Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211535.roa
File: AS211535.roa (raw, json)
Hash identifier: DVOAMV14b7Q3CUp5kjK97q+uMUDdPveMuWQneE05zjg=
Subject key identifier: 45:9B:4A:26:C5:0A:C6:FD:1C:40:6D:4D:E5:75:09:AB:D2:B2:D9:C1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 46AF60A3E84238B0DE36BDAC138D280048710CA1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211535.roa
Signing time: Tue 05 Dec 2023 02:44:16 +0000
ROA not before: Tue 05 Dec 2023 02:39:16 +0000
ROA not after: Tue 03 Dec 2024 02:44:16 +0000
asID: 211535
IP address blocks: 2a06:a005:1670::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:af:60:a3:e8:42:38:b0:de:36:bd:ac:13:8d:28:00:48:71:0c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:16 2023 GMT
Not After : Dec 3 02:44:16 2024 GMT
Subject: CN=459B4A26C50AC6FD1C406D4DE57509ABD2B2D9C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:79:f1:9f:8a:c0:a3:dd:b0:34:ff:d9:b4:
45:0a:65:df:19:1e:2e:1b:53:9b:fe:6d:17:52:17:
13:4a:8c:ee:92:3f:a2:ad:5c:89:c7:01:9b:e5:97:
a1:ed:54:12:b4:55:6b:b1:d1:2d:68:43:6a:6e:df:
d5:46:dd:d4:2f:4a:72:22:12:a7:71:1e:4f:98:e3:
d4:95:ee:4b:0b:50:01:4e:51:2e:49:7b:04:70:71:
49:7a:7f:93:80:c4:5e:8c:b8:09:1a:d0:a7:8b:11:
ce:bb:51:d8:23:77:08:9d:4f:69:48:d0:28:14:cc:
7c:78:55:d3:f1:37:2e:83:71:5e:81:57:eb:d4:9b:
2d:a2:7d:2b:71:77:fd:d5:ab:67:31:c7:e3:8e:37:
69:a3:e2:12:da:f4:b1:51:5e:ea:7c:f8:68:4c:37:
f6:97:b2:12:6c:db:8a:50:85:a0:b8:2d:ee:78:1c:
df:58:25:fd:74:ea:b1:e0:5e:3a:32:d3:51:7d:6f:
68:db:77:e8:86:ea:79:23:7a:0e:e0:70:8b:65:fb:
29:46:79:3f:0e:19:1e:a3:52:ef:02:7e:ae:5e:cd:
73:fe:ae:f3:6e:35:4c:93:c8:67:ba:ef:6c:e5:eb:
ea:c3:e3:b7:88:27:5d:78:91:cc:e1:04:e3:04:7d:
45:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9B:4A:26:C5:0A:C6:FD:1C:40:6D:4D:E5:75:09:AB:D2:B2:D9:C1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1670::/44
Signature Algorithm: sha256WithRSAEncryption
c0:5f:61:c4:62:ae:a6:ff:26:ba:3a:3f:93:80:b4:ca:38:84:
46:1d:5c:67:76:d9:ef:cd:f2:00:5b:cc:19:03:d0:48:9b:eb:
25:66:81:e5:59:79:c1:a6:d7:bb:bb:2f:26:00:b8:cd:3a:d3:
de:47:5f:f8:ab:43:d8:b3:71:e7:5f:c2:34:b5:62:7f:b2:72:
9b:0a:41:76:70:3c:4c:cb:dd:dc:8a:ac:71:6f:62:89:8c:a2:
57:55:30:9d:e8:1b:0e:f4:9d:66:28:b2:98:22:d4:0b:f7:98:
0c:1c:f5:e6:0c:27:80:47:c7:60:f5:10:88:1b:fe:54:a9:c5:
75:d6:68:45:00:5a:f0:c8:35:cb:c6:04:15:86:f7:30:ed:c9:
f9:99:0b:ba:72:41:7f:53:f2:92:42:5e:11:42:72:90:6f:9f:
23:b8:7d:11:a8:73:33:12:74:b4:64:5c:6c:80:03:8d:d1:58:
9a:4d:f2:3a:ce:97:96:2a:3b:5d:ae:22:bb:64:84:a5:19:cc:
39:25:53:d4:e7:34:7e:2c:43:ff:79:53:8c:38:a7:2b:ea:c7:
38:0b:d7:fd:57:69:8d:5e:fe:85:cd:dd:8d:cf:7b:72:d5:24:
fd:33:9f:c1:63:f5:99:0b:8f:ca:27:0f:26:b3:ec:4c:a2:25:
6e:4b:7d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org