Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
File: AS8100.roa (raw, json)
Hash identifier: JO3TVORfwnOikzZh4KU1TMVszQmQ2NXrjSU2gP8/A6Y=
Subject key identifier: A4:59:2B:A0:65:DD:84:3F:52:6E:C5:4E:0F:EA:3E:95:70:FB:41:37
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3CCF98C2DE0901789D753BF53D642564EAD832B2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
Signing time: Tue 05 Dec 2023 02:44:14 +0000
ROA not before: Tue 05 Dec 2023 02:39:14 +0000
ROA not after: Tue 03 Dec 2024 02:44:14 +0000
asID: 8100
IP address blocks: 185.121.176.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:cf:98:c2:de:09:01:78:9d:75:3b:f5:3d:64:25:64:ea:d8:32:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:14 2023 GMT
Not After : Dec 3 02:44:14 2024 GMT
Subject: CN=A4592BA065DD843F526EC54E0FEA3E9570FB4137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:28:70:e8:8f:7f:c5:bf:d5:60:50:09:e1:6a:
33:13:37:fe:76:ac:ee:8e:08:29:f6:5b:91:bd:38:
d3:0a:0a:fc:f4:a6:67:a9:a6:d1:c4:be:85:a7:6d:
ad:0e:36:56:d6:3a:ce:34:c0:f2:da:21:ae:e6:b6:
84:f1:a5:62:58:ce:b5:b0:01:b9:40:2a:d4:75:96:
af:32:3c:b8:20:54:02:db:fc:1b:1d:ac:4c:7d:a9:
30:c4:17:6c:0b:4c:62:bf:d0:4e:87:07:4c:f2:ff:
13:97:ef:4a:07:6e:dc:09:20:83:53:54:76:f8:94:
2d:83:d2:2b:71:d6:58:75:2a:45:55:90:de:05:39:
54:87:cc:12:c6:22:18:1d:dd:5f:34:e6:59:ca:62:
52:79:c8:ba:88:3c:11:f7:96:d6:81:8b:bb:f9:88:
f9:87:7f:94:a7:4e:fe:36:2f:15:c0:4e:da:ec:1a:
d1:1e:1f:13:95:3a:d5:cf:73:70:f1:ae:1d:d4:48:
44:38:dc:2d:bd:1e:6c:d7:0e:4e:fb:f6:34:c4:00:
16:82:7b:bd:a8:97:53:07:f6:a6:c2:07:8a:c0:b4:
58:64:bf:84:6d:f9:78:ce:76:2c:d0:0d:00:81:db:
ab:08:7c:33:fd:61:cf:a7:77:de:50:62:f9:3c:4a:
db:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:59:2B:A0:65:DD:84:3F:52:6E:C5:4E:0F:EA:3E:95:70:FB:41:37
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8100.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.176.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e7:da:35:26:3a:91:2d:8e:22:cc:8e:fe:19:a4:8a:75:03:
cb:e5:55:99:a2:0c:38:92:16:cf:95:a7:16:0b:bb:af:80:3d:
d3:b8:1d:05:a8:6a:82:65:8e:f5:76:b2:cf:d9:af:54:5d:da:
79:f5:3d:65:39:ce:0e:a6:bb:7f:1a:2d:0c:06:ff:91:09:03:
4b:7d:85:ec:04:1e:de:f9:f7:b1:19:7e:f1:6c:11:71:7c:3b:
cd:12:7d:39:3f:8f:c1:c0:c4:3a:e4:28:c6:d3:81:26:b6:5f:
f2:69:3e:ab:96:6a:e6:35:27:90:39:8c:10:ce:8d:e0:02:48:
49:67:a4:ba:62:da:51:3b:1c:40:8e:fc:33:48:79:ee:81:28:
15:3e:61:e0:35:fc:7a:18:35:22:4d:5a:4b:f5:74:75:b6:c4:
48:4b:63:ff:d9:f0:9c:8c:be:06:f5:e9:ec:f7:41:80:4e:9f:
de:92:b5:aa:93:07:6d:af:1d:82:1c:d9:65:04:26:6d:c1:82:
c8:4b:07:24:d7:bd:2f:cd:42:8c:ec:2a:62:89:ab:16:82:d9:
bb:0c:05:7a:78:f8:5e:2f:25:7b:bb:75:44:33:4e:28:d3:73:
da:d5:63:8a:7e:27:df:36:3d:77:54:fe:fc:34:15:67:d2:ef:
cf:5a:7f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:32:18 2024 by rpki-client on console-fra.rpki-client.org