Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
File: AS267776.roa (raw, json)
Hash identifier: BHED1SFYxqED4mnVp+WDVKE+N2MglZi+kX08Ji+YG1o=
Subject key identifier: F1:47:8F:FE:80:90:A4:DA:26:B2:0D:5E:44:0F:CB:1E:56:AE:39:E1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 70924F9E6AEFEC1B35A2833836A3D1412B5666ED
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 267776
IP address blocks: 2a06:a005:bad::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:92:4f:9e:6a:ef:ec:1b:35:a2:83:38:36:a3:d1:41:2b:56:66:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=F1478FFE8090A4DA26B20D5E440FCB1E56AE39E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a7:0b:fc:e6:e7:a7:e9:0e:f5:21:69:7e:7e:
03:8e:b4:5c:14:ce:81:57:33:fc:c1:5f:6a:ca:ff:
f1:9d:1b:7b:96:93:03:c0:1c:ee:8b:b6:ad:da:9e:
af:91:d9:37:68:1b:b2:ee:e1:7b:d9:9b:ed:75:21:
d2:0e:f1:31:8d:ed:66:f6:4a:22:66:24:8b:1c:70:
d9:01:43:98:a8:56:d3:a5:69:74:aa:b1:4f:85:2d:
f7:9d:0b:8e:1a:c5:f1:0a:a7:a4:19:a0:9f:4e:b1:
13:91:7c:f8:ca:90:c5:9c:99:cc:76:48:51:1b:cc:
49:93:78:17:26:8c:0d:f1:92:14:cd:0b:f3:73:5a:
a0:dd:be:8a:36:e2:a7:7a:08:b3:12:2f:8b:e0:94:
8f:7f:81:cd:f1:3c:87:9b:6d:b2:2c:19:af:42:aa:
ba:66:30:5f:a4:04:f4:bf:03:04:db:dd:30:76:b0:
39:e6:16:84:8f:03:b1:ae:99:15:b5:19:55:36:90:
b0:83:45:bb:da:78:12:95:ab:b7:a5:d6:69:4c:2d:
69:27:13:28:4b:58:63:37:01:e7:d7:ae:70:db:77:
07:bc:e1:50:26:0e:76:68:3f:d7:8f:55:32:0d:a3:
00:f2:7f:d2:6a:15:2f:ec:d8:76:2f:08:e8:03:ce:
bf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:47:8F:FE:80:90:A4:DA:26:B2:0D:5E:44:0F:CB:1E:56:AE:39:E1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS267776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:bad::/48
Signature Algorithm: sha256WithRSAEncryption
50:9a:4b:fb:eb:0f:96:87:db:e4:05:d9:35:5a:48:70:5b:79:
0f:28:79:77:4d:47:21:18:0b:ca:d3:39:bd:50:55:7e:e8:53:
ff:9b:73:82:8e:22:e8:59:09:2d:3e:1d:c3:ac:39:cd:fd:a9:
ab:91:96:d6:4f:df:cc:f9:e9:df:2a:49:a2:93:fa:eb:47:53:
15:84:a5:31:1d:34:d5:f9:be:02:5f:94:a5:dc:d2:a8:39:4e:
44:0d:b3:5b:b2:3e:e0:f5:23:73:d4:dd:4f:26:93:c9:4c:b6:
22:ba:39:83:9b:50:a3:ee:68:6b:9d:95:82:5d:25:cb:66:91:
d9:c3:64:85:59:6a:23:d4:e8:cd:63:c3:8b:00:16:51:de:b7:
0a:f3:92:2e:ef:43:e3:84:8f:62:67:06:b2:19:5d:c9:ee:8b:
74:09:eb:3d:7b:7e:c1:cb:31:7b:2c:26:ac:7e:78:cc:1d:32:
18:9a:1d:de:48:c1:f0:16:95:dd:57:be:7c:59:aa:4c:54:ec:
e8:68:fa:ff:bd:0e:16:4b:7d:47:86:0d:88:96:08:5e:ba:be:
df:e0:13:c0:7c:ce:8f:19:e2:38:9f:ed:b4:95:0b:73:14:2a:
29:b0:fa:d2:8c:76:5d:cb:97:b8:41:b5:94:ea:ef:0f:c9:ba:
5a:58:67:be
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUcJJPnmrv7Bs1ooM4NqPRQStWZu0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDhaFw0yNTExMDQwMzQwMDhaMDMxMTAvBgNV
BAMTKEYxNDc4RkZFODA5MEE0REEyNkIyMEQ1RTQ0MEZDQjFFNTZBRTM5RTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCpwv85uen6Q71IWl+fgOOtFwU
zoFXM/zBX2rK//GdG3uWkwPAHO6Ltq3anq+R2TdoG7Lu4XvZm+11IdIO8TGN7Wb2
SiJmJIsccNkBQ5ioVtOlaXSqsU+FLfedC44axfEKp6QZoJ9OsRORfPjKkMWcmcx2
SFEbzEmTeBcmjA3xkhTNC/NzWqDdvoo24qd6CLMSL4vglI9/gc3xPIebbbIsGa9C
qrpmMF+kBPS/AwTb3TB2sDnmFoSPA7GumRW1GVU2kLCDRbvaeBKVq7el1mlMLWkn
EyhLWGM3AefXrnDbdwe84VAmDnZoP9ePVTINowDyf9JqFS/s2HYvCOgDzr8JAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQU8UeP/oCQpNomsg1eRA/LHlauOeEwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjY3Nzc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQutMA0GCSqGSIb3DQEBCwUAA4IBAQBQmkv7
6w+Wh9vkBdk1WkhwW3kPKHl3TUchGAvK0zm9UFV+6FP/m3OCjiLoWQktPh3DrDnN
/amrkZbWT9/M+enfKkmik/rrR1MVhKUxHTTV+b4CX5Sl3NKoOU5EDbNbsj7g9SNz
1N1PJpPJTLYiujmDm1Cj7mhrnZWCXSXLZpHZw2SFWWoj1OjNY8OLABZR3rcK85Iu
70PjhI9iZwayGV3J7ot0Ces9e37ByzF7LCasfnjMHTIYmh3eSMHwFpXdV758WapM
VOzoaPr/vQ4WS31Hhg2Ilgheur7f4BPAfM6PGeI4n+20lQtzFCopsPrSjHZdy5e4
QbWU6u8PybpaWGe+
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:22 2024 by rpki-client on console-ams.rpki-client.org