Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212746.roa
File: AS212746.roa (raw, json)
Hash identifier: XIo6EvPocnj9TfKW6Ni+iba+WE9c3kxVeZBU9GPjpGs=
Subject key identifier: 99:AF:15:D8:9D:8D:C8:86:EC:A3:DA:86:3E:82:C7:83:A7:99:B7:B6
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0C2A8899EC606DBB04443E95F8150682751A8351
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212746.roa
Signing time: Tue 05 Nov 2024 03:40:07 +0000
ROA not before: Tue 05 Nov 2024 03:35:07 +0000
ROA not after: Tue 04 Nov 2025 03:40:07 +0000
asID: 212746
IP address blocks: 2a06:a005:1020::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:2a:88:99:ec:60:6d:bb:04:44:3e:95:f8:15:06:82:75:1a:83:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:07 2024 GMT
Not After : Nov 4 03:40:07 2025 GMT
Subject: CN=99AF15D89D8DC886ECA3DA863E82C783A799B7B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:d9:43:c6:1d:a8:7b:92:63:9d:e0:93:b5:
35:2e:0f:0b:98:32:03:49:57:78:4c:04:8c:b2:f8:
71:6e:6c:b6:65:84:43:85:4b:34:e2:f4:3c:30:6c:
04:ff:38:87:43:38:1d:a9:bd:e8:7d:51:4f:50:62:
f9:b2:d5:bf:13:bd:64:26:94:d1:bf:b3:4c:10:e9:
e0:f2:65:82:a8:3d:41:7f:41:a3:82:d2:8f:84:97:
c7:fc:e6:3f:c6:de:7e:b2:d9:e3:55:32:6a:dd:eb:
ff:09:4c:b9:78:e2:b8:11:7b:a1:5b:4d:2f:f8:78:
97:1a:59:e6:5f:fe:37:ac:ba:c4:ad:c0:87:57:5b:
2a:d4:8a:fa:59:e8:b7:31:8d:33:89:9e:2e:ee:60:
7e:02:91:04:ed:39:ee:b8:ad:6b:d9:84:4e:fe:22:
8c:46:06:fe:07:2d:d9:f3:32:71:6a:45:e0:b8:3c:
94:8f:18:f4:2f:b1:52:a7:5d:f1:e2:66:8b:63:1d:
3b:e1:70:ef:97:48:3b:be:c2:78:55:72:f8:b8:f1:
b4:3b:ea:0a:5e:c6:e9:72:d2:95:28:b6:02:13:e2:
f4:b3:59:df:52:b4:9c:66:54:08:06:9e:9a:10:10:
35:21:f1:ee:3c:5b:a4:0e:be:7d:e8:52:d9:7e:3b:
04:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AF:15:D8:9D:8D:C8:86:EC:A3:DA:86:3E:82:C7:83:A7:99:B7:B6
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212746.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1020::/44
Signature Algorithm: sha256WithRSAEncryption
7e:51:61:15:a4:b2:d1:89:64:c5:e2:88:e6:d6:13:44:83:70:
8a:a8:38:56:f7:b5:42:03:40:52:69:78:b1:76:d7:9d:88:cd:
ca:0a:e5:53:4a:b8:65:92:90:59:19:33:4e:f5:5c:4a:b0:5b:
4c:2c:e4:08:1e:1e:b0:6c:a6:81:da:c0:8d:ec:c6:84:87:a1:
09:a5:e0:1c:86:ab:db:f0:b0:be:e0:88:72:32:40:61:8a:62:
ce:84:17:00:fc:f7:8e:98:79:af:ed:fa:70:f3:c4:55:38:f2:
1a:f6:37:75:76:06:48:a4:3e:88:3a:82:1e:c2:88:9c:3a:84:
6a:6d:0a:fe:a2:87:89:1e:15:8a:27:e6:89:c2:3b:ae:e0:43:
b3:e6:64:7f:93:a0:db:ad:03:a8:c5:5d:bd:c4:6a:43:2e:25:
fb:80:3d:ec:9e:b8:e3:b4:e3:8b:63:82:2f:40:28:73:84:54:
5f:60:0b:39:e1:5c:b2:3f:c5:a2:2f:d9:2d:ca:7b:7a:ee:88:
7a:c8:f9:8f:a8:a5:e5:d5:a8:2b:c2:3d:c7:10:bb:53:22:29:
d5:2b:a1:71:11:dc:78:a5:55:2c:57:31:9d:c3:3d:67:f1:74:
44:2a:c5:28:e9:4c:11:91:e3:4a:02:46:a9:0a:2d:73:45:c7:
07:6e:95:30
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUDCqImexgbbsERD6V+BUGgnUag1EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDdaFw0yNTExMDQwMzQwMDdaMDMxMTAvBgNV
BAMTKDk5QUYxNUQ4OUQ4REM4ODZFQ0EzREE4NjNFODJDNzgzQTc5OUI3QjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDG9lDxh2oe5JjneCTtTUuDwuY
MgNJV3hMBIyy+HFubLZlhEOFSzTi9DwwbAT/OIdDOB2pveh9UU9QYvmy1b8TvWQm
lNG/s0wQ6eDyZYKoPUF/QaOC0o+El8f85j/G3n6y2eNVMmrd6/8JTLl44rgRe6Fb
TS/4eJcaWeZf/jesusStwIdXWyrUivpZ6LcxjTOJni7uYH4CkQTtOe64rWvZhE7+
IoxGBv4HLdnzMnFqReC4PJSPGPQvsVKnXfHiZotjHTvhcO+XSDu+wnhVcvi48bQ7
6gpexuly0pUotgIT4vSzWd9StJxmVAgGnpoQEDUh8e48W6QOvn3oUtl+OwTDAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUma8V2J2NyIbso9qGPoLHg6eZt7YwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEyNzQ2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBRAgMA0GCSqGSIb3DQEBCwUAA4IBAQB+UWEV
pLLRiWTF4ojm1hNEg3CKqDhW97VCA0BSaXixdtediM3KCuVTSrhlkpBZGTNO9VxK
sFtMLOQIHh6wbKaB2sCN7MaEh6EJpeAchqvb8LC+4IhyMkBhimLOhBcA/PeOmHmv
7fpw88RVOPIa9jd1dgZIpD6IOoIewoicOoRqbQr+ooeJHhWKJ+aJwjuu4EOz5mR/
k6DbrQOoxV29xGpDLiX7gD3snrjjtOOLY4IvQChzhFRfYAs54VyyP8WiL9ktynt6
7oh6yPmPqKXl1agrwj3HELtTIinVK6FxEdx4pVUsVzGdwz1n8XREKsUo6UwRkeNK
AkapCi1zRccHbpUw
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:24 2024 by rpki-client on console-fra.rpki-client.org