:04:d3:5d:2d:45:75:97:b7:2b:77:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=679357CAB3CC3846989B0D1EE93AF8B35F58021A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3c:9d:be:0f:b9:9d:a7:8b:64:90:9f:f2:e5:
c2:bc:b5:e6:03:c6:1f:58:29:be:63:2f:33:a2:0b:
60:96:29:6d:b3:b9:24:d8:41:40:db:9b:e0:74:72:
b7:c1:be:04:ea:e0:1b:ba:b0:89:36:b3:5e:c1:e4:
a1:c0:d6:0f:5c:89:af:62:b5:a4:c1:70:bf:9e:7e:
b1:17:87:e9:fd:e4:b3:62:81:1d:64:e9:a2:ec:9a:
f9:ff:26:34:13:f5:38:c5:91:d0:c8:b4:cb:60:c7:
14:41:cb:f4:b1:d3:ca:9a:16:cd:23:8c:77:6a:a6:
32:b6:b2:14:bf:77:9a:55:f1:1a:65:69:51:01:de:
bc:60:8c:1f:94:8e:a5:87:d7:93:3c:e2:89:3e:c0:
66:e8:8b:6e:ad:28:79:6e:8c:de:b4:21:7a:4b:39:
a2:e3:6c:8c:ec:01:42:71:ef:af:41:fd:fc:28:8a:
cb:69:6c:28:15:29:66:56:1f:bf:81:04:81:a3:d8:
8c:75:24:24:93:26:a7:e8:ed:d3:54:f0:c4:e0:0a:
d8:f2:03:2f:27:0d:6f:56:d2:7a:a7:df:df:b0:a3:
14:3d:66:74:b8:14:d9:c9:06:70:70:6a:0b:b2:e4:
6a:56:f3:53:09:c2:c2:3b:42:54:c4:3f:c7:75:d9:
b9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:93:57:CA:B3:CC:38:46:98:9B:0D:1E:E9:3A:F8:B3:5F:58:02:1A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS210932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:570::/44
Signature Algorithm: sha256WithRSAEncryption
46:4e:40:f3:bd:a6:89:27:5b:89:59:7f:ad:35:85:2d:d9:67:
90:a8:91:b2:39:33:14:fd:5b:16:67:48:56:b3:37:78:32:8f:
bf:b3:0b:40:fc:94:86:05:f1:e7:24:e4:50:3f:d8:8c:da:e5:
12:9b:fc:d7:58:78:80:7d:92:8a:83:13:49:20:5b:c0:10:02:
f6:0c:a6:a5:5f:27:9b:62:e7:5b:d4:17:ae:b1:30:59:99:43:
0e:30:d3:41:4f:9b:f1:e2:cf:3f:f8:58:ab:22:c7:a7:da:46:
45:53:04:5a:f1:b4:25:04:20:05:69:30:ec:b7:5c:2b:02:ea:
ae:01:a5:14:7d:33:eb:b8:69:38:96:f8:1d:9c:b3:71:77:e3:
fd:5d:99:4a:90:df:65:32:9b:33:f0:0d:16:1d:48:a1:c8:0b:
da:ea:19:b4:75:bb:58:79:d0:49:72:00:98:21:d6:dc:a3:6b:
da:be:2a:64:0d:cf:71:fe:2c:70:04:fb:c8:4f:60:8c:ce:f5:
5f:f0:68:be:80:a4:79:83:34:28:72:e6:8f:b5:ed:be:d6:04:
b7:7a:b7:a4:2c:1f:34:7c:39:29:1a:fe:10:03:86:10:f6:34:
a7:a5:b5:85:1e:ce:43:87:d3:b4:37:97:19:99:50:6e:a8:ad:
5f:11:59:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:38 2025 by rpki-client