Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56808.roa
File: AS56808.roa (raw, json)
Hash identifier: pz18IOVQT0EPB6CamroDOYkRbSQyy7UnAiO7By0eRcw=
Subject key identifier: F8:15:9A:DA:9A:A6:FF:5F:05:F0:D0:8B:78:60:4B:F0:23:B8:A5:76
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 184FFAA8706A1C341E4F6E2454C7EA6AAB713475
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56808.roa
Signing time: Thu 05 Dec 2024 10:40:12 +0000
ROA not before: Thu 05 Dec 2024 10:35:12 +0000
ROA not after: Thu 04 Dec 2025 10:40:12 +0000
asID: 56808
IP address blocks: 2a06:a005:1273::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:4f:fa:a8:70:6a:1c:34:1e:4f:6e:24:54:c7:ea:6a:ab:71:34:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 10:35:12 2024 GMT
Not After : Dec 4 10:40:12 2025 GMT
Subject: CN=F8159ADA9AA6FF5F05F0D08B78604BF023B8A576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:04:7b:4c:6b:19:d9:84:e3:03:f7:09:82:
5a:1c:42:ac:ec:31:5e:af:27:2f:d8:fd:9a:48:24:
b8:45:43:80:2b:0f:87:5e:d7:f3:f6:f4:57:a4:27:
86:6e:fd:e9:77:1c:6f:c3:a9:21:3e:a9:90:80:0c:
48:64:3f:5e:80:58:11:5b:17:dd:38:08:70:33:36:
89:a5:e6:fb:dc:e5:91:d9:8c:4a:05:81:e1:f3:88:
33:a8:22:5d:3c:d0:2f:f1:6f:a2:00:e8:1b:77:9f:
10:08:38:83:79:6a:7f:7d:44:fe:89:03:16:2c:3d:
6e:a6:df:de:31:87:0d:1b:28:aa:87:be:21:98:f8:
26:3e:fa:0d:88:02:a7:ef:f0:84:1c:10:ed:a3:c3:
85:ff:47:29:2f:00:1a:27:3c:d9:4e:b5:8b:82:d8:
03:73:52:ec:be:c8:71:26:b2:c0:b9:83:45:b0:2a:
3a:4b:71:28:a5:62:73:ed:4d:60:b7:db:84:2a:9e:
93:81:1f:da:4c:9f:15:0c:e8:16:da:98:d3:da:83:
00:3a:2a:98:6e:50:18:74:aa:7f:a4:b1:0b:18:f0:
f3:ba:2b:88:26:3e:e2:31:25:1f:88:8e:68:16:06:
0f:98:58:fa:0b:c7:64:56:2e:b6:79:7b:58:b4:fb:
11:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:15:9A:DA:9A:A6:FF:5F:05:F0:D0:8B:78:60:4B:F0:23:B8:A5:76
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS56808.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1273::/48
Signature Algorithm: sha256WithRSAEncryption
d6:7d:ca:db:8d:d4:d8:d9:48:3f:ab:c9:c1:ab:11:82:62:0b:
a1:8b:1c:70:26:8e:6e:9f:db:5b:4d:be:03:13:58:43:6d:96:
19:2e:96:83:80:ee:33:ec:6b:3f:a1:7a:e8:78:3c:a8:41:a5:
4b:56:46:1d:a5:a3:f6:51:44:e5:e9:ba:10:27:a6:5b:d5:8a:
31:6c:07:2b:fa:02:6c:ed:c0:b8:d9:51:98:41:39:6e:f4:73:
84:e5:7e:9c:ba:cf:fe:ef:ce:2e:f0:d7:77:12:6a:e5:f1:fd:
5c:35:ba:78:4f:fb:91:2e:c9:ed:b7:b8:cd:c1:d5:e0:48:12:
52:30:d2:63:64:ab:f6:f7:3a:86:82:a7:da:de:21:90:fa:9b:
50:92:92:f7:ed:b0:1a:ae:4b:a3:58:11:7d:15:fb:19:83:1f:
03:6d:25:19:35:d2:80:85:da:1d:55:7d:1f:7d:2e:75:dc:62:
97:09:be:66:4e:50:04:73:a3:13:26:0e:fc:29:d8:1b:bc:6c:
2d:7f:0f:83:0f:f8:d5:a1:e6:8f:91:14:7c:3b:11:43:b6:1a:
69:0d:27:0c:f5:ec:c3:0e:50:48:20:34:1f:97:a5:a0:59:ba:
e6:61:f8:3e:88:8a:4c:35:9d:04:5d:58:48:ed:a1:3c:3f:a5:
90:ae:0a:e9
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUGE/6qHBqHDQeT24kVMfqaqtxNHUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMDUxMDM1MTJaFw0yNTEyMDQxMDQwMTJaMDMxMTAvBgNV
BAMTKEY4MTU5QURBOUFBNkZGNUYwNUYwRDA4Qjc4NjA0QkYwMjNCOEE1NzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRRAR7TGsZ2YTjA/cJglocQqzs
MV6vJy/Y/ZpIJLhFQ4ArD4de1/P29FekJ4Zu/el3HG/DqSE+qZCADEhkP16AWBFb
F904CHAzNoml5vvc5ZHZjEoFgeHziDOoIl080C/xb6IA6Bt3nxAIOIN5an99RP6J
AxYsPW6m394xhw0bKKqHviGY+CY++g2IAqfv8IQcEO2jw4X/RykvABonPNlOtYuC
2ANzUuy+yHEmssC5g0WwKjpLcSilYnPtTWC324QqnpOBH9pMnxUM6BbamNPagwA6
KphuUBh0qn+ksQsY8PO6K4gmPuIxJR+IjmgWBg+YWPoLx2RWLrZ5e1i0+xE9AgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQU+BWa2pqm/18F8NCLeGBL8CO4pXYwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBvBggrBgEF
BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
NTY4MDgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAqBqAFEnMwDQYJKoZIhvcNAQELBQADggEBANZ9ytuN
1NjZSD+rycGrEYJiC6GLHHAmjm6f21tNvgMTWENtlhkuloOA7jPsaz+heuh4PKhB
pUtWRh2lo/ZRROXpuhAnplvVijFsByv6AmztwLjZUZhBOW70c4Tlfpy6z/7vzi7w
13cSauXx/Vw1unhP+5Euye23uM3B1eBIElIw0mNkq/b3OoaCp9reIZD6m1CSkvft
sBquS6NYEX0V+xmDHwNtJRk10oCF2h1VfR99LnXcYpcJvmZOUARzoxMmDvwp2Bu8
bC1/D4MP+NWh5o+RFHw7EUO2GmkNJwz17MMOUEggNB+XpaBZuuZh+D6Iikw1nQRd
WEjtoTw/pZCuCuk=
-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:25 2025 by rpki-client