Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS216412.roa
File: AS216412.roa (raw, json)
Hash identifier: 66BcKpI3KaM3rrG15s0Wif7UxDv4SvTu1D2/6k69tTA=
Subject key identifier: 94:68:45:BA:24:A2:7B:FB:7C:53:BC:2A:0F:E5:4D:0F:A6:94:52:5D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2FA1F74558F11A6493E03764D2C0B65D8B5AC6BB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS216412.roa
Signing time: Thu 24 Aug 2023 18:31:32 +0000
ROA not before: Thu 24 Aug 2023 18:26:32 +0000
ROA not after: Thu 22 Aug 2024 18:31:32 +0000
asID: 216412
IP address blocks: 2a06:a002:fe00::/39 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:a1:f7:45:58:f1:1a:64:93:e0:37:64:d2:c0:b6:5d:8b:5a:c6:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Aug 24 18:26:32 2023 GMT
Not After : Aug 22 18:31:32 2024 GMT
Subject: CN=946845BA24A27BFB7C53BC2A0FE54D0FA694525D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e5:f4:ef:b9:d4:b5:d5:2c:9b:e2:cb:14:e7:
55:f1:f9:86:21:aa:ba:14:8b:5f:d2:b2:93:87:5c:
32:e4:43:18:95:4e:13:88:34:48:91:9c:3f:1b:d6:
f1:33:fd:41:82:e8:6f:90:d3:47:b9:7c:66:1f:9f:
5b:56:b6:30:89:79:c9:66:69:8d:34:c7:c2:2b:f8:
ab:91:ac:f9:91:62:54:cf:52:76:34:68:14:60:79:
70:1b:8b:ea:3b:6e:ed:d2:a8:d7:30:40:b0:51:dd:
74:63:7e:0f:f2:96:83:ee:0b:fe:1f:df:2e:60:27:
e3:8c:fa:8e:34:dd:50:4d:68:33:cc:d2:07:14:98:
b6:63:72:8b:21:54:e8:f7:ac:36:1d:e2:ab:0a:08:
b5:b7:52:4f:a2:c6:eb:5d:11:af:7b:17:87:4c:2d:
82:e0:76:8a:f1:ce:a6:dd:cb:f2:34:68:db:21:a9:
0b:e4:d8:0f:8a:c1:b3:40:14:46:6f:8c:65:32:0d:
91:6c:b5:00:6e:b5:44:fd:c7:be:2b:74:c7:11:f0:
e6:ad:2e:39:1c:4f:d0:78:fe:f7:d0:2e:cd:4a:ae:
75:89:cb:0c:9d:de:f3:50:3b:1a:02:2e:5c:19:d1:
70:1e:43:ff:d4:74:54:59:15:78:72:20:b9:af:d9:
f9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:68:45:BA:24:A2:7B:FB:7C:53:BC:2A:0F:E5:4D:0F:A6:94:52:5D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS216412.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a002:fe00::/39
Signature Algorithm: sha256WithRSAEncryption
c9:17:dd:7a:b6:ff:e0:fc:d1:c4:5e:22:09:8d:d5:7a:a7:82:
6a:fa:fa:9b:d7:d0:83:39:f6:3e:20:24:ee:db:5f:9f:8f:3c:
00:b5:18:7d:1e:f7:fd:7a:73:29:84:14:2f:4c:b0:fe:b4:f5:
cb:b9:9c:e2:57:d2:f1:b6:4f:73:53:6e:9e:83:bd:bc:96:e9:
10:1e:0b:9a:a5:bb:a6:f0:f2:f8:51:6a:69:ff:5a:d9:ad:8a:
4b:44:9e:a8:4c:3d:c5:fc:9a:b0:d8:7c:9f:55:6e:97:13:a9:
e0:97:14:6e:e5:67:a7:ee:92:99:21:d4:2d:df:2c:51:77:62:
ba:f1:6e:3d:3e:f8:dd:e5:1a:1b:9a:b8:da:93:5d:4e:06:ea:
0e:d4:d0:dd:b4:0a:fb:44:e3:ea:77:70:d3:0e:1f:33:c1:66:
e1:ce:4e:2e:3d:7d:9a:bd:5c:22:43:0d:15:e0:05:c6:d7:16:
d9:fe:52:48:ce:89:37:32:8e:df:36:19:b1:dd:44:54:d5:d6:
68:0f:6f:80:57:b9:fa:f1:91:1f:2b:ec:16:fb:46:dc:a2:ee:
1c:eb:af:e5:00:09:5e:d5:d4:38:7c:4c:30:96:c5:1e:51:41:
49:50:53:b8:5c:9f:94:89:6b:36:e2:cb:41:b3:56:9b:e8:7a:
fb:fd:3a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org