Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
File: AS211405.roa (raw, json)
Hash identifier: iw1+K3uMSfZO7a5wk77VGnBVRHYonbIwDhOmXjFuTlg=
Subject key identifier: E7:17:4D:CA:7E:6C:80:2F:3B:C7:4E:A8:AA:9B:CE:34:05:88:ED:12
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1125B5C0202247EE205649F1EECF2F0F86A9FA76
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 211405
IP address blocks: 2a06:a005:16a0::/44 maxlen: 48
2a06:a005:1920::/44 maxlen: 48
2a06:a005:1ad0::/44 maxlen: 48
2a06:a005:1ae0::/44 maxlen: 48
2a06:a005:1b50::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:25:b5:c0:20:22:47:ee:20:56:49:f1:ee:cf:2f:0f:86:a9:fa:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=E7174DCA7E6C802F3BC74EA8AA9BCE340588ED12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:77:ba:86:41:6e:72:9a:56:2b:73:1e:e3:cf:
79:7e:9c:05:0e:f7:79:f0:d4:d7:55:76:df:07:3e:
7e:e8:5e:58:77:42:03:2c:e6:8d:59:45:21:19:37:
d1:66:5f:a4:40:f4:a5:18:f3:88:8c:c7:c4:5a:3d:
ef:8d:d4:c2:0f:ec:e0:75:58:16:1a:26:19:26:d5:
d3:54:e2:34:4c:4a:f3:d6:63:a6:db:8a:c1:2c:2b:
f3:4d:97:d9:67:9c:60:16:91:bf:ac:08:e3:a6:4e:
68:26:e6:99:bb:c9:dd:62:f1:51:37:94:87:02:ad:
4d:aa:4a:1a:6b:c5:2d:a8:0e:96:f2:a0:df:57:42:
2c:ef:a8:a8:74:e7:e6:66:30:a7:b7:8e:49:66:85:
25:41:e8:12:a4:80:10:fe:85:4d:27:1b:10:0a:e7:
25:98:7c:45:8d:13:8d:cb:c4:63:1a:53:1a:ec:59:
82:93:72:61:e1:ef:cf:4a:ca:8f:68:01:4a:f1:b1:
0a:38:9e:51:7e:19:db:43:c9:d7:9d:cf:34:0f:c8:
ac:b2:7a:7e:e1:a9:03:f7:33:8b:b8:9e:c7:a3:a1:
0a:47:de:1e:b2:17:61:22:fb:37:d7:57:3a:90:7c:
3f:62:54:97:9d:99:31:a5:d3:be:36:d2:16:0e:54:
28:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:17:4D:CA:7E:6C:80:2F:3B:C7:4E:A8:AA:9B:CE:34:05:88:ED:12
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211405.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:16a0::/44
2a06:a005:1920::/44
2a06:a005:1ad0::-2a06:a005:1aef:ffff:ffff:ffff:ffff:ffff
2a06:a005:1b50::/44
Signature Algorithm: sha256WithRSAEncryption
88:a9:9d:5a:c6:e3:b0:e0:6c:2b:16:09:61:e5:83:9a:6d:27:
dc:d1:85:43:90:e5:3c:cb:80:2d:bd:2d:db:15:6b:73:c3:54:
44:c5:6e:7e:9d:88:fe:c0:c6:3f:c2:79:c0:f3:72:9d:aa:61:
7a:cd:89:db:4d:0c:5b:1b:80:65:36:74:f7:73:5a:32:a2:72:
45:f9:f6:54:41:db:25:e7:53:df:a3:0c:76:46:a9:90:95:22:
87:f2:c4:5d:38:60:10:e5:21:07:83:91:b6:88:03:aa:82:65:
81:79:a6:7c:8b:b2:e1:4d:a1:4f:47:10:11:1f:f6:2d:be:ac:
74:27:c6:02:9d:c4:ed:98:55:f7:7c:6a:67:af:8e:41:7a:41:
8c:d8:ca:31:34:ec:fa:61:5a:c3:1a:c3:14:a5:8a:ab:fc:5e:
77:f2:5f:8b:26:e2:50:74:81:e4:61:50:dd:5d:e8:79:5e:1b:
84:92:88:f4:a4:b2:df:08:24:1d:be:82:38:ae:61:a1:08:ef:
03:0d:31:3e:3d:f8:cb:e5:d9:2c:dc:69:0d:d6:ff:d8:a1:7e:
20:d9:6c:33:d6:48:d1:a1:89:e1:dc:1f:8c:1c:b7:0e:c1:22:
d6:51:83:e7:79:96:4e:14:63:b5:d0:73:3e:29:4d:57:27:8d:
b0:60:9f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org