Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213327.roa
File: AS213327.roa (raw, json)
Hash identifier: 5Na4CEymnCKrOjm9m3lQ0Zdk9ON5ZiFn0OG2P3FX1xs=
Subject key identifier: 36:CE:02:1C:F9:AE:80:14:AE:0D:D3:78:47:55:8A:A9:B1:17:BD:6E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 04777A4750C781192476F2FE04F72F027FEBDEC5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213327.roa
Signing time: Tue 05 Nov 2024 03:40:02 +0000
ROA not before: Tue 05 Nov 2024 03:35:02 +0000
ROA not after: Tue 04 Nov 2025 03:40:02 +0000
asID: 213327
IP address blocks: 2a06:a005:1272::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:77:7a:47:50:c7:81:19:24:76:f2:fe:04:f7:2f:02:7f:eb:de:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:02 2024 GMT
Not After : Nov 4 03:40:02 2025 GMT
Subject: CN=36CE021CF9AE8014AE0DD37847558AA9B117BD6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:59:7b:07:8d:f1:29:82:a8:8a:48:08:38:0f:
bc:16:7f:b2:fe:01:a9:a3:90:86:75:c2:69:f0:82:
8c:15:56:54:33:c0:53:c9:0c:a4:9a:35:c6:cd:54:
06:08:68:ab:c9:22:b2:b1:57:0e:2a:ba:3e:e0:23:
5c:34:52:81:75:2d:80:c8:32:73:09:71:cd:df:71:
23:dd:a0:2e:94:08:0f:6d:0a:3c:d8:d7:7c:4a:02:
b6:b6:77:ec:0b:17:89:67:34:a8:ff:c6:31:e5:15:
d0:1b:5b:a2:da:43:49:4f:75:d4:ef:4b:23:c0:70:
38:58:2c:1b:2e:02:62:a9:72:11:c2:e2:7b:20:83:
9b:2f:47:7c:36:0c:34:37:8d:3d:35:f8:51:5b:98:
22:87:79:51:91:83:00:a4:14:66:31:bc:b8:8b:87:
b8:e6:a9:27:56:bd:74:92:24:f8:5d:dc:4f:52:d3:
8f:10:3d:d1:31:12:2a:2d:98:c9:0a:db:11:33:44:
61:20:83:64:79:a4:fd:10:b4:db:cb:f3:c1:d1:31:
40:e0:bb:1d:d7:b2:bd:1f:71:7b:13:f1:0b:4c:c6:
79:d0:f4:f0:7a:9a:6b:50:99:46:8f:4a:c5:d3:d5:
c4:86:e0:a3:35:0a:ac:f0:73:17:27:44:82:4f:da:
ae:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:CE:02:1C:F9:AE:80:14:AE:0D:D3:78:47:55:8A:A9:B1:17:BD:6E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213327.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1272::/48
Signature Algorithm: sha256WithRSAEncryption
43:c3:b8:03:85:58:a2:ff:2f:d8:87:8e:72:2c:7d:c5:c9:76:
76:66:78:70:22:8d:d5:43:71:4c:a9:88:cc:94:69:ee:39:18:
e8:dc:19:06:52:70:c7:51:17:c7:68:9a:3c:e7:b6:90:9b:7d:
8c:fd:da:13:00:67:a6:12:ac:84:0e:35:85:98:f0:14:d0:3b:
51:ef:40:51:10:8c:5d:56:da:b0:4a:3e:d7:48:7d:0c:b6:42:
02:ce:83:0b:b9:7b:da:6e:f5:ec:3c:fe:0b:e7:a1:df:28:ad:
b3:b7:fe:8b:ee:ec:73:af:e4:5b:b1:98:86:04:ea:0a:49:2a:
bb:e7:ab:97:ab:a2:fc:68:1f:1b:f5:97:0c:7b:fa:93:61:3f:
c5:7d:4c:13:e8:35:ca:d7:c3:ec:70:8b:5e:fd:b6:79:02:7b:
d6:f9:33:2d:81:fe:25:95:8d:15:9a:62:cf:4f:03:f2:5e:d1:
96:6b:96:5c:6e:d9:a6:e7:4a:cd:c1:87:02:83:36:7a:35:0f:
ea:d3:8e:bd:8b:98:42:6b:ad:59:6e:4f:ca:fb:5a:a2:68:0f:
a5:bb:bc:23:8a:77:20:3b:bd:7d:33:aa:e7:9c:c9:83:bd:e4:
0d:a9:26:0f:a0:6d:09:af:95:66:1e:85:56:63:2d:43:82:f6:
04:83:37:7c
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUBHd6R1DHgRkkdvL+BPcvAn/r3sUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDJaFw0yNTExMDQwMzQwMDJaMDMxMTAvBgNV
BAMTKDM2Q0UwMjFDRjlBRTgwMTRBRTBERDM3ODQ3NTU4QUE5QjExN0JENkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDWXsHjfEpgqiKSAg4D7wWf7L+
AamjkIZ1wmnwgowVVlQzwFPJDKSaNcbNVAYIaKvJIrKxVw4quj7gI1w0UoF1LYDI
MnMJcc3fcSPdoC6UCA9tCjzY13xKAra2d+wLF4lnNKj/xjHlFdAbW6LaQ0lPddTv
SyPAcDhYLBsuAmKpchHC4nsgg5svR3w2DDQ3jT01+FFbmCKHeVGRgwCkFGYxvLiL
h7jmqSdWvXSSJPhd3E9S048QPdExEiotmMkK2xEzRGEgg2R5pP0QtNvL88HRMUDg
ux3Xsr0fcXsT8QtMxnnQ9PB6mmtQmUaPSsXT1cSG4KM1CqzwcxcnRIJP2q5VAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUNs4CHPmugBSuDdN4R1WKqbEXvW4wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjEzMzI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBRJyMA0GCSqGSIb3DQEBCwUAA4IBAQBDw7gD
hVii/y/Yh45yLH3FyXZ2ZnhwIo3VQ3FMqYjMlGnuORjo3BkGUnDHURfHaJo857aQ
m32M/doTAGemEqyEDjWFmPAU0DtR70BREIxdVtqwSj7XSH0MtkICzoMLuXvabvXs
PP4L56HfKK2zt/6L7uxzr+RbsZiGBOoKSSq756uXq6L8aB8b9ZcMe/qTYT/FfUwT
6DXK18PscIte/bZ5AnvW+TMtgf4llY0VmmLPTwPyXtGWa5Zcbtmm50rNwYcCgzZ6
NQ/q0469i5hCa61Zbk/K+1qiaA+lu7wjincgO719M6rnnMmDveQNqSYPoG0Jr5Vm
HoVWYy1DgvYEgzd8
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:24 2024 by rpki-client on console-fra.rpki-client.org