Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
File: AS212149.roa (raw, json)
Hash identifier: 02cIcKQV1c9bWJbg2Y9LDKpzf+8XvFzLzCBnxYwQ0fs=
Subject key identifier: 9E:A6:12:76:D6:BB:C5:5D:59:1F:EA:38:01:3C:2D:8A:00:FC:19:C5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5A2B3FF7D65FF3B491286C70BA56B44887366733
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
Signing time: Fri 26 Apr 2024 22:43:59 +0000
ROA not before: Fri 26 Apr 2024 22:38:59 +0000
ROA not after: Fri 25 Apr 2025 22:43:59 +0000
asID: 212149
IP address blocks: 2a05:dfc1:b00b::/48 maxlen: 48
2a06:1280:b00b::/48 maxlen: 48
2a06:1285:b00b::/48 maxlen: 48
2a06:9f43:b00b::/48 maxlen: 48
2a06:a001:b00b::/48 maxlen: 48
2a09:54c1:b00b::/48 maxlen: 48
2a09:54c2:b00b::/48 maxlen: 48
2a09:54c3:b00b::/48 maxlen: 48
2a09:54c4:b00b::/48 maxlen: 48
2a09:54c5:b00b::/48 maxlen: 48
2a09:54c6:b00b::/48 maxlen: 48
2a09:54c7:b00b::/48 maxlen: 48
2a0a:6047:b00b::/48 maxlen: 48
2a0b:9e40:b00b::/48 maxlen: 48
2a0b:9e41:b00b::/48 maxlen: 48
2a0b:9e42:b00b::/48 maxlen: 48
2a0b:9e43:b00b::/48 maxlen: 48
2a0b:9e44:b00b::/48 maxlen: 48
2a0b:9e45:b00b::/48 maxlen: 48
2a0b:9e46:b00b::/48 maxlen: 48
2a0b:9e47:b00b::/48 maxlen: 48
2a0d:d905:b00b::/48 maxlen: 48
2a0d:d906:b00b::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:2b:3f:f7:d6:5f:f3:b4:91:28:6c:70:ba:56:b4:48:87:36:67:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 26 22:38:59 2024 GMT
Not After : Apr 25 22:43:59 2025 GMT
Subject: CN=9EA61276D6BBC55D591FEA38013C2D8A00FC19C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7f:6b:bd:f8:2d:15:5d:7f:ae:fa:4b:48:f0:
18:dd:b6:6b:36:52:83:eb:f3:c7:34:d5:4c:e2:87:
79:4c:c0:ae:eb:41:0f:73:b3:53:11:eb:7e:56:3b:
a1:aa:2a:b9:ad:a6:e5:13:e4:04:28:be:1c:70:8a:
13:08:a5:c4:93:0a:22:87:ca:27:c1:8f:23:a7:9e:
1f:c4:70:96:e5:b1:f7:0f:82:4d:b1:98:c4:7a:a8:
c5:e4:3c:d7:2c:e2:2a:b2:17:45:f9:66:e1:2e:ec:
69:d1:a7:4b:9e:8c:11:47:03:8b:4c:e1:68:92:e7:
55:54:7e:3b:83:6b:a0:59:b8:e3:b6:3a:2a:83:7c:
12:27:e5:0d:54:8a:dd:23:bd:b3:f5:80:94:26:04:
0c:4e:cb:17:09:f8:db:b7:6b:f6:bc:cd:32:4a:b3:
44:a6:0b:a9:83:09:46:14:2a:5b:1d:95:4f:67:91:
e1:52:29:81:d3:5d:2c:83:86:9e:84:52:69:53:4b:
ea:a9:16:cf:de:d4:0d:63:c8:23:d3:52:fa:84:7b:
07:26:4f:2d:57:88:a4:e7:59:eb:98:a9:aa:ad:58:
74:f5:97:d6:9d:f5:ed:0b:3a:98:5b:45:45:37:cd:
ac:22:81:b4:68:9c:15:ef:0d:ad:de:36:30:ac:78:
30:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A6:12:76:D6:BB:C5:5D:59:1F:EA:38:01:3C:2D:8A:00:FC:19:C5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:b00b::/48
2a06:1280:b00b::/48
2a06:1285:b00b::/48
2a06:9f43:b00b::/48
2a06:a001:b00b::/48
2a09:54c1:b00b::/48
2a09:54c2:b00b::/48
2a09:54c3:b00b::/48
2a09:54c4:b00b::/48
2a09:54c5:b00b::/48
2a09:54c6:b00b::/48
2a09:54c7:b00b::/48
2a0a:6047:b00b::/48
2a0b:9e40:b00b::/48
2a0b:9e41:b00b::/48
2a0b:9e42:b00b::/48
2a0b:9e43:b00b::/48
2a0b:9e44:b00b::/48
2a0b:9e45:b00b::/48
2a0b:9e46:b00b::/48
2a0b:9e47:b00b::/48
2a0d:d905:b00b::/48
2a0d:d906:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
6d:a9:5f:7e:af:80:57:cf:a3:31:9b:4f:3d:de:10:20:93:3e:
c6:ff:90:6e:b3:44:13:11:76:63:86:35:51:0b:d6:e4:06:4f:
1c:c6:d6:6a:1f:04:ea:f6:9c:35:bb:d4:ee:11:c8:a4:bd:c7:
81:fe:11:da:19:0b:c1:36:88:f1:e6:f4:0b:4d:37:29:6b:65:
72:cd:0a:3c:6c:62:2a:9a:f6:25:75:e7:2b:7f:ec:57:85:a5:
4c:a1:c9:79:85:16:88:16:c4:fb:e7:43:bf:70:9b:a3:56:5b:
fe:3d:45:7b:b6:37:df:cf:39:74:e1:5d:49:7e:88:75:9b:50:
45:1e:4f:9f:20:9f:af:56:c5:de:ea:f7:a1:ce:b8:b9:0a:16:
6c:41:e9:9f:cb:78:d1:bc:ef:82:81:3f:7b:aa:88:72:b3:ee:
10:d1:81:2d:2c:3e:65:58:c4:61:aa:6e:20:84:f2:ee:43:15:
d8:0e:59:8c:e6:27:b6:2c:88:ab:e0:ea:7e:ea:8d:3f:46:c8:
a2:71:0c:8a:cb:a4:29:bd:34:ce:de:c3:fc:6c:02:56:7f:4e:
9f:63:70:bd:ae:ea:09:bf:28:32:51:56:8f:be:cb:e4:80:b9:
8a:65:82:72:60:17:8b:84:be:91:d1:33:57:07:c9:16:57:03:
5b:e7:42:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org