Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
File: AS394414.roa (raw, json)
Hash identifier: n8cp8EgnqfYxTeF6FSs8tKc0l3ZXO9iQomEnW4RVtGE=
Subject key identifier: 32:BC:DF:56:B8:E4:CF:C6:8B:61:15:A6:09:26:E4:46:F9:6D:00:0E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 70FDC64865A85C4949A8DDAB14FB2B4A2E2B8599
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 394414
IP address blocks: 2a06:a005:2d8::/48 maxlen: 48
2a06:a005:ae0::/44 maxlen: 48
2a06:a005:19a0::/44 maxlen: 48
2a06:a005:19f0::/44 maxlen: 48
2a06:a005:1a00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:fd:c6:48:65:a8:5c:49:49:a8:dd:ab:14:fb:2b:4a:2e:2b:85:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=32BCDF56B8E4CFC68B6115A60926E446F96D000E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:43:e6:da:46:07:3f:d8:bb:27:5b:b2:d1:95:
c6:96:a1:4b:89:0d:79:09:ae:80:57:cc:80:70:53:
b6:ac:fe:c0:c0:3e:7a:78:73:01:b8:03:2a:ed:22:
09:42:87:88:83:92:e6:9c:15:67:80:23:9d:26:6a:
40:bb:9b:99:bd:05:ce:0a:f2:a9:78:55:9b:e2:cd:
0e:45:b7:c5:53:4f:17:f6:aa:01:50:09:07:e8:57:
1d:b6:46:4c:cb:de:e2:8c:f6:91:8c:c7:02:36:a5:
f9:3a:ee:17:c0:3e:1b:31:71:df:9e:cf:b6:16:40:
45:65:96:85:49:fc:21:ab:ee:25:19:ad:4d:67:70:
d8:88:51:c4:b0:6e:ad:4d:8b:77:76:2a:18:51:99:
b4:e1:87:02:3c:38:8a:0d:94:16:40:6d:58:fa:90:
4d:50:50:fd:9f:43:5e:da:dc:93:21:a1:87:68:4f:
ed:21:4f:2c:a3:89:62:62:e5:06:7a:cc:ea:92:77:
81:29:07:44:e8:df:55:4c:40:6d:b1:4c:6d:47:5e:
c3:0f:ea:f4:18:49:3f:b0:48:66:d1:be:4e:e3:31:
79:b9:ff:3e:a2:50:5d:0f:47:07:c0:e1:c2:f1:52:
ea:74:48:21:86:d3:95:43:8f:a9:9e:ee:dc:be:3f:
a8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BC:DF:56:B8:E4:CF:C6:8B:61:15:A6:09:26:E4:46:F9:6D:00:0E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2d8::/48
2a06:a005:ae0::/44
2a06:a005:19a0::/44
2a06:a005:19f0::-2a06:a005:1a0f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
12:45:db:37:c9:91:23:9b:f5:b5:b0:a2:46:b3:0d:51:bb:0e:
e2:67:3a:21:3e:75:16:89:37:a8:95:c7:24:a3:9d:e7:b4:a9:
47:57:48:d3:a8:8a:cf:96:29:03:02:37:b2:9f:7b:7b:ae:0c:
f6:4f:fd:44:e9:f0:81:72:22:bd:95:77:5e:b8:13:05:bc:2f:
b9:6f:fd:65:3a:fa:63:d8:6e:43:e9:16:db:17:f8:0d:24:cc:
d9:66:64:ef:a6:37:dc:6f:26:9a:fe:5d:6a:69:29:95:7e:1d:
f7:e8:8e:0b:b1:ba:17:32:4b:33:52:0a:65:51:f5:96:a4:6a:
97:82:6c:47:78:5e:0e:08:0e:4c:e7:9c:e1:a4:ce:01:2d:19:
f8:bf:c9:69:ca:41:ee:78:1a:1e:a0:e7:f6:56:95:1f:15:1d:
24:23:d2:51:95:6b:24:e4:2c:84:8a:99:02:09:74:91:43:46:
df:58:3b:66:51:18:3a:8f:fc:2c:d5:f7:8a:70:77:74:9a:af:
65:50:7f:16:a1:1a:08:f1:22:eb:6c:0a:41:b1:3b:ae:3c:35:
a7:f2:6d:c0:61:4f:53:57:7a:cb:b2:08:32:5d:72:b7:7c:08:
7a:65:c4:9f:cf:a7:af:c1:71:b0:2d:1b:f7:ec:8c:c8:6c:f9:
28:d7:ab:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:57 2024 by rpki-client on console-fra.rpki-client.org