Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
File: AS211548.roa (raw, json)
Hash identifier: PMMBLkGfU2MU2QEdc7dER85XkzZteKOWxq74BUe85Cg=
Subject key identifier: 20:27:10:21:3E:74:55:7D:C6:B7:0B:FB:E9:14:D7:FC:14:59:82:C4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 22D13EE0D37EA33827DAC3DF8FF099153A970A13
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 211548
IP address blocks: 2a06:a005:d27::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:d1:3e:e0:d3:7e:a3:38:27:da:c3:df:8f:f0:99:15:3a:97:0a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=202710213E74557DC6B70BFBE914D7FC145982C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d1:29:6c:83:5a:80:09:52:49:c0:a2:8a:c1:
6a:f9:a1:11:8f:97:a9:cf:85:e3:6c:95:33:72:30:
3e:3c:5b:89:a4:4c:7a:02:74:2b:d1:5c:58:52:e4:
02:17:19:ae:15:f2:68:b2:d6:cd:82:26:b5:c8:96:
a4:bf:18:58:4e:d1:8a:8e:ca:ae:f8:35:a2:d0:c7:
0f:d4:e7:e3:40:41:b9:2e:c3:fc:b5:55:69:8b:c9:
10:d7:02:d7:51:f6:ca:d8:7e:2f:6d:6a:11:6f:59:
e9:39:83:bd:e6:64:13:20:be:23:dc:3a:b8:e2:54:
a3:e5:99:50:08:b7:ea:ec:47:2e:60:84:86:3d:57:
25:7d:a4:e6:67:84:05:18:17:16:2b:fc:55:68:67:
49:29:12:a6:c2:8d:15:1c:4d:95:0e:9d:75:bb:0d:
48:70:d9:c5:db:02:ff:3a:98:d8:43:75:ed:7c:9c:
e4:00:a9:f0:40:ec:0d:d0:0f:99:88:af:3d:4b:2c:
55:41:6d:45:66:fb:8d:81:63:1d:23:96:06:1a:b9:
80:ee:6b:60:b3:de:52:f8:44:3c:91:3b:ca:2b:e2:
d9:d7:a8:79:28:47:25:13:0a:d1:15:29:0a:c0:5b:
9b:1d:b5:35:56:f2:f1:7d:91:4a:82:5a:af:0b:56:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:27:10:21:3E:74:55:7D:C6:B7:0B:FB:E9:14:D7:FC:14:59:82:C4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211548.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d27::/48
Signature Algorithm: sha256WithRSAEncryption
6f:8f:0e:57:48:98:66:a6:bf:0f:b6:61:9c:c4:be:97:45:4a:
ed:3e:30:8e:d5:b3:a0:13:b6:ae:6f:b5:e8:e5:de:1e:68:32:
4d:da:dc:f3:c9:c9:93:82:46:67:2b:75:6a:16:b3:96:0d:48:
37:d1:74:16:86:7c:e5:68:01:9c:eb:de:2c:3f:17:02:21:13:
a5:bb:23:21:e6:7c:ad:d6:3a:16:5c:f0:dd:c4:4b:96:c6:5f:
c9:68:58:e3:f5:d6:8a:85:09:85:03:9f:83:8d:34:e6:94:17:
89:3c:1f:e4:69:50:e7:48:fe:26:95:c2:5f:a4:41:86:c2:36:
77:64:08:cb:09:ce:3f:4b:89:18:fe:f7:c2:aa:97:71:9d:a8:
11:a1:29:43:5b:e4:7c:62:71:9d:6e:0d:22:09:5e:48:e5:5e:
20:97:b4:7b:48:cb:0a:96:c7:f8:39:e7:e4:98:88:35:2a:09:
ff:d2:08:11:32:1b:f6:f2:69:01:c3:77:5d:4b:d8:d0:59:3c:
dd:9d:d8:03:11:ef:a9:12:ff:22:8d:54:fd:4d:57:80:fb:99:
2e:ce:16:03:dd:39:f1:9f:f1:89:9e:b3:33:52:f8:4e:4e:6d:
cd:11:28:2b:50:f8:8b:d6:1f:ed:bc:ba:62:19:93:25:c6:bf:
6a:6b:46:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org