Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
File: AS394414.roa (raw, json)
Hash identifier: TZfPAywKLphjNfA2NpgQZsUwz+RwZBmAUAX7LEdoiwI=
Subject key identifier: C3:B6:54:46:F5:B7:93:E4:61:3C:FC:B8:4B:CF:F0:6F:7C:3A:54:5C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 398AD1102A3F449762F1DB7CC3EF3471A6BC3BD1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
Signing time: Tue 05 Nov 2024 03:40:04 +0000
ROA not before: Tue 05 Nov 2024 03:35:04 +0000
ROA not after: Tue 04 Nov 2025 03:40:04 +0000
asID: 394414
IP address blocks: 2a06:a005:2d8::/48 maxlen: 48
2a06:a005:ae0::/44 maxlen: 48
2a06:a005:19a0::/44 maxlen: 48
2a06:a005:19f0::/44 maxlen: 48
2a06:a005:1a00::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:8a:d1:10:2a:3f:44:97:62:f1:db:7c:c3:ef:34:71:a6:bc:3b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:04 2024 GMT
Not After : Nov 4 03:40:04 2025 GMT
Subject: CN=C3B65446F5B793E4613CFCB84BCFF06F7C3A545C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d2:36:ca:3b:38:18:f8:49:12:4a:9c:9a:25:
0f:42:25:31:d4:74:17:d1:08:af:8e:8a:e1:12:bb:
b5:dd:cf:b2:8f:5a:cd:a8:03:73:59:db:d1:62:28:
f0:b8:a4:dc:0a:32:3d:40:1d:bc:b0:f1:ec:03:65:
b9:37:21:e4:21:f1:3f:66:89:0f:14:dd:b8:81:fa:
8e:f4:50:63:45:48:ac:58:bc:9b:35:a5:74:cb:ed:
3f:45:0f:e7:6b:19:3a:89:e4:48:3d:19:bb:0e:3c:
33:98:d6:68:00:29:8e:c3:5d:08:8e:f5:11:38:fc:
47:89:c1:10:82:ca:39:0f:21:ed:3a:39:e2:1d:8a:
eb:29:eb:8e:c7:29:bf:a3:72:ec:99:65:cf:5c:bf:
b8:6e:db:80:1a:af:75:55:0b:c6:12:f1:48:ff:99:
80:61:8b:55:51:e6:5b:1a:c6:b7:4e:9b:b6:95:ba:
79:ad:91:74:f6:a7:8a:4e:97:8f:6b:58:7f:5f:8e:
63:73:b2:19:44:9a:b6:11:55:e1:2e:e7:dd:57:5d:
cb:ec:15:9f:35:29:6a:57:23:66:51:81:1c:0c:6e:
37:63:d4:04:e4:1a:64:60:d2:1a:20:7e:a3:bd:c5:
77:8a:0c:bf:00:02:88:cd:49:c1:ba:ac:7a:14:57:
12:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B6:54:46:F5:B7:93:E4:61:3C:FC:B8:4B:CF:F0:6F:7C:3A:54:5C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS394414.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2d8::/48
2a06:a005:ae0::/44
2a06:a005:19a0::/44
2a06:a005:19f0::-2a06:a005:1a0f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9a:73:23:9a:ed:6b:ca:9e:77:c1:fc:dc:1a:e7:8e:01:a6:f5:
01:fe:15:8e:49:91:92:c8:04:6d:61:1f:c6:1e:f0:96:b6:c5:
02:28:f6:f1:7f:58:53:8a:72:54:b9:9d:ac:47:d7:72:5b:1a:
73:0b:29:4c:1d:5d:d8:f0:d4:70:c0:8f:98:a1:41:9d:a1:7b:
92:72:9d:d6:81:80:fa:00:07:7f:9a:3e:e8:bf:7b:e4:64:39:
65:0c:f0:1e:88:8a:ed:2d:ab:53:92:bc:09:b3:72:ad:d2:66:
97:e0:c8:99:d9:d0:48:0b:16:19:34:8e:5d:91:0f:d8:36:9f:
db:17:f9:58:50:3a:23:ac:d4:32:02:d8:b7:95:98:82:7e:7d:
f6:99:d6:2c:0d:01:20:a2:a5:65:02:23:ce:97:5d:7f:a3:68:
ae:f1:f4:ee:de:43:c4:20:44:4c:11:0f:d9:4b:e2:28:9c:bc:
77:93:2a:be:08:79:90:8e:31:81:68:89:b9:23:ee:3b:23:81:
56:84:6c:7e:1a:af:5a:81:02:3b:d3:c0:30:d9:61:56:20:42:
cd:bb:06:09:fb:70:dc:fd:2b:c4:cf:1d:ac:ea:7a:7f:22:2c:
a6:36:e4:8e:28:07:0e:8a:93:c3:9b:8b:a9:1e:8b:ff:0f:f1:
9a:0e:c8:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:45:55 2024 by rpki-client on console-ams.rpki-client.org