Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211063.roa
File: AS211063.roa (raw, json)
Hash identifier: V6jq7AFkWXy9mtzIjC4N0Xs5thHRndifmuGUIgJOB+M=
Subject key identifier: 1B:61:9B:57:B7:BC:56:0C:C8:F7:E0:60:AC:15:CE:9F:A6:2A:3C:17
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 061B04E1A21879484E3C5ADAE9F76C776D05AA42
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211063.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 211063
IP address blocks: 2a06:a005:1d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:1b:04:e1:a2:18:79:48:4e:3c:5a:da:e9:f7:6c:77:6d:05:aa:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=1B619B57B7BC560CC8F7E060AC15CE9FA62A3C17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:24:75:af:06:14:3c:fb:da:d9:32:6f:13:05:
c8:f8:ce:60:1c:7f:56:0f:61:88:62:00:d6:8b:89:
0e:10:8d:f4:12:51:2c:23:1a:f5:55:28:68:ba:85:
64:5e:3d:77:c9:51:88:d6:60:06:1d:8c:2b:27:55:
f0:4e:e5:1e:e4:e7:9a:f8:f8:bc:bc:4b:01:d2:11:
7c:a1:1a:02:44:2d:03:81:a8:4c:4d:72:97:c8:dc:
58:c7:39:49:1a:31:3d:e4:80:93:5c:3d:b4:bf:ac:
36:04:8a:19:04:f4:21:82:48:e9:38:14:0b:d7:f9:
b4:9c:45:a6:22:1a:8f:84:e8:54:01:8b:9a:e8:2f:
46:7a:b3:85:82:15:db:67:3f:82:fc:17:68:f0:1a:
6f:eb:37:e5:b3:f4:01:fc:35:22:84:11:7d:50:6a:
1c:d0:0d:1b:6b:10:ef:5f:8e:a1:da:bf:68:f5:d7:
5f:ae:8b:f2:d5:d2:80:a0:cd:cc:97:58:31:3d:bb:
fe:2d:e6:99:50:db:86:23:a1:58:b3:59:e8:6e:fd:
0b:94:92:37:71:b6:ee:8a:fa:7b:57:33:65:d4:ea:
c1:77:7d:50:bc:73:d0:0e:c8:4b:7e:86:50:e4:7b:
c2:61:92:bb:9b:2b:14:8e:91:a0:6f:1a:5b:68:22:
39:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:61:9B:57:B7:BC:56:0C:C8:F7:E0:60:AC:15:CE:9F:A6:2A:3C:17
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211063.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d::/48
Signature Algorithm: sha256WithRSAEncryption
cb:be:dd:23:23:cd:be:7c:39:cb:6c:db:37:24:97:76:59:a9:
7b:42:97:9c:67:fd:27:0d:b2:51:77:01:b6:9e:5f:6e:59:58:
ff:5f:24:5c:8d:a7:7e:3b:74:e7:0a:e7:0c:1e:36:62:f3:71:
83:6e:a6:7d:80:99:82:f3:7f:bb:5f:4e:1c:02:77:57:3a:3a:
db:3e:b5:41:a7:cf:fa:b8:a3:0d:47:3e:41:40:e9:5e:f5:36:
b0:d7:a4:39:0e:b7:b0:ad:bf:6d:df:0f:d0:04:c0:67:e5:6c:
92:a1:4b:72:05:11:71:84:76:70:e0:ff:18:51:0c:a0:d7:67:
1e:5c:76:ba:5e:29:a5:73:e6:ba:9b:01:64:32:f7:bd:b5:33:
84:97:94:10:94:35:5b:18:17:3a:21:94:c2:0c:82:20:e6:15:
f9:6b:32:e9:f8:eb:6f:26:a7:d9:7f:6a:2e:60:be:da:72:7f:
32:9f:16:9c:35:80:aa:71:1a:d3:76:f7:dc:12:c7:70:1e:1f:
75:57:0e:ff:e2:43:3d:56:06:b6:b0:bc:d3:df:28:7b:43:d1:
da:6f:93:82:c3:36:96:f2:fb:3b:74:4b:84:27:30:c9:c2:c0:
9e:a9:c9:af:a3:a2:ba:d4:3d:e3:27:5a:05:26:1f:49:bb:80:
80:07:f0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org