Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
File: AS213368.roa (raw, json)
Hash identifier: KwLGHewdBeUUu4+x3G72soSuGwBzhCVT9RrWiqq1hiQ=
Subject key identifier: C0:D4:86:79:25:4F:9E:63:3C:3D:D0:50:22:74:49:C9:EF:AC:00:74
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1EC9E9085A2AEC0E9370399721E2EE031D690DE4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 213368
IP address blocks: 2a06:a005:482::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:c9:e9:08:5a:2a:ec:0e:93:70:39:97:21:e2:ee:03:1d:69:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=C0D48679254F9E633C3DD050227449C9EFAC0074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:84:6b:8c:df:0c:6b:95:14:f1:40:4f:36:5c:
8b:8a:4a:6a:70:37:d0:f0:e8:17:03:76:5c:11:ec:
ee:81:4c:d4:be:94:77:7e:8b:9d:39:37:9d:d6:fd:
a2:be:e2:fb:1d:68:2a:c7:af:3c:58:e2:b9:2a:b5:
bd:ef:13:5f:6a:81:8c:ab:69:7b:64:95:94:f1:4d:
8d:3b:43:5e:8e:b2:ba:b3:57:73:6d:a2:a4:a5:77:
29:f7:f1:f3:c7:3b:9c:52:1e:3f:6f:af:05:dc:4f:
2a:a1:d0:91:7f:0e:0c:49:9c:eb:53:47:91:6d:63:
74:b2:0c:1c:41:4a:8d:e0:93:62:da:d0:5f:67:78:
ab:97:42:a9:ab:c9:31:11:33:b4:c2:c2:10:59:d8:
0d:10:64:c9:4c:f8:b1:3e:b6:fd:81:b9:20:ff:85:
0f:3e:8b:ef:67:3f:7e:2f:ba:43:24:60:65:e4:6b:
aa:62:40:1d:ec:1e:37:ce:a5:e7:da:00:c7:5a:47:
52:4a:75:85:99:62:54:94:77:aa:5d:27:07:77:03:
b1:0b:bf:46:f8:db:11:94:5c:3a:ca:32:a6:0e:5b:
37:07:9f:cb:99:fa:c1:85:56:55:5b:4b:d7:cd:db:
89:c6:e3:9b:83:c2:50:23:e9:74:ad:e3:01:20:dc:
31:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D4:86:79:25:4F:9E:63:3C:3D:D0:50:22:74:49:C9:EF:AC:00:74
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:482::/48
Signature Algorithm: sha256WithRSAEncryption
4d:ae:f4:8f:aa:b8:d8:fb:ee:be:b5:a8:78:a2:f5:d9:9e:c8:
05:22:f0:c9:70:ae:21:c6:73:32:a5:00:87:9d:eb:8c:2b:25:
58:37:cf:35:dc:4a:ba:28:3e:5d:33:1c:55:db:9d:46:47:b2:
c5:a1:7f:51:50:cb:bd:be:1d:26:eb:25:90:a6:59:2a:0a:d6:
59:70:7f:98:0b:96:ee:10:fb:49:7f:f6:3d:36:ae:24:1e:98:
40:44:dd:6a:eb:0b:30:c8:85:69:2c:dd:d7:0b:41:69:7e:4e:
71:96:5f:6f:26:0f:af:73:ce:5b:f2:3d:83:19:db:90:cf:7c:
1e:90:a7:5b:5f:ae:0e:f3:c4:b5:53:70:ee:a4:ac:7c:ab:59:
3b:54:99:60:c9:94:1a:42:99:49:c9:95:df:0a:1c:16:ad:c1:
85:bd:69:e9:61:a1:95:68:d1:8a:5a:5d:de:75:4c:a4:e7:8f:
e8:5e:12:8c:2f:98:df:3e:70:8d:de:24:2f:98:19:64:7b:d5:
ca:21:19:66:f1:87:61:20:9e:57:e3:94:4d:27:7f:16:0e:d8:
59:ba:ad:55:fb:2e:70:5f:b0:21:62:e2:da:b5:1a:9e:d4:2d:
9c:3f:a2:3d:1d:62:62:1d:42:d9:5a:cf:22:ec:ea:a8:f9:49:
f6:5c:a0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org