Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213036.roa
File: AS213036.roa (raw, json)
Hash identifier: as8s2bGWrO4uri0F+qav/SbL+a/y7U3woKK629thQ2I=
Subject key identifier: 67:7E:A1:32:0F:93:DE:29:13:8D:3F:83:9E:08:A2:E6:53:8D:6F:CE
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2DABCB118886376A170D994E3007B69BE874AFE5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213036.roa
Signing time: Tue 05 Dec 2023 02:44:17 +0000
ROA not before: Tue 05 Dec 2023 02:39:17 +0000
ROA not after: Tue 03 Dec 2024 02:44:17 +0000
asID: 213036
IP address blocks: 2a06:a005:5a3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:ab:cb:11:88:86:37:6a:17:0d:99:4e:30:07:b6:9b:e8:74:af:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:17 2023 GMT
Not After : Dec 3 02:44:17 2024 GMT
Subject: CN=677EA1320F93DE29138D3F839E08A2E6538D6FCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5c:38:f1:5e:73:b5:91:3c:84:02:c6:ab:a2:
7d:ad:60:c4:f6:37:ce:9c:45:85:1f:11:5a:6b:17:
fd:dc:e1:05:c5:21:07:5c:2b:32:f6:6e:91:64:1d:
a5:94:ca:e2:09:26:b8:f5:08:2a:d6:07:2f:62:0a:
91:b7:ee:66:ed:21:2a:21:dc:fb:b4:95:d9:e6:25:
17:f5:ba:ed:f1:08:dd:29:bd:b6:62:4b:60:03:4d:
93:6e:ef:15:5c:85:a8:e9:c2:85:e2:16:87:2e:86:
1d:9a:9b:6d:65:10:b2:93:88:6c:a3:ee:8a:8f:5a:
ab:8d:26:e0:73:67:b3:5d:d7:67:03:9a:4b:7e:bf:
78:2a:0a:df:e0:14:cf:d4:e5:a6:1c:ce:0d:96:84:
fd:d2:5d:be:fc:12:85:60:c7:95:4a:9c:e5:2c:24:
0b:0e:8d:77:4d:b3:b7:92:5f:07:f8:be:20:66:99:
ef:1e:04:68:9f:d2:08:85:10:cc:a3:18:cd:72:a9:
b9:a5:d5:7e:e0:d4:7f:43:d4:90:ec:ed:3d:17:0a:
2a:2d:21:fa:60:4b:de:c0:32:9c:4c:ef:23:a3:23:
3f:7f:db:04:ac:0f:b9:c4:a5:7a:57:47:11:30:70:
46:b6:39:96:29:d7:6e:2a:1e:a0:5f:e3:ae:a2:ec:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7E:A1:32:0F:93:DE:29:13:8D:3F:83:9E:08:A2:E6:53:8D:6F:CE
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5a3::/48
Signature Algorithm: sha256WithRSAEncryption
c9:0e:5e:9e:26:e7:99:20:44:00:29:33:b9:fb:b3:28:17:26:
6e:93:36:4c:b7:19:b6:a5:e0:55:85:65:6a:bf:2b:9e:0a:dd:
c8:34:8a:ea:07:91:45:18:60:1a:49:f2:ed:00:6c:c1:d4:bd:
54:c4:af:0a:e3:e4:f5:d1:4e:bf:9b:98:ff:02:7f:91:cf:39:
7f:87:b8:e1:81:79:23:fc:a0:5f:21:d7:e4:81:9c:ab:51:aa:
d9:c8:b4:cd:8c:66:de:0c:62:2f:cb:ef:22:76:59:bd:1b:ac:
b5:fd:47:f5:3e:04:2e:44:3d:df:ac:8c:8d:34:be:09:a9:f7:
2c:6d:0c:7b:6d:82:9f:0b:77:00:9c:48:eb:c1:df:97:cb:ed:
af:14:52:67:cb:e8:39:d9:10:c9:b0:cc:d6:93:90:cd:be:0a:
7e:db:38:a8:09:ad:6d:f0:3b:15:0e:b7:c3:8a:1c:f7:9f:ef:
26:f5:1c:08:fe:09:63:a8:d7:18:3f:81:7d:65:63:e2:b9:3d:
09:d7:00:5d:33:1f:16:5a:d0:d1:71:44:db:e4:74:4c:f2:44:
60:9c:ae:7f:62:8b:c7:e5:c9:60:a0:c0:33:bc:2c:f6:dd:68:
7d:fb:dd:09:0a:d1:1d:c4:ec:8e:87:ce:36:d0:33:e8:2c:73:
38:97:21:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org