Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS215081.roa
File: AS215081.roa (raw, json)
Hash identifier: CNVg0VgmwPaa0y9TlJ8QupIalFJv4HdWAjY/js62Me0=
Subject key identifier: 55:66:D9:D2:73:77:DE:36:74:76:98:4C:51:D9:8F:F1:CB:AB:7F:17
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5057F506E035DE7C9FD80BC1D8A7D53B91B1A9FA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS215081.roa
Signing time: Wed 24 Apr 2024 19:41:13 +0000
ROA not before: Wed 24 Apr 2024 19:36:13 +0000
ROA not after: Wed 23 Apr 2025 19:41:13 +0000
asID: 215081
IP address blocks: 5.253.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:57:f5:06:e0:35:de:7c:9f:d8:0b:c1:d8:a7:d5:3b:91:b1:a9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 24 19:36:13 2024 GMT
Not After : Apr 23 19:41:13 2025 GMT
Subject: CN=5566D9D27377DE367476984C51D98FF1CBAB7F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e2:87:94:01:3f:c9:1b:a2:f3:96:0b:a2:26:
9c:f3:ba:e4:b4:55:5b:22:2d:f4:7e:8f:1f:90:18:
fd:98:e5:57:e6:6a:d8:9d:4c:9f:45:f4:86:33:be:
4b:4b:36:c4:12:b7:f1:93:98:fd:3d:aa:b6:d9:45:
2a:cd:91:61:76:9e:e1:1e:46:2d:e8:df:fd:49:ff:
ef:3d:02:bc:fe:28:b2:92:8d:eb:1d:b5:e9:bb:1d:
2b:a4:4e:d1:4c:bf:a4:59:ed:4c:3e:44:09:65:31:
87:36:82:66:24:94:09:35:e5:cb:93:81:47:a6:da:
d9:f2:12:81:0f:1c:81:1f:0d:b0:95:01:2f:76:83:
ab:63:a6:1c:e7:31:a1:ef:f5:11:16:49:6d:06:66:
d9:eb:b5:0a:b1:0a:cc:1d:10:51:87:42:f9:ac:97:
d9:bc:0e:37:d7:b5:b4:b1:88:82:30:ff:25:a3:57:
3d:fd:be:bf:3e:48:14:97:81:9a:68:df:05:9d:4a:
98:5a:9c:62:ba:1f:f1:d2:f9:29:94:86:f1:fc:58:
96:a9:3e:44:a8:4b:a9:91:88:c1:46:27:1b:50:80:
fe:86:9e:51:18:14:71:1a:6f:8e:ab:f7:eb:01:eb:
0a:20:04:8f:e6:c0:e5:7b:9d:1d:13:ee:ec:5d:c4:
90:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:66:D9:D2:73:77:DE:36:74:76:98:4C:51:D9:8F:F1:CB:AB:7F:17
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS215081.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.87.0/24
Signature Algorithm: sha256WithRSAEncryption
28:91:21:9c:70:45:5c:76:3d:40:fc:23:a3:74:36:d0:3e:1a:
31:04:f2:42:b7:26:55:94:28:64:36:0e:db:9e:7f:33:be:a1:
da:e2:f5:3e:f2:18:b3:6b:65:43:fe:01:72:3f:d7:55:4d:04:
6b:59:5d:28:35:1b:f7:31:27:c6:d4:ef:8c:7e:c1:ba:e2:06:
b9:e4:9d:fd:20:c3:a7:d6:48:20:d9:d7:60:b1:4f:3a:95:3e:
cc:1b:55:0e:5b:72:bc:18:a5:19:df:5d:7f:0b:dc:61:92:cd:
80:5e:e4:22:d8:6e:cd:9e:b5:ac:62:00:19:bf:e1:cd:cb:bd:
1d:5e:03:0c:ab:cd:0a:53:1c:ef:8e:f6:0f:d5:f0:50:fc:8c:
12:9e:21:60:e0:41:fb:91:bc:02:92:cb:84:35:31:2c:11:52:
40:ff:c0:ac:45:24:9f:95:46:c2:06:53:ee:ff:82:4e:ac:cb:
e9:34:33:42:48:ac:ba:82:d5:35:9b:e1:33:80:80:b5:b8:cb:
59:6c:87:58:b0:97:ab:24:64:42:fc:c7:b0:4b:ec:78:d6:3d:
81:20:e7:3b:83:6e:bc:a6:4a:2b:2e:bc:74:24:9e:46:66:6b:
3e:a7:b9:e7:c5:3a:e0:50:c7:03:82:ad:d0:1b:69:91:a3:de:
b4:39:ee:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:25 2024 by rpki-client on console-fra.rpki-client.org