Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
File: AS211405.roa (raw, json)
Hash identifier: MemOBiuvw614MMgcTgMeLKM08OBHdnDusoVkeEx1XxE=
Subject key identifier: 3B:E4:61:35:4B:06:64:B4:B1:87:C9:C8:A6:A4:9D:1F:A4:6A:AB:63
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4774BCDC76B901A135DA2B0406E3AE641F842798
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 211405
IP address blocks: 2a06:a005:16a0::/44 maxlen: 48
2a06:a005:1920::/44 maxlen: 48
2a06:a005:1ad0::/44 maxlen: 48
2a06:a005:1ae0::/44 maxlen: 48
2a06:a005:1b50::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:74:bc:dc:76:b9:01:a1:35:da:2b:04:06:e3:ae:64:1f:84:27:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=3BE461354B0664B4B187C9C8A6A49D1FA46AAB63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e4:3d:04:d5:00:27:89:0e:e8:16:39:ce:7f:
59:14:65:af:d3:91:d2:7a:11:8e:9f:d1:89:17:04:
f2:f8:a9:85:68:09:c0:60:d1:d4:e0:14:a5:1d:42:
ff:4a:f9:e6:68:87:6a:62:18:e2:83:56:99:1c:d6:
1d:ba:ca:c7:03:a4:65:6e:cc:3a:79:a8:c3:15:21:
5e:32:aa:47:9a:5c:b5:59:d8:d5:ac:ec:ec:6b:28:
63:bb:f9:20:e9:77:0b:a0:c9:fb:b6:8f:d7:e2:8f:
22:5b:f6:3e:cb:b1:00:8f:40:f9:bc:fb:66:ae:3a:
9e:6c:d9:3d:37:65:18:f4:d9:11:28:a9:da:f4:bf:
8d:f6:40:e0:d9:fe:f3:31:39:e9:04:ab:1a:40:d3:
2e:61:4a:48:d1:2d:38:00:b6:ab:bf:4f:d3:c1:8a:
50:e2:b4:a5:e4:9b:52:52:4b:08:92:d0:1c:92:bc:
a3:d0:d4:a3:0c:17:0e:a5:cf:1c:d2:62:0f:a3:22:
cf:48:97:d1:0d:e6:a2:05:2d:ee:1b:e5:ff:3b:29:
a7:53:e1:27:5a:90:ee:c1:9d:2e:9e:b0:f8:02:30:
85:7b:75:fe:74:ff:84:56:a6:7d:7e:d3:91:f6:54:
52:41:4c:9a:3e:10:3c:52:34:81:42:39:c7:24:2a:
93:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E4:61:35:4B:06:64:B4:B1:87:C9:C8:A6:A4:9D:1F:A4:6A:AB:63
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:16a0::/44
2a06:a005:1920::/44
2a06:a005:1ad0::-2a06:a005:1aef:ffff:ffff:ffff:ffff:ffff
2a06:a005:1b50::/44
Signature Algorithm: sha256WithRSAEncryption
03:67:cc:d0:88:6e:d5:e8:67:b4:b0:ed:2a:10:6e:4f:da:69:
d9:f5:f6:71:80:e4:1d:f8:c9:52:7a:cb:a8:85:a7:a4:16:13:
c9:f0:a7:1f:2f:5b:4d:1e:4a:59:21:18:81:69:ed:ec:c6:1d:
9f:b5:98:54:1b:6c:b8:97:97:f0:b7:49:e6:57:1a:0b:44:d5:
a9:5d:0a:72:7a:56:4b:e3:00:aa:01:08:54:e0:41:9e:61:35:
36:7b:a1:25:6b:dd:62:8c:fa:18:36:fe:16:0b:2c:04:6c:a7:
9e:1a:cf:db:46:e3:cf:e0:44:33:f0:1c:65:27:33:b7:00:9d:
5d:3b:91:e1:c8:df:db:b4:63:9d:c9:a2:f6:35:59:93:f9:84:
12:e5:ea:09:28:ae:a2:82:7b:92:3d:f1:28:e9:1f:4f:aa:dc:
c5:40:91:bc:4e:ad:5b:c2:e8:bb:1c:f3:62:7d:31:1c:14:60:
2f:e5:8b:e7:2b:81:bf:e1:a9:13:14:13:f3:58:22:7e:fe:cd:
e3:13:dd:06:df:59:1a:7f:7f:8b:e7:1a:74:0f:de:c7:70:fc:
4f:86:cd:8b:88:d9:cd:c8:24:6b:a9:fc:2b:31:00:af:73:c2:
10:ff:4a:db:6c:fd:85:82:01:10:7a:b3:a4:41:72:ae:f6:66:
2b:58:ea:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org