Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
File: AS211431.roa (raw, json)
Hash identifier: SXPrXasxTE8MPRv4K1rku/L4rHxm5KGgBDj8pi43+mA=
Subject key identifier: 60:07:2B:FB:7C:EC:57:B1:1D:E4:86:C2:C9:EC:02:93:66:A5:BF:43
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 22F262CC224A016CB064B1B95922648FC423DA60
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
Signing time: Wed 03 Apr 2024 06:13:26 +0000
ROA not before: Wed 03 Apr 2024 06:08:26 +0000
ROA not after: Wed 02 Apr 2025 06:13:26 +0000
asID: 211431
IP address blocks: 81.31.212.0/24 maxlen: 24
2a06:a005:1720::/44 maxlen: 48
2a06:a005:1790::/44 maxlen: 48
2a06:a005:17b0::/44 maxlen: 48
2a06:a005:17c0::/44 maxlen: 48
2a06:a005:17d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:f2:62:cc:22:4a:01:6c:b0:64:b1:b9:59:22:64:8f:c4:23:da:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 3 06:08:26 2024 GMT
Not After : Apr 2 06:13:26 2025 GMT
Subject: CN=60072BFB7CEC57B11DE486C2C9EC029366A5BF43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a9:92:c7:ce:03:67:94:f3:76:d9:f1:06:ce:
3d:16:8a:56:93:f2:c1:37:bb:f1:80:93:ad:36:19:
4d:bf:03:a0:f0:4b:6d:0a:fd:d0:7e:1d:29:a0:9f:
18:ad:39:40:9d:3d:17:fa:86:36:4e:00:e5:64:0c:
10:cb:04:86:97:dd:c3:a9:49:6a:57:52:d2:d1:82:
50:2a:7a:b2:76:6a:8c:95:e9:86:3c:e0:1c:f3:b1:
ca:20:25:33:17:37:ba:6c:03:83:ed:9f:23:d1:90:
3a:1d:51:34:33:de:6c:33:9e:40:e1:0b:4d:3d:83:
cf:e0:e0:a5:66:4b:e2:85:d3:60:a7:12:af:2a:e1:
0c:68:3e:20:e1:c1:80:76:c9:2f:88:6d:2a:0b:67:
d8:3f:89:3d:87:88:b5:fc:e9:a9:e1:ea:71:dc:45:
43:f1:d2:83:71:da:03:39:56:a2:c2:99:ec:49:56:
03:98:a6:f6:6b:a3:4c:f2:dd:2c:d1:82:da:78:8c:
07:a3:94:60:7e:51:5f:54:81:84:b3:62:ef:20:d7:
6b:21:9c:e7:98:67:2a:da:0c:ca:f8:53:e5:ee:9e:
f5:24:a7:7c:81:00:09:52:9e:37:6c:01:2b:a2:71:
52:64:fd:5a:bf:02:3e:52:fd:6e:dd:30:66:dc:03:
34:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:07:2B:FB:7C:EC:57:B1:1D:E4:86:C2:C9:EC:02:93:66:A5:BF:43
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.212.0/24
IPv6:
2a06:a005:1720::/44
2a06:a005:1790::/44
2a06:a005:17b0::-2a06:a005:17df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:a6:bf:df:b8:05:93:5e:65:92:1a:78:81:ba:19:22:13:21:
bc:9e:5e:30:a0:ba:7a:a8:f2:ac:cd:fd:e9:e6:3a:18:06:40:
03:6f:61:ae:0f:43:60:44:cf:ae:4c:6b:6c:3d:ff:12:b5:0a:
7a:52:23:a1:61:74:80:f4:ae:73:51:c1:01:a1:4b:4d:a9:97:
d8:f7:fc:37:94:53:70:a1:16:77:43:25:07:9f:02:30:be:fa:
df:29:7b:90:61:cb:53:c8:b2:73:bf:22:29:1c:5c:82:97:1e:
af:62:5b:68:27:f6:83:11:fe:6c:19:48:0f:e0:36:cf:81:c7:
48:37:36:59:38:f0:c0:b3:7b:5b:ac:57:ec:5b:f3:de:f4:69:
96:cd:63:cd:e0:20:8c:68:0d:db:46:4d:0d:b9:45:bb:21:25:
21:8c:10:c0:ea:9e:3e:1b:43:78:2a:79:91:ac:e8:e5:4f:1a:
fa:e9:80:6b:27:30:3e:e6:1c:1f:96:02:4d:07:6e:46:f0:c2:
fd:55:d7:73:35:a3:e6:75:36:14:69:73:03:e4:70:34:58:37:
a1:28:d9:52:7c:3c:f6:24:77:7f:70:64:be:e1:5f:c7:2b:ab:
69:4b:84:4a:0f:26:6d:b6:57:9b:ac:6d:28:b1:11:fd:4c:be:
c9:66:20:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org