Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
File: AS211548.roa (raw, json)
Hash identifier: MPGd3N2H1CKtwgpOZBv3aZ2MzPs52SiEHTcO3r+gFBg=
Subject key identifier: E4:63:ED:2D:53:B8:1C:B2:A5:33:CB:A5:45:94:B2:41:82:34:BE:BD
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 43DCAF07CF3D9E68ABEF4C509FB36FBFD17609EF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
Signing time: Tue 05 Dec 2023 02:44:09 +0000
ROA not before: Tue 05 Dec 2023 02:39:09 +0000
ROA not after: Tue 03 Dec 2024 02:44:09 +0000
asID: 211548
IP address blocks: 2a06:a005:d27::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:dc:af:07:cf:3d:9e:68:ab:ef:4c:50:9f:b3:6f:bf:d1:76:09:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:09 2023 GMT
Not After : Dec 3 02:44:09 2024 GMT
Subject: CN=E463ED2D53B81CB2A533CBA54594B2418234BEBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:30:45:74:44:e0:ad:bc:03:8d:d8:e3:8e:5f:
cf:6c:2a:d4:82:70:85:4e:3f:71:fc:e3:35:00:22:
d3:0f:c8:09:a4:e0:89:79:3d:56:dc:a2:62:95:45:
21:f4:bb:7d:c5:6d:26:f5:b7:f5:b0:e1:bf:3a:ee:
9e:d1:a2:e3:0c:46:8d:d4:03:26:34:25:af:34:69:
9a:3d:12:a6:eb:82:93:41:c8:b4:1a:d3:2a:77:c1:
1b:73:6c:74:1c:ba:78:24:d4:3c:4a:f9:99:09:c0:
78:44:f3:fc:05:9b:86:8e:4d:9b:81:2c:76:fc:3d:
ff:71:b5:33:07:69:32:21:74:8b:3e:78:60:47:9b:
b1:5e:26:93:5b:0c:64:4c:bd:f7:84:9a:ae:96:85:
c8:f3:e5:64:91:30:1a:34:90:5f:e0:bf:3b:bf:f6:
91:b7:32:ec:85:b3:c6:4e:42:92:ca:f4:38:10:ea:
46:a3:89:fd:e2:48:cb:a4:27:2e:cb:e7:96:ca:24:
13:c1:60:9a:2c:ff:c5:76:ab:e8:b2:99:07:6b:9e:
2f:56:7a:d1:b2:01:4e:7c:55:6c:24:e2:38:77:6c:
13:4a:97:29:6d:b2:c0:2b:1e:a9:d7:32:35:c5:13:
c6:b3:18:a5:e5:49:b3:9e:93:1d:c9:0b:0f:46:b3:
de:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:63:ED:2D:53:B8:1C:B2:A5:33:CB:A5:45:94:B2:41:82:34:BE:BD
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d27::/48
Signature Algorithm: sha256WithRSAEncryption
20:4a:a5:3d:56:f6:97:9b:8c:a1:71:1a:e6:24:d3:f1:ba:bb:
f9:06:ca:a0:e5:60:49:46:ad:d3:e3:a5:4a:2d:f5:14:07:62:
91:59:00:bd:b9:50:77:f0:33:bb:01:a6:0b:4a:22:a2:e1:99:
ba:48:81:84:68:1b:f3:a6:6a:ca:9b:4e:28:b9:b5:b5:80:26:
1b:b1:88:f4:b5:50:7a:0b:51:92:5d:44:ac:e0:cd:58:1f:0c:
5e:02:31:c7:27:ee:2a:26:8c:87:5f:ef:74:83:a8:ac:33:0c:
47:81:3b:da:c8:a6:58:09:12:e1:1d:c3:69:7f:a0:fd:f5:f1:
77:c3:b9:97:bc:70:3d:ec:ad:b1:51:53:87:7e:49:2f:26:6a:
77:6c:7a:be:32:a3:6e:c3:96:02:9d:97:61:4c:73:73:a0:33:
3b:ce:0e:12:c4:10:68:24:af:01:fe:f5:7f:3e:f8:ae:9c:24:
a8:b0:9a:6d:e1:39:3d:d9:b3:0f:40:7f:c4:8e:74:6d:82:d6:
67:9f:64:01:fd:9b:5c:14:9e:fd:65:0e:e1:e8:fe:a7:c8:be:
67:5b:10:33:0d:bd:d6:e3:a6:07:a5:b1:42:04:92:57:f7:f9:
05:98:bc:1f:09:7b:17:9e:8b:f3:bd:dd:d6:ea:f3:a2:58:65:
c0:e7:4c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org