Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
File: AS211266.roa (raw, json)
Hash identifier: T57hQVp60UvNQZSophshhOr2/Oay6z9Ulz/WSw5tumQ=
Subject key identifier: C8:03:46:F8:24:E2:14:81:28:F9:38:47:A7:2F:20:E3:C6:A0:45:AD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 419B44F7E172FB7D768E46C6AD56BBFB3EAE0698
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
Signing time: Tue 05 Nov 2024 03:40:07 +0000
ROA not before: Tue 05 Nov 2024 03:35:07 +0000
ROA not after: Tue 04 Nov 2025 03:40:07 +0000
asID: 211266
IP address blocks: 2a06:a005:900::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:9b:44:f7:e1:72:fb:7d:76:8e:46:c6:ad:56:bb:fb:3e:ae:06:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:07 2024 GMT
Not After : Nov 4 03:40:07 2025 GMT
Subject: CN=C80346F824E2148128F93847A72F20E3C6A045AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:15:06:c2:89:f8:d9:22:c9:2c:38:98:92:83:
48:c7:14:0a:dd:43:d6:31:37:d6:b0:ff:30:b0:47:
2f:b3:62:27:4b:e9:af:55:8c:c0:4d:74:98:1d:73:
6c:18:45:fc:8b:2c:b8:0a:9e:07:1d:a6:91:07:7f:
a8:51:f8:06:19:d4:6e:11:6c:af:1a:70:6b:de:92:
bf:68:98:d5:5b:fd:b1:ce:b7:42:d3:da:9d:45:2c:
a7:44:ea:c0:1b:92:61:a7:ec:f9:78:7f:89:54:92:
be:c1:c5:2d:ef:09:e1:41:66:66:1a:61:d3:29:43:
85:9c:9f:66:d5:28:fa:d5:bc:bd:ce:ee:6c:f3:ab:
ed:a3:60:96:c6:5d:80:48:ae:8a:cf:1f:39:7e:9f:
cc:82:4f:f2:3b:3e:02:bc:0a:4e:bc:c7:ed:e9:3e:
58:09:51:29:24:b2:0b:d0:31:71:4e:7f:2c:47:c2:
b1:d7:72:3d:ff:c0:36:83:8f:dd:36:74:a7:ff:3a:
2f:e9:87:ff:f8:a2:94:17:d6:23:64:49:9f:fb:19:
d4:e8:0c:4c:7a:48:5b:f2:57:de:9c:63:f1:53:8a:
61:25:62:2f:a9:3a:56:b5:d7:5d:a5:96:c4:57:ec:
6a:9a:dc:ed:61:ff:f7:2f:d8:48:1c:89:65:7a:60:
71:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:03:46:F8:24:E2:14:81:28:F9:38:47:A7:2F:20:E3:C6:A0:45:AD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:900::/44
Signature Algorithm: sha256WithRSAEncryption
68:09:67:3b:85:e4:28:e4:9d:92:e6:40:03:22:b8:f6:67:47:
05:a2:fd:24:45:87:0d:19:09:d8:94:73:80:2d:a1:89:27:a4:
3b:0d:eb:27:f4:3d:87:9d:c0:6b:cf:54:55:71:1b:24:d5:12:
3c:7a:24:72:b4:aa:59:52:aa:1e:87:6b:cd:37:84:a3:8d:3f:
99:a9:63:0b:3a:7f:cc:26:1c:fa:2f:94:26:33:1d:f9:e4:3e:
1f:85:a9:8a:e9:c2:e6:31:a7:f4:96:a1:10:97:12:90:be:ea:
fc:a2:47:0f:63:ce:d2:de:8b:3f:2c:4f:35:0a:23:2e:f9:dc:
74:1e:48:1c:23:54:9e:29:ff:8a:34:fd:7a:ba:d5:8a:54:69:
0d:ae:6e:2c:82:e0:1a:c4:2e:34:fb:af:8d:70:9d:8d:80:84:
e8:8f:7b:72:85:6d:3e:8e:5a:7f:00:c2:00:e4:56:19:fb:d2:
f0:0f:12:72:18:76:12:c7:61:c3:0a:43:0c:33:56:c6:46:42:
04:12:bc:9b:fe:f8:79:22:d4:1c:49:77:4c:d4:ce:06:32:b8:
4c:97:b0:fc:85:39:19:73:db:ed:48:1c:87:55:80:b2:d4:d4:
43:c3:8a:63:a9:8e:a8:5e:fa:31:70:3a:20:80:37:17:41:95:
45:76:48:1f
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUQZtE9+Fy+312jkbGrVa7+z6uBpgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDdaFw0yNTExMDQwMzQwMDdaMDMxMTAvBgNV
BAMTKEM4MDM0NkY4MjRFMjE0ODEyOEY5Mzg0N0E3MkYyMEUzQzZBMDQ1QUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdFQbCifjZIsksOJiSg0jHFArd
Q9YxN9aw/zCwRy+zYidL6a9VjMBNdJgdc2wYRfyLLLgKngcdppEHf6hR+AYZ1G4R
bK8acGvekr9omNVb/bHOt0LT2p1FLKdE6sAbkmGn7Pl4f4lUkr7BxS3vCeFBZmYa
YdMpQ4Wcn2bVKPrVvL3O7mzzq+2jYJbGXYBIrorPHzl+n8yCT/I7PgK8Ck68x+3p
PlgJUSkksgvQMXFOfyxHwrHXcj3/wDaDj902dKf/Oi/ph//4opQX1iNkSZ/7GdTo
DEx6SFvyV96cY/FTimElYi+pOla1112llsRX7Gqa3O1h//cv2EgciWV6YHFRAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUyANG+CTiFIEo+ThHpy8g48agRa0wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjExMjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBQkAMA0GCSqGSIb3DQEBCwUAA4IBAQBoCWc7
heQo5J2S5kADIrj2Z0cFov0kRYcNGQnYlHOALaGJJ6Q7Desn9D2HncBrz1RVcRsk
1RI8eiRytKpZUqoeh2vNN4SjjT+ZqWMLOn/MJhz6L5QmMx355D4fhamK6cLmMaf0
lqEQlxKQvur8okcPY87S3os/LE81CiMu+dx0HkgcI1SeKf+KNP16utWKVGkNrm4s
guAaxC40+6+NcJ2NgIToj3tyhW0+jlp/AMIA5FYZ+9LwDxJyGHYSx2HDCkMMM1bG
RkIEEryb/vh5ItQcSXdM1M4GMrhMl7D8hTkZc9vtSByHVYCy1NRDw4pjqY6oXvox
cDoggDcXQZVFdkgf
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org