Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
File: AS395332.roa (raw, json)
Hash identifier: zX53rbNwfdroDeEglVpaWx6yt4Gc/gvPrDaZsV8zMjk=
Subject key identifier: 8C:76:86:AC:9C:22:8C:6C:9A:FC:3C:8E:68:01:F0:04:6C:0F:C8:7F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 27B0A7FFD4B295161404097E49229F38A167E41E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
Signing time: Tue 05 Dec 2023 02:44:12 +0000
ROA not before: Tue 05 Dec 2023 02:39:12 +0000
ROA not after: Tue 03 Dec 2024 02:44:12 +0000
asID: 395332
IP address blocks: 2a06:a005:5f9::/48 maxlen: 48
2a06:a005:c80::/44 maxlen: 48
2a06:a005:12b0::/44 maxlen: 48
2a06:a005:12c0::/44 maxlen: 48
2a06:a005:12d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:b0:a7:ff:d4:b2:95:16:14:04:09:7e:49:22:9f:38:a1:67:e4:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:12 2023 GMT
Not After : Dec 3 02:44:12 2024 GMT
Subject: CN=8C7686AC9C228C6C9AFC3C8E6801F0046C0FC87F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c7:66:b0:6e:25:26:0a:10:e0:0a:74:71:3f:
a8:6e:ef:50:2a:58:fb:5e:a6:26:5c:d4:62:4b:b2:
00:13:b5:74:b7:2d:3e:11:99:8a:c5:77:d9:dd:ad:
35:d0:e3:d6:35:1a:5a:3a:34:16:9b:76:5a:35:4e:
af:2c:41:20:02:81:af:2a:c7:ff:a2:57:48:c3:c6:
22:29:97:fe:be:3a:09:bf:e7:e1:9a:d8:10:03:89:
aa:ac:fb:60:54:31:f1:a1:8b:e5:fb:eb:ff:ab:d5:
0e:4f:e1:58:d4:0a:f4:f8:db:4a:2a:a7:8b:4a:59:
5b:32:20:d4:80:d6:7c:d8:17:b0:7f:9a:3f:d9:a7:
59:43:31:d2:b0:d2:b3:29:c6:54:74:4d:9c:53:2e:
2e:c1:90:e5:83:88:e0:35:f6:f7:ec:67:74:87:3b:
10:25:5e:2c:3b:49:ee:9a:b6:52:5e:a6:7e:8b:80:
4f:ce:0c:6b:02:15:a6:30:88:66:0f:19:a3:5f:dc:
4f:e4:a0:50:28:22:d2:68:4a:22:5d:5e:18:b2:e8:
24:b3:1c:19:b2:46:27:d7:00:d6:5c:89:be:c8:b5:
ac:db:d1:13:f0:d0:73:ca:49:c6:a0:28:00:1e:84:
0b:0e:2a:52:57:f9:7d:a3:ce:c2:f2:59:8f:57:8a:
5c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:76:86:AC:9C:22:8C:6C:9A:FC:3C:8E:68:01:F0:04:6C:0F:C8:7F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5f9::/48
2a06:a005:c80::/44
2a06:a005:12b0::-2a06:a005:12df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
27:05:3d:3e:78:09:45:46:cc:f9:a2:88:2f:76:7b:fa:c0:d4:
1e:c3:9c:64:8b:8f:35:0a:80:3a:ff:10:01:d7:a6:5e:a1:c7:
c1:50:ea:92:4d:60:7e:16:05:ad:01:3c:20:33:92:e9:f8:a5:
d2:a5:dd:18:68:96:55:ca:ff:f9:b7:8c:6b:e3:6b:9a:c7:4e:
11:29:0c:6f:41:37:8a:06:50:57:5e:1b:ad:73:b1:8f:c8:76:
fb:58:79:9d:c9:c1:5f:c5:ef:15:35:63:64:81:e5:d5:55:af:
c9:7d:c8:91:82:ca:3e:59:bb:7e:5d:8c:18:97:8c:1b:99:df:
ed:ee:98:91:3c:ab:ae:27:eb:51:53:dc:4b:79:f8:08:08:2a:
a3:c4:01:37:01:5b:60:e2:25:73:ae:cc:05:e1:b3:a7:6e:e2:
c7:d6:7c:92:7f:1a:cc:e8:07:dc:50:58:42:40:ed:bb:12:75:
ec:f3:bc:5c:be:38:75:e1:10:e4:fb:18:12:c5:04:54:b1:e1:
ca:9e:a3:b9:0f:3d:d4:5d:0a:c0:3f:f9:89:bd:2a:f3:29:14:
ed:19:c7:3c:ad:8d:10:00:e0:99:f2:74:f6:5e:d6:83:03:72:
83:5a:94:dd:90:1b:0b:aa:95:3b:6c:3b:dd:ce:0e:7e:cf:d8:
6a:f9:8a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org