Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212789.roa
File: AS212789.roa (raw, json)
Hash identifier: TgwPX22FQ4nX9uwbLBAEHdnObNM2DSDuxvlWX3wVS8E=
Subject key identifier: CA:E7:16:5D:FC:77:11:C8:DE:79:9B:1E:15:C8:4C:73:7E:D6:42:CC
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3ABA5806C59A0D7A70659AB27D62FA846E9B5E10
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212789.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 212789
IP address blocks: 2a06:a005:1ca0::/44 maxlen: 48
2a06:a005:1cb0::/44 maxlen: 48
2a06:a005:1cc0::/44 maxlen: 48
2a06:a005:1cd0::/44 maxlen: 48
2a06:a005:1ce0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ba:58:06:c5:9a:0d:7a:70:65:9a:b2:7d:62:fa:84:6e:9b:5e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=CAE7165DFC7711C8DE799B1E15C84C737ED642CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:b8:41:7d:fa:55:94:82:0c:9d:88:d5:ae:
37:a8:38:e8:5f:cd:94:ae:72:94:54:fe:67:e0:ee:
22:f7:0b:d9:22:6d:da:d7:1d:2e:7b:3f:c7:ad:ab:
d4:e7:d9:da:83:fd:81:3a:c3:c5:96:af:1e:46:4d:
56:95:cc:4a:cc:40:7e:6b:c3:4c:00:ed:fb:10:f7:
c2:3b:53:8a:4b:97:74:16:c0:7f:de:2c:f3:8b:71:
ed:79:5d:df:83:4f:08:fc:56:6f:48:d1:5b:f2:5b:
6e:b9:20:25:31:51:68:c7:4c:37:a5:70:cd:2f:5d:
0e:62:dd:38:e7:da:c4:d6:f0:df:f4:55:e4:cd:a1:
63:27:ec:d1:69:82:be:aa:19:14:dc:7a:ef:71:a8:
76:fc:65:7a:e1:0d:1c:06:a4:08:06:be:31:c8:4c:
5d:a0:ad:53:13:c7:6f:a8:a0:b4:f3:f0:d0:bf:7e:
8c:8f:75:28:c4:91:cb:1d:0f:18:08:73:f6:93:d7:
c6:59:88:e4:37:37:ae:4f:23:2d:d3:4d:99:ac:cb:
79:9f:56:25:3c:c3:2c:a7:d1:e5:c4:67:b2:11:5f:
3c:4a:ef:f2:40:16:58:ab:5e:ab:1d:da:35:e5:71:
a3:2a:ad:d5:43:a6:ec:d9:fe:af:15:a7:62:bd:2a:
1e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E7:16:5D:FC:77:11:C8:DE:79:9B:1E:15:C8:4C:73:7E:D6:42:CC
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212789.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1ca0::-2a06:a005:1cef:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
30:7c:4a:5f:f9:80:d6:1b:d0:62:7e:5a:dc:64:b1:73:1f:6e:
be:cc:62:57:a8:5f:6c:9b:34:d1:ec:2e:80:07:81:5d:6e:d9:
18:42:c8:9d:20:b1:ac:41:65:3a:45:33:8b:43:03:c4:53:7b:
d0:75:df:0b:6f:c3:e3:cf:d7:23:a8:b5:ed:13:4e:5e:16:d4:
08:fd:48:ad:6b:9a:10:9c:94:f7:84:b9:a8:62:9c:aa:2f:c3:
6d:8d:f3:2e:a7:76:ff:a6:fb:46:fe:13:a1:ab:a2:36:75:08:
46:d7:74:1c:7b:c1:42:08:c8:df:c2:79:cf:f9:a0:da:51:5c:
47:2f:12:a8:e4:50:e7:6b:9d:53:c2:6c:6a:00:ef:40:f0:23:
9c:10:08:37:b7:99:d5:d4:ca:be:d3:29:ad:79:0d:9e:62:aa:
90:8c:e3:c4:90:8e:4f:1b:a6:8f:e5:fd:2a:db:c3:67:35:6e:
30:73:1a:01:2c:b3:a3:c5:45:db:cc:a9:27:66:d7:9f:24:41:
a7:bc:d9:eb:49:ac:44:a4:df:9a:13:78:ac:8c:2e:3c:97:7f:
0d:53:58:14:84:79:be:9f:f6:4f:51:60:58:7f:30:d4:37:dc:
77:05:ba:3b:68:a0:b1:ea:2d:f4:f3:11:87:b4:1c:5c:89:73:
28:26:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org