Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213286.roa
File: AS213286.roa (raw, json)
Hash identifier: 95YXjI5cPVnPozhbgBsSbaKbYPK9OtK/7F/S1/AGUL8=
Subject key identifier: 43:A8:2B:B8:99:E7:A5:F4:4A:E7:0A:24:BF:27:37:02:A5:BE:CC:9B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1F577E03F4B0FC258C8FA5B11C1554793257EA4C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213286.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 213286
IP address blocks: 2a06:a005:17::/48 maxlen: 48
2a06:a005:1e::/48 maxlen: 48
2a06:a005:852::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:57:7e:03:f4:b0:fc:25:8c:8f:a5:b1:1c:15:54:79:32:57:ea:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=43A82BB899E7A5F44AE70A24BF273702A5BECC9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:f2:ff:85:5a:b2:f1:d4:ea:69:3d:8a:6a:
9d:5d:7a:48:94:92:f3:a1:a2:2c:2f:27:a7:7c:d3:
de:73:d0:22:e4:28:8a:d4:b7:0d:44:8c:62:fc:2c:
c9:11:a4:bb:b8:18:e0:7c:e1:3c:9f:9c:63:4a:76:
e8:8a:0c:65:b3:d7:67:af:2b:6e:e3:a7:74:48:fb:
e3:1a:15:2d:12:c6:78:d6:d7:83:78:d9:a7:52:30:
de:ad:39:d8:1d:9b:de:5a:db:f5:0b:f8:b9:8a:33:
31:9a:ee:00:1a:7f:47:2e:3b:5d:b5:8f:1e:2d:ea:
9e:4f:94:1a:47:33:1d:3d:c2:d1:41:2a:26:fc:79:
34:bc:d3:c9:4b:43:d8:c9:ef:99:cf:15:8a:cc:12:
8b:12:e9:7c:a1:ed:13:7c:54:c5:be:4e:a4:0d:f4:
cf:f5:35:3f:74:3a:73:21:40:aa:17:4a:25:ef:e6:
34:b3:32:c7:f8:97:a6:15:e4:25:1f:38:90:79:53:
3c:3b:6f:d9:61:37:32:c7:cc:c5:03:ef:c1:af:76:
d9:c9:9f:72:35:60:05:b9:54:43:a8:57:47:8c:0f:
64:83:89:d1:e1:71:e5:6e:c5:be:e2:95:a6:fe:47:
ef:f5:c1:87:9a:41:2f:82:6c:1b:77:af:cf:2a:5a:
12:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A8:2B:B8:99:E7:A5:F4:4A:E7:0A:24:BF:27:37:02:A5:BE:CC:9B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213286.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:17::/48
2a06:a005:1e::/48
2a06:a005:852::/48
Signature Algorithm: sha256WithRSAEncryption
b4:b2:22:8e:8b:00:00:8e:55:b2:f1:71:e0:e1:58:8f:c5:fa:
50:5e:68:4d:9c:30:7a:64:55:45:ab:6e:47:70:cf:13:4b:d8:
a6:3a:24:39:4d:ec:ba:9f:a7:b6:83:f9:d4:54:7f:7a:b5:8f:
1e:c6:11:ca:2e:17:60:eb:c0:8f:cc:2b:c9:47:40:a9:3e:36:
54:9a:a6:62:6f:3b:bf:0c:36:25:1e:5d:9c:15:f0:db:43:ef:
69:dd:ca:59:b8:63:20:c8:f7:f2:e2:1e:96:18:a5:2e:3e:88:
ab:68:67:10:79:7e:5c:c1:c2:58:fd:d9:b1:d7:11:a5:ad:36:
2a:ad:ab:f4:b6:32:a6:0b:c2:a5:2e:e8:5b:eb:2b:17:19:2a:
d3:5b:68:2e:b8:09:06:9c:43:74:5b:85:f7:88:88:a3:27:bc:
27:cd:61:93:54:c8:da:35:3b:dd:9f:b9:8e:cb:31:29:14:57:
9f:72:93:b8:37:58:8b:aa:5b:27:ac:f4:fe:53:52:c8:38:03:
73:86:8e:cf:58:38:66:84:79:2b:0a:3b:09:86:e5:4b:08:7c:
0c:81:7d:85:f2:9c:53:a5:5d:b6:c4:86:ea:d9:b7:a1:6d:9f:
e3:a8:cd:c6:c0:cd:f9:f1:7e:65:01:f9:d3:3d:47:e6:fb:66:
e1:03:29:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:36 2024 by rpki-client on console-fra.rpki-client.org