Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211665.roa
File: AS211665.roa (raw, json)
Hash identifier: mVagbGaagiWtH13RhdaWHmsQIscFEZhZfeOvfYppjBc=
Subject key identifier: E5:21:DD:BB:5F:95:22:A1:70:15:99:3A:04:22:EB:15:EB:8D:5A:86
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 55B73A8EEB107F799CD09B18E0105250A68D982C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211665.roa
Signing time: Sun 10 Dec 2023 09:44:21 +0000
ROA not before: Sun 10 Dec 2023 09:39:21 +0000
ROA not after: Sun 08 Dec 2024 09:44:21 +0000
asID: 211665
IP address blocks: 2a06:a005:2aa0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:b7:3a:8e:eb:10:7f:79:9c:d0:9b:18:e0:10:52:50:a6:8d:98:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 10 09:39:21 2023 GMT
Not After : Dec 8 09:44:21 2024 GMT
Subject: CN=E521DDBB5F9522A17015993A0422EB15EB8D5A86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1f:f5:ce:7c:64:da:e1:fa:86:f2:3f:ae:77:
66:07:55:c1:dc:f5:e3:12:48:41:96:bf:40:5d:a5:
2c:0f:8f:cf:9a:7b:cc:fa:8f:47:bb:11:54:4b:31:
78:13:10:f4:bf:63:99:97:f2:5e:23:93:27:32:db:
91:2b:e7:e3:b4:7b:c1:de:5b:16:9e:92:30:3c:89:
21:b2:f7:53:a9:5a:75:96:8e:68:fc:34:86:50:c5:
49:b3:4e:7c:aa:19:37:a0:bb:68:bd:11:3c:03:e2:
1b:74:ce:d2:bf:3a:71:ae:7d:5c:95:cd:86:71:fd:
3b:6e:fd:04:ad:61:2b:c1:b1:ab:12:72:42:47:d5:
a5:c1:3e:6d:00:51:e3:55:0f:dd:f8:f1:9a:28:f7:
56:64:8f:28:87:d4:0d:54:ea:73:8d:4f:29:15:23:
05:98:d3:19:b4:03:82:df:3a:1d:26:99:da:0a:3c:
ef:76:05:a9:80:6e:be:b3:d1:76:17:10:2f:33:93:
e3:bb:99:55:a4:dd:b3:53:b4:8e:3f:12:be:38:75:
fb:f8:a5:78:55:83:65:4a:31:13:75:6a:dd:01:48:
fc:da:e7:8f:30:ba:77:f1:2f:bf:32:c9:f5:38:19:
79:9a:72:3e:89:b2:2b:5f:3b:f3:c4:97:78:d8:be:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:21:DD:BB:5F:95:22:A1:70:15:99:3A:04:22:EB:15:EB:8D:5A:86
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211665.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2aa0::/44
Signature Algorithm: sha256WithRSAEncryption
3d:c3:83:b8:ee:d9:44:ec:be:1a:f6:45:af:ed:0d:52:d9:bb:
4e:87:28:3e:2f:d3:8a:79:9c:14:4a:98:bf:c6:6c:8f:03:54:
c5:51:ec:f9:ef:71:e5:10:4d:57:5d:37:89:c4:1b:ae:a8:41:
48:ea:4d:26:1e:e4:72:bc:dc:9b:a6:14:fe:6f:e4:90:46:08:
16:10:24:a5:27:b8:db:f7:e1:9b:c4:b4:0b:d9:d2:be:b1:f2:
3f:20:0b:87:f0:30:6b:e1:85:10:58:18:28:92:17:29:2e:db:
89:ca:ea:a4:3d:58:3d:76:c7:b8:df:02:b6:c3:5e:fb:28:a1:
99:2c:92:f7:2c:fc:c7:cc:19:5d:38:3d:2e:26:2b:83:a4:e6:
f7:c5:a8:d8:1d:d9:7a:04:54:21:64:ad:ca:4e:33:38:e4:1c:
47:23:a0:09:3c:4b:70:99:e2:a6:84:5c:d8:0c:c4:cf:62:be:
44:af:f4:fc:4d:d4:47:c6:b9:5b:6c:c5:19:01:f6:f5:6e:da:
4a:69:1f:04:99:08:a1:ad:0e:80:a6:cf:68:7c:de:03:8f:05:
70:d0:60:86:6d:1c:4a:87:f0:bd:a3:7e:79:03:b1:f0:d3:1c:
0d:ae:b4:99:15:ba:8e:d5:b7:45:69:00:ad:44:5e:48:db:c7:
97:69:7c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org