Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
File: AS395332.roa (raw, json)
Hash identifier: qLUaOKMobXAORbldLF4z+7bNYe+tA/9xO7gXSlRM3/w=
Subject key identifier: BC:71:6E:AB:A7:C6:53:D1:C6:4C:D0:B7:17:13:8A:E1:2E:A6:34:F0
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2358663AAF9D4E372C9A8D88C83E429DCE249314
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
Signing time: Tue 05 Nov 2024 03:40:04 +0000
ROA not before: Tue 05 Nov 2024 03:35:04 +0000
ROA not after: Tue 04 Nov 2025 03:40:04 +0000
asID: 395332
IP address blocks: 2a06:a005:5f9::/48 maxlen: 48
2a06:a005:c80::/44 maxlen: 48
2a06:a005:12b0::/44 maxlen: 48
2a06:a005:12c0::/44 maxlen: 48
2a06:a005:12d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:58:66:3a:af:9d:4e:37:2c:9a:8d:88:c8:3e:42:9d:ce:24:93:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:04 2024 GMT
Not After : Nov 4 03:40:04 2025 GMT
Subject: CN=BC716EABA7C653D1C64CD0B717138AE12EA634F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0a:5e:16:63:18:12:b9:ef:9a:0c:58:b0:32:
74:45:3d:bd:aa:04:d7:de:46:85:9b:09:3b:e7:5a:
34:42:60:85:ba:12:74:cd:95:f2:98:a7:29:f4:ee:
5b:07:fe:59:33:e9:5a:30:c1:2f:22:4a:44:c7:69:
93:cd:85:f9:f1:9a:33:e7:db:31:a1:25:73:7d:72:
8c:6a:f3:5e:7f:82:7b:77:f1:e9:f2:38:b2:d6:f1:
65:41:5a:f7:81:34:a8:bb:98:28:0d:70:49:62:e5:
85:a7:65:14:e7:35:6a:cf:42:78:bb:04:2a:73:9c:
9f:ca:f8:bf:7c:28:5e:94:5e:bb:0a:23:4a:bd:04:
9f:ce:ad:ef:9f:75:5e:fb:3d:66:75:35:33:58:a3:
1c:bf:e1:2a:c0:19:21:e5:7f:af:67:d4:e9:9a:d8:
1f:f5:8c:2b:f1:80:df:58:cb:ae:77:40:a9:e6:16:
fa:fd:41:b0:9a:a5:a7:bd:e3:d3:2b:1a:57:85:61:
30:6a:d8:6c:a2:9b:89:45:94:a7:77:1e:c2:fd:44:
7a:cc:bb:76:35:80:d8:13:84:4f:18:7f:df:6d:9c:
ff:7d:e9:3d:61:98:0e:1c:d6:37:ce:e9:aa:c6:51:
46:c9:a6:23:57:ef:91:aa:8b:c4:f6:25:ee:e3:10:
c7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:71:6E:AB:A7:C6:53:D1:C6:4C:D0:B7:17:13:8A:E1:2E:A6:34:F0
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS395332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5f9::/48
2a06:a005:c80::/44
2a06:a005:12b0::-2a06:a005:12df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8d:37:07:f0:55:dc:10:1a:1d:50:1b:7d:30:52:83:3e:10:1d:
0c:85:22:75:59:1d:7c:0f:00:64:86:9e:33:28:6f:4c:39:77:
2e:81:1e:4f:c3:d1:0d:a7:5f:5d:3c:96:ff:37:d6:52:53:c1:
b0:2a:02:db:d1:94:1a:32:6a:b8:5f:db:78:c8:2b:b2:1c:1b:
58:3e:84:d4:be:3b:15:ca:eb:a3:62:02:4a:80:cb:b4:24:01:
a5:df:b7:9a:c8:42:fb:a1:bf:db:c5:f4:e2:ec:a7:ba:0a:f9:
36:2f:59:ab:51:c0:14:7c:93:a6:a9:b0:1f:35:a0:30:e9:2c:
a3:89:94:1e:c9:bc:29:0e:0a:5d:26:13:c2:c3:82:2b:84:66:
e5:b6:ba:68:a9:66:c6:d3:9f:0e:d9:a2:c2:0f:44:2b:19:e3:
15:ce:07:b5:78:9e:85:16:69:45:59:2c:43:ee:f8:8c:55:95:
d6:c1:04:d9:b6:d7:1d:d4:d3:46:99:ac:83:65:93:41:84:dd:
d9:4a:c4:59:5c:33:00:17:d2:da:66:62:dd:ab:81:71:07:56:
89:85:3d:6f:76:08:ac:90:d8:8b:d5:56:03:be:08:94:ad:b2:
ab:4c:89:9b:ae:a2:85:a7:81:47:59:8c:c2:53:e7:17:22:a7:
6f:f7:28:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 22:04:25 2024 by rpki-client on console-fra.rpki-client.org