Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS54729.roa
File: AS54729.roa (raw, json)
Hash identifier: R2+NuSlX6oAJkX+7G+Dx1OfBluVkXaeTkyVu2knNzmw=
Subject key identifier: 41:DF:EE:74:24:B0:24:57:BB:E1:8F:04:FE:39:D6:4A:D1:96:FE:A2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5D54C46701FD2C9F3434B792681E428CC9B05BAA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS54729.roa
Signing time: Tue 05 Dec 2023 02:44:18 +0000
ROA not before: Tue 05 Dec 2023 02:39:18 +0000
ROA not after: Tue 03 Dec 2024 02:44:18 +0000
asID: 54729
IP address blocks: 2a06:a005:433::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:54:c4:67:01:fd:2c:9f:34:34:b7:92:68:1e:42:8c:c9:b0:5b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:18 2023 GMT
Not After : Dec 3 02:44:18 2024 GMT
Subject: CN=41DFEE7424B02457BBE18F04FE39D64AD196FEA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d3:39:d4:b0:75:56:4c:f2:21:8f:cc:4c:1c:
2d:0b:90:df:45:b6:52:c5:90:65:3d:df:f3:42:fb:
92:43:2d:11:1f:ae:4c:04:e5:89:d7:9b:66:76:6e:
1f:2d:b7:cf:be:49:7a:71:b9:6f:5a:46:da:21:4b:
86:e8:22:9c:bc:1a:cf:06:35:4a:a2:d3:99:1b:da:
87:08:36:47:6e:51:72:12:d8:4a:6e:0f:74:b3:45:
96:ab:ef:d7:3b:32:90:58:73:79:a5:8b:99:4e:eb:
67:65:89:24:94:63:74:bd:32:46:4b:c4:75:db:ff:
da:ca:26:87:af:ec:6b:e7:fd:f0:be:1d:39:56:29:
ee:bd:98:c2:69:cf:af:ff:5a:d3:f0:f4:a4:e5:54:
07:3f:1d:e6:b2:d7:e5:66:e3:e2:93:f6:30:96:c4:
52:d6:39:52:66:17:f1:9f:7a:ab:ef:dc:9f:89:0a:
80:35:95:d5:e1:42:af:ac:89:2b:05:9f:42:b5:2d:
1f:94:b7:1c:54:32:6d:46:3e:35:5d:7f:96:48:e1:
ce:c9:2a:d9:33:9b:01:15:13:dc:63:88:7f:64:04:
c9:7e:80:db:75:ea:fe:a1:df:00:be:be:b3:f8:49:
59:19:bc:a8:7c:e6:7d:4b:c5:f7:1e:dc:fd:b1:da:
29:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DF:EE:74:24:B0:24:57:BB:E1:8F:04:FE:39:D6:4A:D1:96:FE:A2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS54729.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:433::/48
Signature Algorithm: sha256WithRSAEncryption
55:30:c7:48:89:d2:86:2c:44:cc:ab:74:6d:14:f3:c2:04:9f:
2e:58:2a:40:13:63:7f:42:d4:c0:36:77:4d:eb:ec:f6:db:3b:
c8:64:80:f5:19:d8:f5:64:82:db:82:2d:8c:8c:e7:fb:a2:0d:
fd:89:8d:8c:2c:49:0e:8f:1b:3e:a2:31:0b:e7:97:20:6c:cf:
f4:85:3d:00:0d:54:69:05:67:2d:8b:da:76:0e:22:cb:2d:f7:
df:38:d6:22:04:71:db:d0:4c:65:77:98:39:ff:0a:2e:53:bd:
38:f7:a4:6c:91:25:b1:80:3a:54:12:7d:b7:69:ff:ee:22:5a:
7c:80:47:b3:7b:0e:c9:33:15:b7:b9:9f:aa:f8:2a:45:19:6a:
b0:fd:30:1c:26:b6:47:ee:ca:84:f8:10:43:f1:be:e3:77:7b:
76:f7:b8:76:c6:28:11:36:f7:6c:30:7c:90:b2:b9:9d:31:18:
bc:37:a4:8b:d8:05:2d:51:cf:92:16:96:d2:13:a8:ec:61:cb:
72:8b:82:48:58:11:af:c5:2c:cd:6c:32:c9:8b:fa:0c:7f:4c:
4e:97:3d:5b:7a:f8:fe:7b:fe:3d:19:91:10:3a:5e:eb:d1:0c:
23:cd:03:11:6d:60:ef:38:0d:cd:1c:3c:81:b4:37:b2:cf:eb:
6a:16:bc:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:19 2024 by rpki-client on console-ams.rpki-client.org