Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63279.roa
File: AS63279.roa (raw, json)
Hash identifier: ikmvj5eYhqvAgjOP1zvLvQb1rLD3AcvoiDMjaCFsjs4=
Subject key identifier: 0A:8B:6A:9E:CE:69:74:FE:67:73:12:C2:8E:C1:54:C2:3F:0F:D2:7C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 1929ED477A133758C78F56652632AC68FD0FD509
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63279.roa
Signing time: Wed 11 Dec 2024 05:40:12 +0000
ROA not before: Wed 11 Dec 2024 05:35:12 +0000
ROA not after: Wed 10 Dec 2025 05:40:12 +0000
asID: 63279
IP address blocks: 2a06:a005:1d90::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:21:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:29:ed:47:7a:13:37:58:c7:8f:56:65:26:32:ac:68:fd:0f:d5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 11 05:35:12 2024 GMT
Not After : Dec 10 05:40:12 2025 GMT
Subject: CN=0A8B6A9ECE6974FE677312C28EC154C23F0FD27C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c0:0a:f1:22:c5:05:0d:d5:36:36:53:9d:5c:
2c:27:a7:30:ce:af:24:d3:1a:cc:b1:29:24:36:38:
e4:2b:11:07:a0:a3:ce:69:90:12:ee:5c:b9:ac:74:
03:62:82:99:ad:f6:93:a6:5d:32:79:7f:ab:15:cf:
59:63:d0:c4:36:ed:bd:b5:7b:e3:b0:34:7c:fa:18:
60:30:21:d1:ea:4f:b3:d8:e6:b1:16:da:7c:23:fa:
26:1b:d4:61:6a:d3:e6:de:44:49:f9:b1:0b:84:68:
5f:75:54:04:b1:7e:e3:f7:f9:d1:d3:9b:2a:56:0e:
01:31:33:ee:30:26:e8:b8:6b:21:c2:9f:e7:00:e5:
0f:18:95:0e:85:52:5e:c0:b7:3c:b7:5d:b7:04:fc:
32:75:7f:a7:97:8a:12:23:c9:0d:83:89:ab:b4:c3:
be:31:56:51:01:3a:1e:7b:ad:e4:80:1e:94:ba:0f:
6a:71:2f:ce:d1:b8:9b:0a:0c:d6:7a:03:d7:09:c5:
98:14:02:a3:3a:77:e7:7d:d3:10:29:2f:03:84:9b:
57:d7:a6:fb:2d:9c:d7:e0:8a:80:86:a5:70:db:e6:
1b:65:da:09:7e:73:60:73:07:f6:9b:4b:1b:8a:c8:
67:1a:0a:4b:53:37:17:69:2b:da:ce:b8:8e:e5:15:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8B:6A:9E:CE:69:74:FE:67:73:12:C2:8E:C1:54:C2:3F:0F:D2:7C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS63279.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d90::/44
Signature Algorithm: sha256WithRSAEncryption
2c:7c:ff:b6:6a:3b:0c:d9:9b:36:3f:71:8b:8b:fd:60:4c:d9:
67:a7:11:06:69:59:46:7c:08:13:94:df:66:ea:c0:bf:89:0c:
2e:c3:aa:da:45:9c:60:31:8a:11:ea:98:6b:7d:ec:cb:ef:9c:
09:a4:e5:b6:50:64:7b:68:4d:c4:f7:84:4c:52:08:2d:58:db:
c1:5f:18:41:9f:a3:a1:3c:bb:f1:3d:f0:74:c2:37:bc:21:0c:
84:9e:e2:78:c6:d2:b9:b1:ac:09:bc:83:2e:27:93:31:21:ab:
26:cf:7f:f1:93:0b:3b:58:2f:7c:46:40:3e:d5:e5:89:1c:6e:
68:6d:6a:52:62:a0:a1:f2:81:10:37:98:56:16:f4:82:4b:f8:
ab:64:c1:fe:04:2a:d7:b2:77:c9:5b:bd:ea:75:b5:e2:34:09:
25:ae:4f:27:d2:a6:3d:f7:b2:9e:4a:fd:15:53:6f:64:75:c5:
17:78:fa:31:a0:74:5d:bb:be:6e:6c:43:9a:d9:a3:19:75:6c:
e9:63:6f:99:18:58:45:17:d3:fd:12:f0:13:e0:21:4a:87:46:
a3:a1:a8:9d:37:1f:ac:27:0c:0c:03:9b:cf:f1:73:d6:0d:b1:
73:1f:ed:bc:9c:9e:8b:65:dc:02:32:14:1d:a7:ca:06:04:49:
8d:16:96:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:58 2025 by rpki-client