Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212900.roa
File: AS212900.roa (raw, json)
Hash identifier: BOwAtrjJ8TOwOAp5eG2ob9Zfp0XwN7GmCPohgOQKSpA=
Subject key identifier: C4:89:71:E0:69:D1:70:BB:56:86:1C:E6:AB:F1:53:7D:3F:CB:A6:2F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0DAB1AB811680BD54CC1B308A81AF8BEB652E7CB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212900.roa
Signing time: Fri 22 Dec 2023 18:44:21 +0000
ROA not before: Fri 22 Dec 2023 18:39:21 +0000
ROA not after: Fri 20 Dec 2024 18:44:21 +0000
asID: 212900
IP address blocks: 2a06:a005:ba9::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:ab:1a:b8:11:68:0b:d5:4c:c1:b3:08:a8:1a:f8:be:b6:52:e7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 22 18:39:21 2023 GMT
Not After : Dec 20 18:44:21 2024 GMT
Subject: CN=C48971E069D170BB56861CE6ABF1537D3FCBA62F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8b:83:c7:31:a2:9a:c4:56:18:de:71:ce:5e:
00:f9:98:f4:a2:1a:75:35:77:95:c1:77:80:7a:ce:
ea:60:88:ab:4d:66:8d:0f:99:52:97:91:fd:88:8b:
f4:ab:a9:e6:17:e5:32:0b:7d:db:b4:95:b9:72:22:
ea:10:15:d1:04:f6:3e:8f:34:83:20:d1:20:fd:4e:
6d:ae:ea:d0:c6:e2:9e:77:47:79:2e:e2:ef:99:de:
91:7f:d1:65:e2:ae:45:c7:2d:48:5e:0f:5a:09:e7:
ee:f3:c5:3c:2d:8b:28:5c:0e:6c:57:51:c1:87:22:
fb:57:93:b3:ca:1b:c5:ff:46:0f:a2:06:ea:d9:34:
ab:a4:61:a6:8d:46:3a:a0:d5:40:56:7c:87:98:13:
f2:39:78:f9:82:7b:9a:2e:85:16:3e:80:34:9a:a6:
3f:54:1f:12:2c:30:aa:2f:33:78:87:5f:bf:03:46:
7d:6b:b8:4f:69:6f:3e:78:27:b3:e9:23:7f:25:01:
dd:ce:ac:6e:3a:74:27:b7:be:6c:57:1e:51:72:42:
10:8c:ab:57:40:b5:1f:8f:eb:60:4c:44:cd:fa:f2:
44:99:49:b6:43:f8:15:f8:5e:01:97:09:d5:f0:a1:
8e:e2:8f:c7:3b:62:0c:3d:7f:24:f5:48:40:a7:a8:
46:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:89:71:E0:69:D1:70:BB:56:86:1C:E6:AB:F1:53:7D:3F:CB:A6:2F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212900.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ba9::/48
Signature Algorithm: sha256WithRSAEncryption
2c:77:cf:ea:67:25:b6:db:f7:73:a2:5b:4a:b2:23:f6:7f:de:
04:9d:12:26:50:6d:11:80:82:94:eb:2d:c9:28:00:56:ea:1e:
ec:8a:0d:c9:c1:8d:2c:09:09:be:02:6c:e0:69:17:fa:f3:74:
78:e2:e1:e1:6c:30:10:21:90:88:2d:b0:7f:c0:b6:3b:fa:b7:
58:f5:18:cb:7c:83:e0:12:7d:6b:26:0d:3f:d3:cd:e3:e7:7f:
a9:a8:5d:23:f9:f8:93:38:e9:c0:84:52:3c:5d:78:5e:db:e2:
76:e6:a0:0a:d9:1c:f1:fe:a9:57:4f:b6:51:b0:50:39:cc:42:
70:3c:8d:99:0c:ad:00:d9:11:49:5f:2a:b0:d8:22:50:b2:90:
77:0d:b3:f2:d2:aa:3c:13:60:54:6a:53:96:a6:b4:7e:0d:41:
17:63:1d:fc:82:dc:30:7c:5b:8d:6e:d4:af:ea:b8:01:41:9f:
6e:49:1f:f2:8c:8b:51:5d:95:ab:12:fa:2a:fe:4d:47:b8:35:
e1:89:48:08:ba:72:24:d5:0d:2a:5b:5d:ba:7b:9f:55:46:39:
74:63:61:49:79:6d:b1:2f:f9:ee:fe:1f:24:cf:ab:c7:a0:26:
24:ae:5c:70:b3:6d:ef:0c:7b:57:54:d6:d3:a6:44:53:e5:4a:
88:f0:44:ec
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUDasauBFoC9VMwbMIqBr4vrZS58swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMjIxODM5MjFaFw0yNDEyMjAxODQ0MjFaMDMxMTAvBgNV
BAMTKEM0ODk3MUUwNjlEMTcwQkI1Njg2MUNFNkFCRjE1MzdEM0ZDQkE2MkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIi4PHMaKaxFYY3nHOXgD5mPSi
GnU1d5XBd4B6zupgiKtNZo0PmVKXkf2Ii/SrqeYX5TILfdu0lblyIuoQFdEE9j6P
NIMg0SD9Tm2u6tDG4p53R3ku4u+Z3pF/0WXirkXHLUheD1oJ5+7zxTwtiyhcDmxX
UcGHIvtXk7PKG8X/Rg+iBurZNKukYaaNRjqg1UBWfIeYE/I5ePmCe5ouhRY+gDSa
pj9UHxIsMKovM3iHX78DRn1ruE9pbz54J7PpI38lAd3OrG46dCe3vmxXHlFyQhCM
q1dAtR+P62BMRM368kSZSbZD+BX4XgGXCdXwoY7ij8c7Ygw9fyT1SECnqEYrAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUxIlx4GnRcLtWhhzmq/FTfT/Lpi8wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEyOTAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQupMA0GCSqGSIb3DQEBCwUAA4IBAQAsd8/q
ZyW22/dzoltKsiP2f94EnRImUG0RgIKU6y3JKABW6h7sig3JwY0sCQm+AmzgaRf6
83R44uHhbDAQIZCILbB/wLY7+rdY9RjLfIPgEn1rJg0/083j53+pqF0j+fiTOOnA
hFI8XXhe2+J25qAK2Rzx/qlXT7ZRsFA5zEJwPI2ZDK0A2RFJXyqw2CJQspB3DbPy
0qo8E2BUalOWprR+DUEXYx38gtwwfFuNbtSv6rgBQZ9uSR/yjItRXZWrEvoq/k1H
uDXhiUgIunIk1Q0qW126e59VRjl0Y2FJeW2xL/nu/h8kz6vHoCYkrlxws23vDHtX
VNbTpkRT5UqI8ETs
-----END CERTIFICATE-----
Generated at Fri May 3 20:32:57 2024 by rpki-client on console-fra.rpki-client.org