Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
File: AS24322.roa (raw, json)
Hash identifier: nIuKzOWHFmJ3MZfP8/mV/U3KUdxENOlB+2fqKLwZW94=
Subject key identifier: BF:2A:2E:7D:15:58:74:BC:97:33:06:EA:9B:42:68:0E:20:CB:16:C1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 01DEC1A6B13EA0633C73A11E1DA92598714297FE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
Signing time: Tue 05 Dec 2023 02:44:15 +0000
ROA not before: Tue 05 Dec 2023 02:39:15 +0000
ROA not after: Tue 03 Dec 2024 02:44:15 +0000
asID: 24322
IP address blocks: 2a06:a005:430::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:de:c1:a6:b1:3e:a0:63:3c:73:a1:1e:1d:a9:25:98:71:42:97:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:15 2023 GMT
Not After : Dec 3 02:44:15 2024 GMT
Subject: CN=BF2A2E7D155874BC973306EA9B42680E20CB16C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7e:1d:e4:65:86:9f:a0:0f:03:e3:ef:76:a9:
6b:b8:18:e2:e8:14:0f:08:38:d7:71:f2:da:ae:83:
9f:9b:15:ae:06:cd:a5:29:f9:85:87:b0:4e:4a:d2:
d4:ff:60:d4:ff:12:26:3d:32:b8:31:33:62:2c:3a:
09:69:a0:f7:93:0b:51:40:18:c3:2e:6f:85:3c:d0:
34:7d:bb:2b:04:be:48:a7:f9:71:4a:4e:ae:a0:41:
04:f0:21:f7:06:49:fc:ce:69:3e:a9:2c:d0:5f:b3:
b8:e8:8a:40:3f:11:c3:66:d6:eb:bf:fd:ef:2b:60:
c7:84:ba:34:24:07:95:59:41:3d:23:67:d6:af:dd:
1f:45:3b:b6:3b:82:7d:61:fc:23:2d:39:84:af:81:
40:5f:e2:8c:95:96:a1:7d:d5:42:85:99:dd:62:ff:
09:8d:72:7e:8a:bd:33:46:1c:3f:4d:ff:fe:18:12:
02:10:db:68:ab:44:03:a4:b7:37:fe:b8:08:df:53:
37:07:46:ff:5c:b7:74:57:6b:37:15:c4:9a:4c:43:
39:2b:d1:8d:d0:37:b8:e5:1b:36:53:78:99:33:70:
bd:3d:82:97:85:9b:60:bf:5e:8b:01:bc:7f:bd:72:
12:fb:5c:92:f0:4c:15:24:c0:0f:76:4e:c2:c0:17:
91:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2A:2E:7D:15:58:74:BC:97:33:06:EA:9B:42:68:0E:20:CB:16:C1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:430::/48
Signature Algorithm: sha256WithRSAEncryption
45:ec:e5:77:07:98:c3:10:f5:43:be:f2:11:3a:67:fd:08:20:
45:3c:b1:2f:a1:11:d3:b8:c4:e7:7e:dc:2a:3f:3f:50:12:fb:
f1:ef:b9:52:0f:7a:fc:fe:81:f1:6b:ca:e1:98:e7:29:90:31:
56:77:31:77:0d:2c:6c:7b:72:9c:d8:9e:ca:db:2c:0e:c3:fd:
b0:30:ea:69:85:46:19:73:55:cf:e9:0d:86:4e:1f:25:94:5a:
35:63:73:20:ce:27:7e:03:5c:07:4d:23:2d:69:56:08:ed:c4:
02:14:d0:a9:7b:23:e7:f6:40:88:4b:45:3a:dd:bb:6c:e8:f0:
d3:e5:b1:52:0f:bb:4c:69:6e:3f:20:a8:fa:b3:31:d7:21:f7:
b9:80:33:bc:f8:1d:6f:de:2b:ad:2b:f5:3d:8f:68:a0:1c:fc:
b4:58:f2:3b:25:1e:dc:4f:1d:72:19:a5:4c:11:2e:58:a1:f8:
5e:6b:48:92:d6:f5:82:96:6e:7c:d6:18:50:66:ca:2d:0d:56:
23:e5:a2:da:72:71:26:d5:22:6f:f1:80:56:5b:da:57:fa:8b:
af:f9:79:a6:35:ef:03:83:ea:96:95:0e:86:36:16:59:a2:8b:
c4:ed:07:19:66:c8:1f:f2:26:dd:93:0a:72:a1:76:5c:cd:9b:
36:01:49:14
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUAd7BprE+oGM8c6EeHaklmHFCl/4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yMzEyMDUwMjM5MTVaFw0yNDEyMDMwMjQ0MTVaMDMxMTAvBgNV
BAMTKEJGMkEyRTdEMTU1ODc0QkM5NzMzMDZFQTlCNDI2ODBFMjBDQjE2QzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgfh3kZYafoA8D4+92qWu4GOLo
FA8IONdx8tqug5+bFa4GzaUp+YWHsE5K0tT/YNT/EiY9MrgxM2IsOglpoPeTC1FA
GMMub4U80DR9uysEvkin+XFKTq6gQQTwIfcGSfzOaT6pLNBfs7joikA/EcNm1uu/
/e8rYMeEujQkB5VZQT0jZ9av3R9FO7Y7gn1h/CMtOYSvgUBf4oyVlqF91UKFmd1i
/wmNcn6KvTNGHD9N//4YEgIQ22irRAOktzf+uAjfUzcHRv9ct3RXazcVxJpMQzkr
0Y3QN7jlGzZTeJkzcL09gpeFm2C/XosBvH+9chL7XJLwTBUkwA92TsLAF5HPAgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQUvyoufRVYdLyXMwbqm0JoDiDLFsEwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjQzMjIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAqBqAFBDAwDQYJKoZIhvcNAQELBQADggEBAEXs5XcH
mMMQ9UO+8hE6Z/0IIEU8sS+hEdO4xOd+3Co/P1AS+/HvuVIPevz+gfFryuGY5ymQ
MVZ3MXcNLGx7cpzYnsrbLA7D/bAw6mmFRhlzVc/pDYZOHyWUWjVjcyDOJ34DXAdN
Iy1pVgjtxAIU0Kl7I+f2QIhLRTrdu2zo8NPlsVIPu0xpbj8gqPqzMdch97mAM7z4
HW/eK60r9T2PaKAc/LRY8jslHtxPHXIZpUwRLlih+F5rSJLW9YKWbnzWGFBmyi0N
ViPlotpycSbVIm/xgFZb2lf6i6/5eaY17wOD6paVDoY2Flmii8TtBxlmyB/yJt2T
CnKhdlzNmzYBSRQ=
-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org