Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52025.roa
File: AS52025.roa (raw, json)
Hash identifier: SD3dagTG0mq7dRNv32h/KFU79Z9MLAYJ1z+ICKu/PeU=
Subject key identifier: 6E:4B:C8:05:0C:1A:C0:6B:AE:02:93:9B:E2:47:F5:62:77:14:B8:F8
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7C4F9478B0F69ECE4FB206237CEFE51EA8EB699B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52025.roa
Signing time: Tue 09 Apr 2024 01:44:24 +0000
ROA not before: Tue 09 Apr 2024 01:39:24 +0000
ROA not after: Tue 08 Apr 2025 01:44:24 +0000
asID: 52025
IP address blocks: 2a06:a005:5b8::/48 maxlen: 48
2a06:a005:1da0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:4f:94:78:b0:f6:9e:ce:4f:b2:06:23:7c:ef:e5:1e:a8:eb:69:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 9 01:39:24 2024 GMT
Not After : Apr 8 01:44:24 2025 GMT
Subject: CN=6E4BC8050C1AC06BAE02939BE247F5627714B8F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d7:23:b3:29:20:6e:bf:bc:54:f5:0f:11:b6:
91:07:d2:73:46:4c:93:16:61:da:b6:df:20:4d:51:
7d:f3:1a:04:03:56:66:d1:01:a4:f9:9e:f9:b4:0c:
60:08:47:51:c9:ba:86:b3:fa:06:7f:05:1d:34:91:
09:d6:45:0c:f1:35:a3:68:f9:29:4d:d0:93:99:4a:
57:ca:e4:48:94:aa:b6:06:87:ac:82:0b:f3:00:3e:
ff:8e:b9:20:12:f1:28:a6:f9:f0:c9:3d:7b:a6:2c:
cc:de:cb:59:a4:03:9b:db:8e:06:5c:cb:4b:6a:14:
3e:6e:e9:fc:ee:30:70:b0:c4:f3:56:24:6b:1c:24:
cb:af:c8:bd:58:4e:1c:fa:82:4f:82:d2:b1:bb:f2:
9f:97:87:31:ec:07:1a:a0:90:f5:d5:ea:ad:93:2a:
5c:ce:79:7e:8e:ea:e4:e9:1a:6b:1d:54:68:56:8d:
59:85:3c:21:ab:12:84:9c:59:8b:da:a5:97:d6:0d:
51:14:35:1b:e2:06:2b:26:e0:b4:b4:18:41:e3:a1:
e1:bc:92:66:5c:48:de:89:6d:b4:59:08:0a:37:2e:
76:96:c6:2d:01:5f:39:e2:cf:9a:48:af:df:be:ed:
80:72:c9:85:cd:d1:de:62:62:fd:fe:a0:f5:20:4c:
85:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4B:C8:05:0C:1A:C0:6B:AE:02:93:9B:E2:47:F5:62:77:14:B8:F8
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS52025.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5b8::/48
2a06:a005:1da0::/44
Signature Algorithm: sha256WithRSAEncryption
63:9c:76:1b:30:6e:c9:11:f7:98:1b:17:4e:1f:2d:fa:b0:ed:
ad:dd:1f:ff:7e:d2:e0:fc:76:b8:1a:0e:be:4d:f9:5d:e3:52:
99:4c:c7:ad:89:19:c8:3d:8b:76:8c:b9:20:84:ef:5c:48:8c:
fc:36:18:ec:eb:0d:3e:2d:52:6e:e5:ec:f7:30:4f:88:e5:96:
f6:fc:64:67:80:9a:80:fb:8c:92:3f:3b:dd:01:85:02:4d:ec:
fc:1b:ef:0f:f7:46:e2:1c:76:28:4d:95:fa:8d:f1:b5:4f:8f:
7a:b7:02:49:91:a8:65:66:aa:5e:57:5c:04:21:cb:a0:d8:f0:
a0:b3:32:23:68:68:55:2b:6f:9a:c8:95:96:05:4c:cf:79:bc:
b4:81:f9:52:d7:54:62:90:88:fc:32:18:d0:9c:8d:bc:5f:66:
26:c4:c5:1c:20:57:12:3a:ad:bc:ea:81:26:ab:d7:6b:06:f7:
20:b5:46:7f:0e:e0:df:ce:a7:f7:43:e4:35:81:b1:51:8d:51:
34:4a:dd:b2:9a:cb:b4:3e:5d:ca:ee:68:45:03:dd:7f:e6:c9:
15:56:cf:d2:41:d2:79:74:99:59:0d:c8:ca:c8:e8:e9:32:3e:
31:70:3d:68:8d:85:53:92:20:af:c7:17:2f:43:43:d9:c4:f8:
25:68:1c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:36:52 2024 by rpki-client on console-ams.rpki-client.org