Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213239.roa
File: AS213239.roa (raw, json)
Hash identifier: kDHkOQpNGk++TYlpNrFp/ucI809u+l31QyD8kKD5WMw=
Subject key identifier: 9A:8D:39:5B:C4:9B:DD:1B:18:7B:02:6F:C2:28:3F:F9:EA:16:8D:AF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6758EF49E574826203136CC3121B2CD43BB9A9F2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213239.roa
Signing time: Sun 17 Dec 2023 01:44:21 +0000
ROA not before: Sun 17 Dec 2023 01:39:21 +0000
ROA not after: Sun 15 Dec 2024 01:44:21 +0000
asID: 213239
IP address blocks: 2a06:a005:d2f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:58:ef:49:e5:74:82:62:03:13:6c:c3:12:1b:2c:d4:3b:b9:a9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 17 01:39:21 2023 GMT
Not After : Dec 15 01:44:21 2024 GMT
Subject: CN=9A8D395BC49BDD1B187B026FC2283FF9EA168DAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3d:a2:00:2b:ec:40:6e:5a:b6:46:a9:1d:8e:
4c:6c:d5:f1:75:6f:23:a2:8c:fa:b0:2b:ab:22:4e:
27:33:44:eb:a7:fc:bb:8f:cf:8d:45:9a:5d:4d:9e:
71:8b:c4:ea:97:44:36:36:1f:0b:66:cf:1a:9b:54:
e2:10:f1:c3:f8:ce:ff:5c:05:93:86:ec:0a:96:85:
6e:9e:4e:1e:01:a3:2d:37:54:93:eb:7a:91:fc:1c:
08:4b:c6:a7:1a:f9:c9:03:74:f6:ac:ff:d1:ee:29:
ce:b5:ad:46:26:87:5a:e8:4f:1d:1e:f9:e6:86:03:
c1:c3:d6:6a:e9:13:ac:31:c6:ba:6b:25:6f:69:02:
b5:0f:71:48:7b:b8:20:0b:26:86:79:6d:64:a5:25:
20:3b:bc:df:84:f8:74:5f:71:1d:55:d6:90:20:f3:
05:67:56:72:f4:f1:03:7a:ac:54:f0:63:31:a6:ed:
a9:86:6a:b4:aa:ae:12:c0:f8:9e:55:0d:cf:57:e8:
05:2c:34:93:06:83:b3:7d:17:3d:d5:4c:76:b4:a9:
be:fb:e0:d7:db:f9:53:d2:a4:95:2c:b1:10:79:e6:
7e:0f:4d:fb:a1:29:a7:db:2c:d8:3e:e8:42:7d:85:
de:3e:0d:7d:28:66:cc:ba:6a:c8:e9:14:89:85:b3:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8D:39:5B:C4:9B:DD:1B:18:7B:02:6F:C2:28:3F:F9:EA:16:8D:AF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d2f::/48
Signature Algorithm: sha256WithRSAEncryption
a8:e7:5a:01:d8:11:07:27:32:93:46:4d:12:94:0a:e4:f9:47:
16:a5:b7:6e:4d:68:15:77:57:a6:74:aa:80:33:8f:63:e5:b8:
4b:f3:62:55:6b:76:68:27:92:58:af:1d:72:4b:46:f1:95:f6:
9a:50:cb:c8:c3:2e:3e:9b:d9:17:5f:9a:87:73:08:fa:9c:e8:
fa:71:25:94:1b:76:a6:35:81:ff:09:4d:1b:7b:8b:6d:ab:1f:
40:bd:d8:b3:8e:46:b5:7a:e8:be:af:e4:eb:43:45:53:8a:d9:
73:09:e2:c6:c7:cd:89:f6:db:ad:bf:23:d3:df:69:dd:a6:53:
64:52:5b:60:9b:3e:49:41:d5:61:64:e0:6d:4a:60:59:97:67:
1e:42:1a:8d:da:6f:2c:7a:44:0c:4c:dc:53:3f:bb:84:ba:42:
51:08:52:40:ad:c3:81:76:a3:e9:fb:6b:ff:9a:c2:39:0b:bc:
23:4c:a1:2a:8a:c0:d4:89:d4:c1:2b:62:1e:d6:8a:da:86:d8:
06:41:a5:70:87:e0:cb:2d:f0:0c:6e:92:9d:b0:f0:7d:ef:cb:
ee:6a:09:1a:50:67:45:9b:6c:f4:1d:54:be:d2:a7:91:2d:b6:
83:87:de:8a:6c:87:ad:70:56:ce:bb:e4:83:ae:f6:61:d3:96:
6f:58:c7:88
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUZ1jvSeV0gmIDE2zDEhss1Du5qfIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMTcwMTM5MjFaFw0yNDEyMTUwMTQ0MjFaMDMxMTAvBgNV
BAMTKDlBOEQzOTVCQzQ5QkREMUIxODdCMDI2RkMyMjgzRkY5RUExNjhEQUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOPaIAK+xAblq2Rqkdjkxs1fF1
byOijPqwK6siTiczROun/LuPz41Fml1NnnGLxOqXRDY2HwtmzxqbVOIQ8cP4zv9c
BZOG7AqWhW6eTh4Boy03VJPrepH8HAhLxqca+ckDdPas/9HuKc61rUYmh1roTx0e
+eaGA8HD1mrpE6wxxrprJW9pArUPcUh7uCALJoZ5bWSlJSA7vN+E+HRfcR1V1pAg
8wVnVnL08QN6rFTwYzGm7amGarSqrhLA+J5VDc9X6AUsNJMGg7N9Fz3VTHa0qb77
4Nfb+VPSpJUssRB55n4PTfuhKafbLNg+6EJ9hd4+DX0oZsy6asjpFImFs/jVAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUmo05W8Sb3RsYewJvwig/+eoWja8wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQ0vMA0GCSqGSIb3DQEBCwUAA4IBAQCo51oB
2BEHJzKTRk0SlArk+UcWpbduTWgVd1emdKqAM49j5bhL82JVa3ZoJ5JYrx1yS0bx
lfaaUMvIwy4+m9kXX5qHcwj6nOj6cSWUG3amNYH/CU0be4ttqx9Avdizjka1eui+
r+TrQ0VTitlzCeLGx82J9tutvyPT32ndplNkUltgmz5JQdVhZOBtSmBZl2ceQhqN
2m8sekQMTNxTP7uEukJRCFJArcOBdqPp+2v/msI5C7wjTKEqisDUidTBK2Ie1ora
htgGQaVwh+DLLfAMbpKdsPB978vuagkaUGdFm2z0HVS+0qeRLbaDh96KbIetcFbO
u+SDrvZh05ZvWMeI
-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org