Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS44001.roa
File: AS44001.roa (raw, json)
Hash identifier: 53k1NU0jzJPnAXiACOlMZkkulcM/b5sNfaKLiXTg5jQ=
Subject key identifier: 20:7A:F3:62:81:A3:2C:73:3D:59:03:43:D0:EF:61:68:8B:8D:2B:63
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0598D13BE968496210768AB198D94EF73A6F7EAE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS44001.roa
Signing time: Tue 05 Dec 2023 02:44:16 +0000
ROA not before: Tue 05 Dec 2023 02:39:16 +0000
ROA not after: Tue 03 Dec 2024 02:44:16 +0000
asID: 44001
IP address blocks: 2a06:a005:13a0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:98:d1:3b:e9:68:49:62:10:76:8a:b1:98:d9:4e:f7:3a:6f:7e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:16 2023 GMT
Not After : Dec 3 02:44:16 2024 GMT
Subject: CN=207AF36281A32C733D590343D0EF61688B8D2B63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7d:c3:62:71:22:ab:c1:f3:a7:47:86:a2:64:
fd:a7:7e:b1:ae:ee:9d:02:ea:f1:93:89:fa:0b:fd:
3d:bd:07:76:12:bd:06:7f:79:ae:a7:af:f2:84:3b:
d6:15:4d:f2:bb:14:7f:7f:07:a9:36:80:06:ba:b8:
a2:ef:cf:08:12:90:3b:28:1e:8e:18:cd:e5:79:f6:
cc:a0:c3:ca:ad:21:6c:b1:95:8b:af:32:0b:8b:f3:
06:e2:ae:29:b0:01:39:15:0c:f2:c3:1b:c7:b4:6d:
d0:63:cd:1f:f2:b1:7f:c6:3c:82:19:a4:7b:9f:57:
82:0a:98:32:f1:1f:4c:98:8a:dd:07:f5:90:ad:74:
24:01:16:0d:bc:3c:4e:77:de:fc:e9:08:ca:49:47:
40:e8:cc:fa:3d:09:77:d3:e4:40:2a:da:50:0e:0f:
a8:02:c4:b7:5c:e3:a9:9f:a1:38:af:f7:ad:fb:3f:
fa:2b:9b:d5:9d:4a:0e:ec:08:12:af:30:58:2e:ba:
8a:b9:ee:87:21:a3:c1:89:ed:bf:c7:62:50:5e:d9:
d2:4b:ee:05:76:8e:70:b5:3c:b2:6f:31:b3:a3:04:
3e:91:b1:a5:a7:e4:63:70:7a:66:42:e6:43:b8:df:
d0:3d:66:f3:b6:dc:77:ac:0a:89:e8:c2:97:69:84:
1b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7A:F3:62:81:A3:2C:73:3D:59:03:43:D0:EF:61:68:8B:8D:2B:63
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS44001.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:13a0::/44
Signature Algorithm: sha256WithRSAEncryption
7b:ad:0d:b1:ad:af:df:19:07:2a:bf:80:f2:90:97:78:8e:01:
b0:a1:e5:c0:4b:ce:82:81:45:f3:50:62:80:86:f4:2a:d6:9f:
2b:2f:51:27:37:31:f9:2d:1b:b3:1c:86:4c:23:89:a3:e6:35:
b8:56:ad:41:4c:f5:a2:db:60:77:43:2d:5f:c8:11:43:f0:40:
39:6b:e7:9e:fb:5c:b9:09:2b:7a:2a:6d:e2:46:c5:8e:78:31:
da:49:4f:da:d4:34:a6:7c:47:6a:35:31:eb:4f:b0:8c:5d:1d:
14:3c:af:6d:31:79:56:fb:6c:d1:a5:fa:a1:13:31:73:31:90:
04:69:3c:b8:bc:cd:f7:b3:af:41:0a:df:0b:50:d9:a1:6f:d6:
7c:51:ee:0b:b2:dc:49:79:8d:c4:50:64:01:09:5b:ae:47:da:
e0:af:e9:59:60:ad:ec:26:a8:eb:9a:f4:d3:30:39:72:b4:51:
6f:c9:67:ba:c2:a8:f3:4a:ac:3e:43:6a:cd:6d:82:df:e2:98:
2e:5e:77:eb:b3:6b:4c:70:1f:54:a2:a1:61:de:e1:23:e8:c6:
25:76:fe:bf:ad:ae:a3:ca:c3:fa:d0:32:89:9f:b0:06:04:a1:
ec:0e:49:f9:a4:ec:d2:44:f0:08:62:4d:12:5a:ef:fd:11:3a:
52:cd:81:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:13:13 2024 by rpki-client on console-fra.rpki-client.org