Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214546.roa
File: AS214546.roa (raw, json)
Hash identifier: MBE2abKwrbONrxNByzFzEuZe+JhUuy8GUmd/ilMVB2w=
Subject key identifier: 0A:BB:B1:FF:94:B3:05:B6:62:B6:C6:E9:7C:67:D5:81:6E:DA:C0:20
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0133D3A0C1B22D02E9388B486C36435E52385DA0
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214546.roa
Signing time: Tue 06 Aug 2024 10:48:11 +0000
ROA not before: Tue 06 Aug 2024 10:43:11 +0000
ROA not after: Tue 05 Aug 2025 10:48:11 +0000
asID: 214546
IP address blocks: 2a09:54c2::/32 maxlen: 48
2a0d:d900::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:33:d3:a0:c1:b2:2d:02:e9:38:8b:48:6c:36:43:5e:52:38:5d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Aug 6 10:43:11 2024 GMT
Not After : Aug 5 10:48:11 2025 GMT
Subject: CN=0ABBB1FF94B305B662B6C6E97C67D5816EDAC020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:44:9e:30:b8:01:15:1e:31:fd:2f:a6:f4:36:
98:ab:9c:e1:7e:4f:32:da:8e:9a:87:8a:e2:87:86:
6f:46:70:c0:01:a5:b9:90:a3:76:9b:40:b8:db:33:
f7:f6:9a:cf:62:f7:ed:19:c9:a9:a9:d4:c9:63:ac:
75:ad:37:48:e3:9c:5a:d5:8a:48:3a:ec:88:ab:5b:
a9:da:89:f3:1f:bd:74:51:91:b1:11:10:36:55:47:
fa:33:26:db:47:a7:5c:13:1b:b8:1d:70:dd:75:89:
fa:59:e8:c5:df:27:e3:de:de:39:c6:21:ec:f8:0b:
0a:7e:18:b3:f2:14:e5:bb:71:f7:25:2d:4a:71:3d:
3c:e8:0b:f3:a7:1b:f1:a4:6c:59:65:d2:81:51:36:
a1:54:dc:42:f2:8b:2f:7d:a3:73:82:e5:79:d2:b7:
c9:92:d5:17:17:db:d5:79:57:c3:7f:00:74:51:eb:
7b:64:66:fd:ed:35:cf:00:c5:c2:01:1e:5b:0a:fd:
b3:b4:e9:a5:3c:ad:04:0d:7d:db:bf:34:10:e8:80:
82:09:6c:de:17:f7:b9:81:f5:86:fe:16:aa:5b:39:
3b:9a:5c:16:84:86:43:7e:d6:92:88:a1:64:d5:8e:
7f:fd:4e:f1:f1:c6:ce:99:72:13:b0:a7:5c:77:40:
1a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BB:B1:FF:94:B3:05:B6:62:B6:C6:E9:7C:67:D5:81:6E:DA:C0:20
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214546.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c2::/32
2a0d:d900::/32
Signature Algorithm: sha256WithRSAEncryption
5a:40:9f:d6:63:37:04:db:72:5e:e2:5a:d8:b4:33:8c:43:de:
41:9c:3e:b6:01:92:f1:23:8d:a2:16:57:55:9a:7a:de:f7:d5:
78:af:6b:d5:c8:f9:18:b5:41:df:e7:f7:ba:3c:7e:35:27:56:
21:b9:7a:da:55:3a:03:a7:69:01:67:81:e3:b8:4a:9d:4b:ce:
4f:81:5c:f1:37:71:3c:6b:ce:8f:1b:52:1f:31:bb:c5:d8:98:
39:72:24:ee:3a:3c:50:ff:93:93:ac:e4:0b:5d:d4:c5:c3:89:
38:c9:99:e4:11:67:e3:4c:b0:fd:41:ef:e9:42:c6:eb:30:f1:
64:53:71:b2:12:d2:b9:87:c0:14:bd:b5:18:7e:f1:57:78:aa:
54:5b:b7:6e:2c:bd:a9:09:32:9f:83:3d:4a:2d:4e:97:f3:71:
fd:59:26:fe:1c:bd:d4:78:b5:50:5d:ae:5c:23:04:7a:57:d6:
cd:d0:5c:f0:d9:9d:d4:ef:f2:c2:24:7b:c1:8f:91:b0:fb:bb:
3a:39:8b:af:9a:d8:b4:77:fb:81:38:55:27:c5:ad:a4:83:a4:
f7:e7:ec:a1:90:6f:a0:1a:c9:e6:37:ae:65:ad:67:74:e3:ad:
6f:2c:74:5f:5e:ad:88:60:50:2c:80:c2:d9:c8:d9:5d:40:ef:
d8:e6:92:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 21:33:12 2024 by rpki-client on console-ams.rpki-client.org