Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56696.roa
File: AS56696.roa (raw, json)
Hash identifier: EFY7vUx9Uu5x8EA7pxXALjFyGQcFCFrC6viFOuaSiCk=
Subject key identifier: 63:9F:1D:8D:87:79:1B:F4:5D:7B:11:E9:C2:B4:11:E8:F5:FC:04:3F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 63A34BD3D262A68A9E4B91FD5ECA7027DE7C8436
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56696.roa
Signing time: Tue 05 Dec 2023 02:44:13 +0000
ROA not before: Tue 05 Dec 2023 02:39:13 +0000
ROA not after: Tue 03 Dec 2024 02:44:13 +0000
asID: 56696
IP address blocks: 2a06:a005:5e5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:a3:4b:d3:d2:62:a6:8a:9e:4b:91:fd:5e:ca:70:27:de:7c:84:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:13 2023 GMT
Not After : Dec 3 02:44:13 2024 GMT
Subject: CN=639F1D8D87791BF45D7B11E9C2B411E8F5FC043F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:cb:ef:93:ed:73:56:70:08:6c:6f:0f:b9:
c4:af:bb:09:8a:98:1c:17:bb:6b:77:10:22:66:eb:
c7:a2:9f:55:e9:56:f9:40:7b:6a:84:26:b9:5d:e5:
ec:e8:f2:36:ad:d1:d7:57:2a:af:17:29:44:e4:f0:
26:74:cf:c0:6b:0b:e6:e3:98:91:10:31:fd:ec:02:
3a:60:d5:47:b0:ee:c5:e2:8d:e5:df:34:c3:01:9e:
83:a1:ad:ed:e3:aa:d8:79:e2:5b:c8:94:af:cc:63:
3b:62:41:a8:ac:b1:82:f4:15:23:98:4d:7b:3c:e2:
db:6c:ca:00:0d:92:30:13:87:b1:c4:f2:73:c9:97:
60:92:ab:73:29:d0:31:45:1f:f8:3f:16:08:01:6a:
bf:b2:87:aa:0a:68:27:57:a1:17:32:09:a6:71:ea:
d5:81:22:4d:c8:23:24:60:cd:bf:fc:a3:1c:43:4b:
4c:51:57:ff:0e:d4:0b:ee:53:30:48:49:7f:e7:0e:
1a:b3:24:46:be:af:54:f4:e5:08:cd:b5:09:cd:1e:
9c:57:96:06:b6:d8:f3:1b:da:44:13:ea:36:4e:02:
95:1c:fe:a4:07:53:2d:9c:ce:1c:f0:e3:0a:77:fe:
38:57:78:34:57:99:e3:f5:0b:40:c0:94:8c:ce:ed:
eb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9F:1D:8D:87:79:1B:F4:5D:7B:11:E9:C2:B4:11:E8:F5:FC:04:3F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56696.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:5e5::/48
Signature Algorithm: sha256WithRSAEncryption
4a:83:75:48:aa:ac:a3:2d:19:a7:f6:65:9c:3a:f4:1f:be:d8:
ad:c1:19:d9:dd:93:82:f5:80:18:08:86:b1:fd:77:b6:09:5d:
1b:aa:51:94:e1:6a:08:dd:d8:14:2d:ce:79:4e:1e:2a:88:c1:
8d:d3:dd:12:26:28:e1:4c:36:82:64:5b:a4:f3:6f:91:77:a0:
32:32:e3:eb:15:07:a7:75:e7:1a:52:f2:e0:f4:2a:62:e9:4b:
7e:98:b0:52:ec:14:6c:94:e7:50:51:4d:cb:6b:ce:db:a2:38:
70:7b:52:de:b4:4c:f3:16:d9:60:47:d3:86:21:16:63:2f:14:
0f:16:0a:ec:c7:92:69:bd:2e:99:1a:34:d7:f2:d5:05:41:75:
90:01:69:c9:3e:41:2c:e2:5c:ba:73:d1:dd:bf:6c:52:5b:f1:
1d:32:cc:c3:7d:be:a1:af:53:73:ba:4b:75:f9:b5:a9:82:69:
d2:a4:29:77:2b:ab:81:e4:6e:e3:f1:e0:c3:b0:85:62:b2:cc:
1c:b3:37:5d:0b:47:ad:47:30:c7:34:70:e1:9c:bb:3d:f3:9b:
70:a4:da:27:ab:8f:39:2c:9f:d3:04:54:92:a2:00:0f:55:86:
0b:a0:9b:08:49:b6:48:52:1a:19:c6:53:c8:a7:0e:6e:24:d1:
0a:b6:56:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:57 2024 by rpki-client on console-fra.rpki-client.org