Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
File: AS211266.roa (raw, json)
Hash identifier: N6TtPiExDONzQdjQ68CfHYLxf20tvpfZC/dvdt7HmNc=
Subject key identifier: 5A:70:13:B7:0C:11:38:65:2B:3D:76:4A:DA:75:EF:6D:07:89:F4:AD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6F4DC38326116890E95C4BDFEE54E1A1F0EC6ACE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 211266
IP address blocks: 2a06:a005:900::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:4d:c3:83:26:11:68:90:e9:5c:4b:df:ee:54:e1:a1:f0:ec:6a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=5A7013B70C1138652B3D764ADA75EF6D0789F4AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3e:52:25:99:40:e9:3b:c1:1b:d4:e7:41:d8:
90:e3:e4:06:df:82:0f:4e:04:7e:61:db:cd:3e:e6:
c5:4d:a6:c0:ce:6a:e8:1b:f5:d8:b9:6e:b6:8f:00:
33:8b:c4:7d:86:6d:68:e0:56:a0:12:18:e5:c9:ae:
c2:a1:3d:24:f8:77:04:bc:c5:eb:a7:45:2a:72:c2:
53:06:e7:cf:b1:ba:45:a8:b2:ab:9a:af:d3:f3:b1:
f2:21:e5:ad:33:64:be:a8:92:28:bd:33:3a:49:49:
b7:b0:ef:67:e8:50:bf:bb:c0:2d:3b:9f:fb:89:b8:
be:29:77:6f:d0:03:f4:1f:7d:66:fc:05:38:a2:d9:
9b:7f:f2:1d:85:4b:64:91:e0:a6:98:e4:2f:3a:d7:
f8:c2:2a:57:03:03:38:9a:86:16:81:60:ee:cb:a8:
b7:b8:aa:42:93:43:ab:80:39:cb:ee:c6:e3:02:92:
42:0f:08:1c:38:69:c4:55:c0:f2:7e:81:1b:33:2a:
eb:d2:75:a9:f5:07:e7:88:26:59:4a:40:32:49:f3:
46:7b:28:12:b4:21:32:d0:25:a5:f4:ea:db:2d:34:
c5:7c:42:ce:c9:6a:97:c1:da:fb:a5:81:62:dc:9d:
38:f0:68:43:05:22:ad:1a:6c:a7:ee:10:f0:9f:9e:
64:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:70:13:B7:0C:11:38:65:2B:3D:76:4A:DA:75:EF:6D:07:89:F4:AD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:900::/44
Signature Algorithm: sha256WithRSAEncryption
ad:b6:ef:b6:24:42:07:34:82:e7:5b:ad:c8:ab:56:f3:ec:ea:
25:1e:c1:1e:e0:8e:ec:b8:92:e3:7e:bb:3f:65:c0:32:bd:69:
cd:6d:bc:e6:f3:ca:43:ae:45:3e:f6:f5:4a:a2:c6:15:14:20:
ac:df:1d:4e:3d:25:90:63:38:18:23:a9:02:94:80:6e:6a:9b:
f1:aa:b6:a8:00:6c:cd:a2:cb:3c:aa:11:51:7a:96:be:e7:e0:
3e:a1:41:94:1f:78:7a:a7:cb:88:e3:9e:d1:4c:89:34:2a:e1:
ad:47:cf:12:43:11:ab:7e:3d:51:f1:ba:3f:d7:72:7b:24:54:
fa:07:99:13:5e:28:d4:73:83:ca:e2:e5:0a:4a:3f:61:ec:46:
33:44:1f:56:67:d7:c5:36:39:89:bd:b3:b0:66:1b:8b:4b:36:
e9:d5:4f:8c:43:01:60:a4:5a:cf:81:8c:cf:cb:4e:62:dc:cd:
db:e4:4a:6f:17:ff:c0:de:aa:f7:ce:34:a3:6f:10:0e:ff:11:
8c:9a:37:77:4a:2f:26:31:47:3b:90:f1:db:29:1e:14:e2:0a:
2c:9c:bb:21:4d:81:3e:88:71:d6:d9:e5:ca:db:f8:6e:52:23:
b4:31:c0:fb:68:cc:26:ac:7e:4c:8f:90:8a:33:53:24:40:13:
19:a1:37:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org