Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
File: AS212387.roa (raw, json)
Hash identifier: zxtUbRgXgzmZz3Kn2pta+B+aLcmYrNgv80CE9T/t1Aw=
Subject key identifier: 68:45:8F:1F:4B:2E:35:66:C1:84:25:89:72:39:3C:F3:2B:7D:CF:34
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3AAC9B8C7EB86EC7C4D16F301F1246AE754287FD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
Signing time: Tue 05 Dec 2023 02:44:11 +0000
ROA not before: Tue 05 Dec 2023 02:39:11 +0000
ROA not after: Tue 03 Dec 2024 02:44:11 +0000
asID: 212387
IP address blocks: 2a06:a005:9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ac:9b:8c:7e:b8:6e:c7:c4:d1:6f:30:1f:12:46:ae:75:42:87:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:11 2023 GMT
Not After : Dec 3 02:44:11 2024 GMT
Subject: CN=68458F1F4B2E3566C184258972393CF32B7DCF34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:d6:63:b7:bf:d8:16:cc:90:91:37:03:e3:
19:9b:04:e3:a6:25:62:16:97:c7:17:b1:31:26:de:
21:ef:d5:8c:12:a7:6a:0d:74:85:e6:9c:8d:b3:c3:
54:00:64:47:0b:1f:c7:8a:56:dd:6b:42:2c:85:f5:
e2:76:f9:73:84:12:f4:99:9b:d0:b1:4c:bc:4c:58:
98:00:85:4b:77:ad:29:4f:cf:4e:a1:01:37:cd:3c:
b3:47:86:cb:51:0c:36:90:2e:e4:1c:29:0f:f5:6b:
0e:8c:f7:5f:80:6a:ed:de:8b:91:3c:ec:67:f7:a0:
e0:3f:d8:ac:da:2e:ee:f4:82:45:98:5f:4a:1a:82:
31:0f:d7:5c:c3:f6:9b:6e:ad:0b:b6:df:6f:59:48:
d8:3f:b8:d4:05:7d:9f:cb:d7:46:fe:32:9f:32:94:
c4:59:39:60:b2:64:e8:81:e5:f5:72:f6:14:7f:ac:
68:44:9f:34:89:e8:a3:62:7c:85:e4:00:a6:8e:87:
21:7b:9f:9b:f7:6c:89:fd:f3:6a:e6:90:c6:68:c5:
98:37:40:f1:49:a4:c5:e8:35:e4:64:ed:86:58:b5:
b5:22:c3:1e:ad:3d:a4:2d:98:09:9f:28:b7:fb:ce:
f3:c2:39:57:98:20:72:9d:21:35:2c:0a:24:7b:7a:
3c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:45:8F:1F:4B:2E:35:66:C1:84:25:89:72:39:3C:F3:2B:7D:CF:34
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:9::/48
Signature Algorithm: sha256WithRSAEncryption
01:7a:53:89:f3:a2:d5:31:12:45:82:c9:b7:92:b8:f1:9b:44:
69:92:6e:04:e5:27:69:23:e8:fa:ae:4b:87:29:30:ff:62:a3:
a1:1d:2b:e8:f7:73:e1:cc:fd:ed:04:38:17:eb:dd:b2:b2:ed:
3b:82:8f:55:eb:1a:a3:d5:89:59:04:ff:6f:c9:14:d1:e6:db:
14:20:f6:07:83:7f:b4:72:f7:83:88:a7:7d:61:cb:d7:af:4b:
9c:b3:79:a4:b4:86:d4:65:1b:27:7a:93:d6:4c:00:51:bf:73:
19:f5:80:97:c7:e2:83:2e:e6:bc:59:50:54:4a:53:71:79:05:
93:a0:a5:0b:39:3c:e8:b4:59:44:0f:2e:8c:0c:6f:ee:64:1a:
e7:fa:23:99:81:61:08:45:18:41:ca:4f:49:87:65:cd:c8:77:
3a:c0:3c:30:55:7c:f2:84:ec:c9:a1:24:1b:2e:b3:c9:eb:1f:
9b:b0:b3:df:3e:1f:c3:10:2c:30:03:a4:09:90:d1:d9:04:c1:
2c:8e:79:dd:2c:ed:c6:05:6b:fe:2e:e0:8e:f3:0f:ee:cb:83:
5a:fd:34:fc:d6:13:b7:2b:81:69:8e:1e:41:c0:4a:a3:16:d4:
30:c2:9a:dd:ba:2f:e7:e2:5b:b4:1a:62:6f:c3:b4:72:6f:d3:
d7:ba:8e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:56 2024 by rpki-client on console-fra.rpki-client.org