Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211011.roa
File: AS211011.roa (raw, json)
Hash identifier: S7JpNaKUlPGc8aZbOwUU5T2YqetUj03E11701+rbGsI=
Subject key identifier: B9:53:30:85:C7:8F:F8:F5:73:A6:9E:9F:50:C9:7B:2C:B9:B0:E8:01
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0861A13229B9D3233B05BED776C9DD0FE450CCB8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211011.roa
Signing time: Wed 31 Jan 2024 22:44:24 +0000
ROA not before: Wed 31 Jan 2024 22:39:24 +0000
ROA not after: Wed 29 Jan 2025 22:44:24 +0000
asID: 211011
IP address blocks: 2a06:a005:15df::/48 maxlen: 48
2a06:a005:2d80::/44 maxlen: 48
2a06:a005:2e30::/44 maxlen: 48
2a06:a005:2e40::/44 maxlen: 48
2a06:a005:2e50::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:61:a1:32:29:b9:d3:23:3b:05:be:d7:76:c9:dd:0f:e4:50:cc:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 31 22:39:24 2024 GMT
Not After : Jan 29 22:44:24 2025 GMT
Subject: CN=B9533085C78FF8F573A69E9F50C97B2CB9B0E801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:41:4e:5c:80:7b:69:a4:3d:34:fc:54:96:f7:
21:93:51:e5:d1:a7:6b:a6:a6:b4:ac:34:c0:4c:9d:
34:d9:f4:1e:06:0c:80:29:22:5b:a3:7a:25:1c:4e:
08:ea:b8:c4:e5:ca:dc:8c:df:14:f0:18:f4:a1:c0:
66:91:22:10:91:d8:ea:1f:03:00:ec:af:72:fe:b0:
a3:a9:32:68:5a:5a:6b:2a:ce:fc:c0:ab:a8:6d:c1:
8c:86:08:e9:09:88:81:52:66:69:a9:c6:67:07:e0:
a2:8b:67:17:34:c2:3a:d2:99:30:cf:ef:12:05:2e:
db:36:cf:cb:83:90:df:48:d5:4d:15:9e:d6:79:15:
4d:5f:b2:71:db:11:70:df:3c:64:01:da:10:fc:19:
bc:cb:3d:eb:4f:2e:fb:78:0c:4c:a3:f7:c4:57:80:
e1:b4:5d:80:50:89:d8:a8:e0:3e:07:eb:df:6d:01:
2e:f5:ad:ab:30:47:e2:13:3c:d3:ba:41:04:1d:59:
da:1a:32:c3:fd:2b:16:3f:dd:eb:bd:d1:5d:0d:22:
87:01:01:81:1d:4b:80:f5:f3:f1:7f:a6:ec:d1:9d:
fe:fe:80:69:98:11:47:6f:55:4b:d4:52:a1:cb:15:
c0:4a:16:e5:bd:b3:0e:63:19:28:cc:d5:3a:4e:d2:
69:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:53:30:85:C7:8F:F8:F5:73:A6:9E:9F:50:C9:7B:2C:B9:B0:E8:01
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211011.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15df::/48
2a06:a005:2d80::/44
2a06:a005:2e30::-2a06:a005:2e5f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
3e:94:47:2d:df:bb:f3:37:64:b7:84:ae:15:44:56:6b:23:5a:
98:36:7d:86:f5:74:9f:1e:ee:56:82:48:2e:6d:fb:63:d6:95:
35:9d:75:bd:50:b6:52:3e:de:5a:46:bb:48:54:8a:17:ce:d1:
73:c1:7c:0e:bf:8f:80:25:d6:4b:54:78:97:ae:54:3c:fa:a0:
77:ab:58:25:0b:a2:49:3a:b6:d1:24:b4:6e:ca:df:12:22:29:
b5:fd:6f:7d:d4:33:d1:b6:f0:4f:8f:57:8a:28:78:1b:af:08:
9d:d5:e8:30:5f:1c:48:70:be:35:79:2d:6a:d5:bc:07:9b:e2:
5a:e2:f0:96:a4:25:40:09:ba:18:9b:d5:8b:fd:be:54:49:42:
f9:79:9b:30:f9:2c:95:9c:e6:39:c0:43:b3:3f:f3:14:cb:a4:
83:72:32:16:fc:2e:4c:0b:a1:07:dc:9e:98:27:a3:78:29:ca:
fb:f5:cc:8e:98:7f:92:3c:75:10:ee:98:bc:16:fa:ff:97:d2:
9a:c8:98:c9:2f:ae:15:ab:72:e3:d5:2e:a2:1e:50:5e:d1:7e:
f9:73:89:01:59:a5:b8:4f:2c:04:48:6f:8b:40:56:2c:5e:cf:
22:f6:7e:53:b7:7c:99:6a:17:42:ca:e0:3b:9b:11:74:da:b7:
fe:47:7b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org