Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211358.roa
File: AS211358.roa (raw, json)
Hash identifier: fJadTlb7gCWKlqBIkPUpDdugQ/ijx6U/7GT9J5mrIS8=
Subject key identifier: FD:A2:0F:B6:D3:BA:3F:C3:F4:0F:92:57:6F:A6:35:C6:F8:1A:4E:8C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 725B76CC5F99B86B5AD405D025A271D9F51C29E3
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211358.roa
Signing time: Sat 30 Dec 2023 18:44:21 +0000
ROA not before: Sat 30 Dec 2023 18:39:21 +0000
ROA not after: Sat 28 Dec 2024 18:44:21 +0000
asID: 211358
IP address blocks: 2a06:a005:e0::/44 maxlen: 48
2a06:a005:240::/44 maxlen: 48
2a06:a005:250::/44 maxlen: 48
2a06:a005:400::/44 maxlen: 48
2a06:a005:6c0::/44 maxlen: 48
2a06:a005:730::/44 maxlen: 48
2a06:a005:750::/44 maxlen: 48
2a06:a005:790::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:5b:76:cc:5f:99:b8:6b:5a:d4:05:d0:25:a2:71:d9:f5:1c:29:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 30 18:39:21 2023 GMT
Not After : Dec 28 18:44:21 2024 GMT
Subject: CN=FDA20FB6D3BA3FC3F40F92576FA635C6F81A4E8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:e1:d2:1c:6c:68:f4:0f:7e:e2:83:26:c5:
b0:13:a7:92:8f:7a:17:43:ba:b1:c8:15:18:9d:87:
a4:38:b8:e6:04:58:0c:44:74:48:d1:66:21:60:a2:
ad:21:71:58:97:92:14:1f:58:5a:b0:fd:65:95:11:
c8:12:d1:32:4c:18:10:4a:7d:4b:9c:c0:70:f5:bd:
48:8e:d7:ab:70:b3:c0:1f:51:36:cc:e9:c7:40:4e:
80:74:24:ea:c0:55:38:5b:0b:c5:b0:65:3c:0e:4f:
7c:2b:e4:e4:b7:74:00:a4:cd:82:45:e4:e2:c1:30:
93:16:b3:e5:0b:eb:bf:3e:c3:fe:5d:55:b1:d2:e1:
8e:f3:1e:1f:6f:20:b3:8c:db:9d:6d:de:31:e6:13:
5c:c0:5f:43:6f:ff:b3:96:1b:24:b8:10:0e:be:51:
95:a5:13:2e:c7:a5:0b:f8:29:7e:04:28:ac:ca:e2:
38:65:e7:19:dc:f8:6c:0a:98:d3:5a:22:6c:32:f2:
76:b1:32:78:0f:6b:62:46:4a:76:92:d5:30:5b:3b:
f8:b9:c4:a3:93:68:b6:f1:29:3d:5c:0a:c1:d6:df:
c0:d7:a4:9e:ea:fe:67:f9:19:97:50:ad:8a:45:7c:
e9:9a:9e:03:ee:cd:b8:b4:db:bb:7f:83:74:f9:e7:
88:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A2:0F:B6:D3:BA:3F:C3:F4:0F:92:57:6F:A6:35:C6:F8:1A:4E:8C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211358.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:e0::/44
2a06:a005:240::/43
2a06:a005:400::/44
2a06:a005:6c0::/44
2a06:a005:730::/44
2a06:a005:750::/44
2a06:a005:790::/44
Signature Algorithm: sha256WithRSAEncryption
51:48:08:3d:df:55:60:ca:81:b7:b2:be:1e:48:ac:ef:bf:2a:
43:38:75:ff:4b:03:d6:04:d2:e9:e1:8d:3d:6f:be:71:ea:b1:
6f:18:94:39:b5:63:60:7b:5b:24:aa:81:b3:18:4f:a7:08:fc:
03:a6:dc:87:b2:1b:6f:fe:c5:b3:99:ad:fd:72:73:a4:2b:b0:
95:f5:21:4c:e7:19:6a:25:73:60:f7:d3:d0:6e:b7:5d:0d:66:
d6:23:e7:1f:d7:aa:7d:84:bc:36:02:ca:e8:45:e0:de:ff:a0:
ac:46:43:a3:5b:00:ea:be:2a:64:d2:49:3b:5c:7e:a4:fb:81:
75:70:85:cc:22:6c:17:6a:c1:71:32:5d:c6:02:8e:97:75:7d:
06:45:01:ad:c5:b4:8d:2d:e3:12:ea:52:fb:ea:6b:6c:50:9a:
89:3e:b8:ae:8f:59:db:01:47:c9:11:3d:32:e4:56:e6:fd:91:
69:0f:89:43:ee:24:e0:ee:5c:52:df:bd:1f:0c:e7:e9:90:93:
40:f9:c3:b4:f6:75:64:7b:9d:c7:07:1b:0e:65:08:0f:15:ca:
71:2c:a6:c8:1b:eb:88:4d:47:bc:7d:e2:38:f5:89:9d:87:77:
eb:11:0a:e9:5e:60:cf:2a:fe:dc:5d:76:63:fc:c6:04:8a:34:
c1:6a:fc:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:01:55 2024 by rpki-client on console-ams.rpki-client.org