Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
File: AS211144.roa (raw, json)
Hash identifier: egNEbbmQwf3XjII40/MMaJyB7oPLk5N2qERg7Mc8520=
Subject key identifier: CB:9E:63:D2:54:C7:1A:54:A6:19:2C:03:24:F7:24:D4:DA:B1:E5:DE
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3DEF296A7A1C9A4BD8E9E2B65ABFFF30395018B4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 211144
IP address blocks: 2a06:a005:18::/48 maxlen: 48
2a06:a005:2d0::/48 maxlen: 48
2a06:a005:431::/48 maxlen: 48
2a06:a005:440::/44 maxlen: 48
2a06:a005:5b4::/48 maxlen: 48
2a06:a005:9f0::/44 maxlen: 48
2a06:a005:a07::/48 maxlen: 48
2a06:a005:127a::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:ef:29:6a:7a:1c:9a:4b:d8:e9:e2:b6:5a:bf:ff:30:39:50:18:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=CB9E63D254C71A54A6192C0324F724D4DAB1E5DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9d:4d:02:e9:28:57:39:84:c5:b4:f1:ad:6a:
52:6a:28:9e:14:1a:b7:1f:a7:7b:4b:a1:09:07:02:
2f:92:e2:5a:6e:c8:c6:19:27:45:dd:61:65:00:4e:
a1:3a:0f:51:11:3d:60:a6:be:c9:c9:b9:74:50:90:
ba:34:c3:fa:3e:5b:b7:0c:55:a5:ec:c5:32:e1:66:
bd:4f:d4:89:40:94:af:80:7b:cc:0f:b1:59:47:57:
03:8c:be:1a:8e:16:55:42:06:6a:9f:37:b8:88:13:
98:e2:92:1d:15:fa:7b:c2:ad:f2:8b:8b:25:3f:9a:
9e:e6:1a:e4:10:ec:f3:e5:ac:9b:51:de:71:59:b6:
83:88:7c:e9:f0:63:79:96:88:64:4c:25:1d:b2:aa:
60:74:06:03:b5:68:a2:b5:f1:a6:5e:3a:b1:e6:2c:
95:af:fc:da:ab:f5:57:3b:e6:1e:13:b1:9e:f1:38:
75:fc:cc:28:90:98:04:86:f3:6d:12:aa:d5:19:f6:
a8:86:a6:2b:da:3c:95:91:f6:57:dd:da:50:67:67:
d2:63:ce:5d:40:fe:7f:1c:16:a7:27:a1:18:f8:b8:
ec:39:21:30:0b:02:a9:13:35:78:43:7f:a5:77:a0:
d9:d6:d3:37:41:a7:4f:cf:59:c7:10:26:42:04:a5:
02:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9E:63:D2:54:C7:1A:54:A6:19:2C:03:24:F7:24:D4:DA:B1:E5:DE
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:18::/48
2a06:a005:2d0::/48
2a06:a005:431::/48
2a06:a005:440::/44
2a06:a005:5b4::/48
2a06:a005:9f0::/44
2a06:a005:a07::/48
2a06:a005:127a::/48
Signature Algorithm: sha256WithRSAEncryption
44:7d:d7:69:88:49:93:b7:db:92:76:42:43:b9:7d:3e:e4:ea:
8a:db:49:d0:00:c0:ca:eb:59:c5:f7:23:d2:c4:2a:87:fe:c9:
35:a9:22:85:6b:08:c8:57:dd:d2:9f:b1:58:89:eb:09:5e:5a:
ea:a2:70:5d:cb:70:3f:b2:12:fe:95:d3:ce:b0:68:8e:d4:7b:
00:4f:e4:30:cf:70:8b:22:a5:18:d4:dc:ad:9b:a9:84:0f:3c:
7f:0d:e4:1e:4b:9a:56:c1:17:17:51:da:ac:ab:28:b8:53:a2:
e5:64:90:59:43:e2:6d:b6:7b:4e:ff:54:57:f8:fe:16:ea:bb:
23:88:70:7d:be:f3:0d:5b:8f:4a:91:a9:33:69:36:a8:07:40:
22:0c:ea:80:59:db:7d:91:b7:11:49:7c:52:44:b8:4d:d8:39:
12:dd:1a:01:6e:0f:53:1a:be:20:7c:c1:2b:b9:26:4d:96:14:
ac:ac:09:3d:b1:65:f8:7f:fd:9a:0b:74:46:2d:df:b1:0a:4b:
fa:c4:7b:88:9f:e3:10:79:61:fd:b2:d1:9f:3b:bb:d5:8c:07:
2c:55:51:36:2e:6b:f7:3b:29:cc:a1:74:a6:c9:df:60:09:39:
fd:e9:07:71:07:a5:85:1e:93:19:c5:8e:b4:84:8d:b6:f0:aa:
2f:34:ff:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org