Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
File: AS267776.roa (raw, json)
Hash identifier: 8hXc+ntMJ+2wcNGRWujEZYcxTdggTxQcHCVQtEP6Jvg=
Subject key identifier: AA:7A:4D:B8:9C:5A:57:B7:28:D3:3A:4C:6C:BE:B6:C3:C2:87:F6:E5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 244DEA55F65E01E1B9A6BB1076A50B435B7F6DBE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
Signing time: Tue 05 Dec 2023 02:44:10 +0000
ROA not before: Tue 05 Dec 2023 02:39:10 +0000
ROA not after: Tue 03 Dec 2024 02:44:10 +0000
asID: 267776
IP address blocks: 2a06:a005:bad::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:4d:ea:55:f6:5e:01:e1:b9:a6:bb:10:76:a5:0b:43:5b:7f:6d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:10 2023 GMT
Not After : Dec 3 02:44:10 2024 GMT
Subject: CN=AA7A4DB89C5A57B728D33A4C6CBEB6C3C287F6E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7e:6d:2b:7d:9d:58:88:0a:62:d6:a6:5f:9a:
71:37:6b:1a:c9:5a:58:53:aa:c0:90:a8:cf:e6:a1:
24:71:10:5c:f6:c6:ac:fa:13:0a:a2:7b:79:a2:43:
a2:39:3b:d1:f9:e9:05:1a:10:06:0f:4b:7f:86:aa:
46:b6:2f:d0:f2:b8:67:b9:e6:7b:b1:bc:70:b6:75:
a9:3a:86:68:fa:74:c9:34:2a:5f:5e:da:ab:ea:f9:
a1:31:a4:cc:a9:fe:93:b5:93:2f:13:aa:48:98:f4:
9a:2c:c3:98:83:6b:d8:7e:f1:66:8a:32:11:78:10:
79:4e:c0:d9:69:c4:85:a7:d3:0d:86:aa:02:10:9f:
57:ae:14:5a:e7:02:5d:9a:38:37:9e:76:50:c4:02:
82:cf:45:41:5b:79:58:f1:a8:a2:35:42:e9:0a:f1:
c2:83:6e:b6:5c:a3:0b:c6:51:ba:a6:a9:be:d1:e5:
7b:7d:66:ae:a1:8f:04:ea:32:1d:cd:d1:b4:e7:ff:
79:7d:61:cf:7d:c4:34:0d:f4:71:8f:b7:9d:c5:f5:
45:4c:c4:dc:1a:59:59:6b:05:59:a9:e0:54:56:50:
d5:37:be:f0:71:72:32:bc:2f:52:64:5e:74:f1:75:
69:d8:1e:f7:dd:1d:ce:b7:e1:85:c7:3a:89:d5:cf:
52:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:7A:4D:B8:9C:5A:57:B7:28:D3:3A:4C:6C:BE:B6:C3:C2:87:F6:E5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:bad::/48
Signature Algorithm: sha256WithRSAEncryption
02:19:6b:de:66:7a:63:ed:1a:59:14:d3:8d:87:cf:73:ae:18:
c4:f2:2c:18:4a:c1:7f:ff:b4:e2:23:f8:40:69:c4:84:09:89:
e7:a9:b3:a3:4e:5a:9b:6c:f6:d5:4a:86:fe:07:c0:d8:88:b2:
07:a4:87:52:b6:95:9b:48:16:30:8f:fe:b7:01:ac:6a:3e:83:
09:22:26:da:98:5a:83:7b:dd:35:63:97:cb:76:72:91:ac:eb:
0e:f6:e9:b0:79:78:17:95:96:24:7f:c0:f1:a0:40:67:5d:54:
30:0f:77:19:c5:39:f0:52:d4:94:84:c1:1f:41:9f:0c:f4:38:
ef:78:25:df:0a:01:a2:fa:32:3f:17:ae:e6:67:08:8f:b2:9b:
03:3c:71:79:c8:f1:36:32:4f:f1:aa:c4:05:94:58:50:5c:0b:
66:e4:35:3d:97:19:00:af:ca:34:52:a1:13:01:41:06:3f:a7:
4b:97:32:d5:6a:9a:dd:c3:d3:b7:cd:59:ad:ce:5e:9e:94:ae:
2b:da:33:a7:f6:ec:32:e9:37:89:a4:6d:ab:5b:82:2e:34:1c:
9c:f1:48:7f:95:b7:1d:ba:0a:7f:26:f0:a9:9e:11:08:40:1d:
2d:14:f2:30:be:65:57:c6:8a:ab:9b:35:71:6f:ea:16:76:04:
3d:b6:c2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:06:50 2024 by rpki-client on console-fra.rpki-client.org