Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211843.roa
File: AS211843.roa (raw, json)
Hash identifier: RH5qakWx/oiKTnaUwOqV+ICKurdkgMqVozCAwIVzv1o=
Subject key identifier: 2D:AF:BA:38:07:95:E6:FC:B6:A3:03:7E:23:F6:C7:53:90:15:2F:D1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5CCC8E36216FF3B924EB7B7F3167074B3E2DA76C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211843.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 211843
IP address blocks: 2a06:a005:a13::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:cc:8e:36:21:6f:f3:b9:24:eb:7b:7f:31:67:07:4b:3e:2d:a7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=2DAFBA380795E6FCB6A3037E23F6C75390152FD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e4:34:0e:9d:92:89:2c:43:db:9f:16:e0:e1:
ac:5c:62:75:bf:e8:33:b6:73:6a:42:66:68:05:51:
26:6b:d7:01:b3:ff:d9:e0:aa:fa:92:49:13:59:3c:
dc:3c:10:84:5c:55:bf:5a:13:62:28:0a:d6:f7:c4:
77:4c:82:ce:2c:0c:14:62:d2:2a:43:e4:f4:d0:c2:
88:b9:ef:c9:80:0a:d7:f7:26:bc:d7:ff:04:bc:fc:
a7:60:2c:fa:a3:8a:b7:c6:68:76:62:4c:39:60:40:
8e:04:46:b4:18:68:ea:0a:ad:02:c2:89:3c:0a:40:
ea:76:d5:b4:1d:93:19:a1:4c:66:d3:59:49:6f:0b:
4e:2d:67:51:b8:17:6d:fc:16:d8:a6:3a:8c:4b:1d:
b1:ff:e3:4c:d9:d0:03:a6:62:a1:cc:59:99:a6:40:
50:57:88:0f:e7:72:2c:43:73:e3:8f:7d:f3:cc:08:
48:0f:0a:61:39:12:ef:4d:5c:cc:1c:82:e1:53:25:
37:55:b7:7e:b2:b7:58:2c:3e:82:92:81:2e:fd:0a:
3e:e3:50:34:03:93:d8:c0:06:e6:18:b9:09:a4:72:
b2:45:72:2b:28:23:95:08:de:8a:d4:bf:4f:f5:9c:
c4:e8:83:c3:54:b2:84:09:51:d2:b3:fe:17:b0:54:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AF:BA:38:07:95:E6:FC:B6:A3:03:7E:23:F6:C7:53:90:15:2F:D1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211843.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a13::/48
Signature Algorithm: sha256WithRSAEncryption
55:ca:f6:00:64:d0:06:8b:27:78:37:1f:6a:86:94:1c:8d:e8:
c5:03:d9:5d:7d:e4:41:f3:66:c7:aa:87:4d:ab:b6:5f:2a:50:
8f:d8:c6:b1:d0:cf:ca:76:b5:b2:1b:29:44:15:e6:19:12:fd:
d2:fb:38:9c:d6:5e:90:6a:b2:2b:fb:54:f9:88:2e:66:fd:08:
28:19:64:27:e3:4b:c6:bf:20:30:a2:78:be:3c:20:61:2c:e8:
7f:5c:b2:74:00:ec:61:57:1c:29:5a:67:ec:ec:4d:92:29:58:
80:e3:3f:53:3e:ac:6b:82:b9:d6:09:28:5f:3f:4b:8c:1c:a5:
d4:28:9b:7f:27:e1:47:5c:6a:27:c4:a7:f6:41:c1:5c:e7:45:
71:b2:c0:45:70:4b:5b:c3:30:10:f9:dd:23:66:87:1d:21:aa:
a9:9b:c0:e9:e7:27:cc:5a:09:5d:81:50:77:b9:f9:8d:42:92:
40:71:8f:40:72:bc:22:b5:23:ee:f2:9a:f1:78:12:71:5c:f2:
e4:96:1e:06:87:9e:77:d8:1b:cd:f9:75:3e:94:7a:57:7e:7f:
c1:aa:1e:9c:5c:ac:27:21:6a:16:84:71:5d:c9:fd:12:f6:22:
c4:9c:f4:d1:53:07:60:cd:33:28:51:23:93:68:22:71:5b:d7:
2c:66:5f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:24 2024 by rpki-client on console-fra.rpki-client.org