Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
File: AS8100.roa (raw, json)
Hash identifier: MOqbqfJdcQrox0/hd3uUUqXpqamiRZizyWkvVtuEXvQ=
Subject key identifier: 1F:6E:2E:73:1D:C1:58:61:67:A0:88:1C:B4:CC:FA:4A:8C:F1:A8:8D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3B98D1D74DCA4BCA19683C8E58F73DF05179F8EC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 8100
IP address blocks: 185.121.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:98:d1:d7:4d:ca:4b:ca:19:68:3c:8e:58:f7:3d:f0:51:79:f8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=1F6E2E731DC1586167A0881CB4CCFA4A8CF1A88D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:52:f1:01:cb:77:c9:f8:29:94:f6:23:7a:
89:1e:53:03:7d:4b:c1:0a:fe:05:c1:38:a7:74:c3:
40:09:d9:54:55:77:ba:ae:01:e6:5e:3d:87:74:6c:
57:36:da:4b:4c:2d:1d:b9:cd:c5:87:aa:21:b0:8c:
fa:c2:74:ab:70:7d:29:77:bf:d4:fa:e2:2d:22:92:
5d:e7:4c:03:a6:fc:01:0e:68:3d:00:c4:d0:a4:fc:
90:41:66:03:73:3b:b2:8a:ec:fc:d4:ec:39:93:e2:
fe:50:ed:b2:a9:42:bc:6a:53:31:d6:ad:75:16:4d:
94:db:0e:a0:fa:e7:ce:74:b2:17:55:15:2c:a9:6d:
27:19:f8:eb:9c:f9:e6:b1:7d:d3:7a:97:5e:12:13:
2e:b3:55:41:d8:6f:56:b8:ca:b0:ee:44:19:df:c9:
0a:cb:09:43:4e:21:63:60:11:7c:6f:23:27:42:08:
ec:b3:61:36:ab:61:5d:7e:52:de:f9:98:c6:0b:61:
d7:78:80:21:5c:cf:93:b9:b0:93:53:fb:22:e0:ce:
5d:09:79:2a:4e:74:a2:a9:08:e0:71:d1:29:07:b0:
78:5c:80:fa:03:4e:4f:55:7f:96:41:db:e7:3d:93:
d6:0d:11:44:90:06:47:c1:a7:14:f7:72:2d:21:ba:
7a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6E:2E:73:1D:C1:58:61:67:A0:88:1C:B4:CC:FA:4A:8C:F1:A8:8D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:35:83:6e:58:5a:32:08:ac:e5:16:26:da:87:3d:c2:a3:2b:
c7:68:7c:3a:9d:0d:48:3c:b5:5c:ec:7c:5e:05:17:74:8f:cc:
ae:25:09:0b:8c:3d:a9:68:d3:1c:51:37:00:07:4c:89:b3:e3:
7e:85:57:1d:0b:9d:e9:04:6e:1f:76:5e:78:0b:42:47:bd:c3:
1f:5f:e0:78:79:af:f2:b3:1e:3b:7f:60:f9:f4:3e:9b:65:80:
c5:41:a0:f4:b8:d9:d8:e4:d9:e8:9a:ba:b0:b7:3b:84:74:10:
f3:93:77:8f:6d:77:dc:05:af:44:63:56:f7:c0:c6:de:c6:9e:
3a:13:31:44:c4:26:98:fb:46:75:41:d0:d4:ce:59:7a:a2:74:
5b:e4:eb:5c:e7:72:81:3a:03:cc:68:94:a3:5f:5b:fe:a2:8e:
08:96:67:56:bb:71:6e:cf:4d:3a:7c:7a:b1:fc:64:7b:07:24:
a8:ba:8e:30:f6:7d:ff:72:34:37:f3:fa:6f:7f:c2:3a:79:4c:
2b:6d:b9:5a:30:54:63:ff:05:42:f5:8e:15:87:53:b1:92:d5:
c9:f7:09:ec:aa:f6:93:a1:54:de:a9:2d:99:48:7a:6d:f9:6d:
d5:4d:b3:1a:44:dd:b2:c7:61:ba:c0:5e:66:fe:c8:0b:2b:d6:
5e:f3:57:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:22 2024 by rpki-client on console-ams.rpki-client.org