Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213288.roa
File: AS213288.roa (raw, json)
Hash identifier: BQ7/Qe4UjQlfQwFplsiUnBVRE0+Q/Hs7+lK5mlW/Pjg=
Subject key identifier: 76:42:A4:BF:48:6A:3B:F7:80:D4:01:B2:14:1F:02:3F:08:32:9E:C4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 562D2D722442EE588CD4C509CFB34857BE555B32
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213288.roa
Signing time: Tue 05 Dec 2023 15:44:21 +0000
ROA not before: Tue 05 Dec 2023 15:39:21 +0000
ROA not after: Tue 03 Dec 2024 15:44:21 +0000
asID: 213288
IP address blocks: 2a06:a005:ba0::/48 maxlen: 48
2a06:a005:29e0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:2d:2d:72:24:42:ee:58:8c:d4:c5:09:cf:b3:48:57:be:55:5b:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 15:39:21 2023 GMT
Not After : Dec 3 15:44:21 2024 GMT
Subject: CN=7642A4BF486A3BF780D401B2141F023F08329EC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:5f:ad:0b:16:2f:60:94:1e:bd:19:4f:01:
a9:31:a7:74:04:64:e9:91:b8:de:bb:ee:f4:ec:16:
d5:2a:bb:46:7b:32:47:79:22:8d:23:6b:52:2c:d9:
19:1f:94:43:e0:3b:b5:b0:dd:78:be:a5:b6:0e:f5:
a6:b8:55:1f:db:fc:ba:e8:54:c2:5c:c0:f5:21:cf:
e6:98:9b:0e:1b:db:d0:b8:42:9f:ec:55:b1:ee:4f:
b0:57:90:34:be:74:bf:6a:e2:d3:1e:1f:a1:b0:79:
89:03:46:14:36:ba:98:75:32:39:a6:f6:33:ad:26:
79:6d:5a:d2:11:e7:8b:0d:00:b8:7f:9c:8c:b1:c1:
ed:86:bc:88:5e:48:1d:55:0c:a2:67:c7:8a:1f:69:
ac:90:45:a5:3e:06:57:c6:95:de:53:07:df:f5:a8:
b1:ea:60:b3:14:f8:1b:94:88:ac:6e:ce:d7:36:76:
f3:ca:81:27:df:3d:e5:43:00:71:c9:9b:4c:ae:2a:
08:ed:05:7a:a9:d3:63:db:f3:eb:a7:f6:34:a4:29:
9d:3b:09:d4:5b:5b:89:09:26:27:7b:dc:b2:cd:51:
b3:cb:63:0b:8e:a0:29:1d:5a:81:0c:ff:cc:ec:da:
d4:8e:40:d9:d4:c9:e9:6c:88:02:1f:da:c0:57:a3:
19:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:42:A4:BF:48:6A:3B:F7:80:D4:01:B2:14:1F:02:3F:08:32:9E:C4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213288.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:ba0::/48
2a06:a005:29e0::/44
Signature Algorithm: sha256WithRSAEncryption
97:86:65:ef:c5:ad:fe:23:ba:77:6f:99:0e:40:6d:13:71:eb:
29:ba:b4:86:ed:be:ec:09:6a:95:ce:51:35:c0:ed:1a:34:b3:
25:ea:4f:08:54:f2:fd:23:ce:23:ce:7a:21:5f:45:7c:f6:6d:
2d:c8:c2:b3:2a:da:3f:14:8b:dc:b5:8f:a7:e7:fa:c8:54:72:
1d:35:81:15:dd:14:b4:5c:04:22:fc:63:97:fe:42:6a:c6:8a:
29:8e:4c:03:1d:b1:d9:70:b4:70:d7:60:49:fd:3e:49:d7:09:
69:b8:48:ef:fc:fb:81:d2:df:b5:30:db:a9:0d:96:ff:9e:5b:
b8:3b:da:38:53:5f:a3:29:0c:8f:a0:b0:4f:75:84:c4:51:27:
f5:50:77:8c:f0:8d:07:28:a6:c9:57:3b:d1:a7:87:75:be:e9:
15:e9:1d:21:2a:1a:6b:97:66:23:3d:49:b5:0f:de:07:7b:e9:
a1:c2:28:3a:bb:f4:56:7b:db:e1:30:47:67:56:c7:90:a1:31:
58:89:af:46:89:20:07:a6:cf:e4:70:71:3d:03:d0:6c:4d:e0:
eb:72:4f:64:77:b2:e9:37:e1:ff:9c:f3:db:7b:93:7f:b3:46:
fd:0c:c7:34:ee:2f:34:fa:ed:c9:68:a8:c3:6a:dc:6d:b4:11:
85:f3:10:55
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIUVi0tciRC7liM1MUJz7NIV75VWzIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUxNTM5MjFaFw0yNDEyMDMxNTQ0MjFaMDMxMTAvBgNV
BAMTKDc2NDJBNEJGNDg2QTNCRjc4MEQ0MDFCMjE0MUYwMjNGMDgzMjlFQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ul+tCxYvYJQevRlPAakxp3QE
ZOmRuN677vTsFtUqu0Z7Mkd5Io0ja1Is2RkflEPgO7Ww3Xi+pbYO9aa4VR/b/Lro
VMJcwPUhz+aYmw4b29C4Qp/sVbHuT7BXkDS+dL9q4tMeH6GweYkDRhQ2uph1Mjmm
9jOtJnltWtIR54sNALh/nIyxwe2GvIheSB1VDKJnx4ofaayQRaU+BlfGld5TB9/1
qLHqYLMU+BuUiKxuztc2dvPKgSffPeVDAHHJm0yuKgjtBXqp02Pb8+un9jSkKZ07
CdRbW4kJJid73LLNUbPLYwuOoCkdWoEM/8zs2tSOQNnUyelsiAIf2sBXoxnJAgMB
AAGjggH7MIIB9zAdBgNVHQ4EFgQUdkKkv0hqO/eA1AGyFB8CPwgynsQwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEzMjg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEH
AQH/BBwwGjAYBAIAAjASAwcAKgagBQugAwcEKgagBSngMA0GCSqGSIb3DQEBCwUA
A4IBAQCXhmXvxa3+I7p3b5kOQG0TcespurSG7b7sCWqVzlE1wO0aNLMl6k8IVPL9
I84jznohX0V89m0tyMKzKto/FIvctY+n5/rIVHIdNYEV3RS0XAQi/GOX/kJqxoop
jkwDHbHZcLRw12BJ/T5J1wlpuEjv/PuB0t+1MNupDZb/nlu4O9o4U1+jKQyPoLBP
dYTEUSf1UHeM8I0HKKbJVzvRp4d1vukV6R0hKhprl2YjPUm1D94He+mhwig6u/RW
e9vhMEdnVseQoTFYia9GiSAHps/kcHE9A9BsTeDrck9kd7LpN+H/nPPbe5N/s0b9
DMc07i80+u3JaKjDatxttBGF8xBV
-----END CERTIFICATE-----
Generated at Sat May 4 12:12:18 2024 by rpki-client on console-ams.rpki-client.org