Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8987.roa
File: AS8987.roa (raw, json)
Hash identifier: m5RLlMVfduaUYp917IHcjTWAToj1G76etM/c2ABw7IE=
Subject key identifier: 61:91:FC:37:45:0F:69:8E:11:D1:28:1A:2F:27:A2:92:DF:7E:DB:3D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 41C668C22BBC8F248CB6FDBC07BE2E9948DB9E5A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8987.roa
Signing time: Sun 22 Oct 2023 03:35:56 +0000
ROA not before: Sun 22 Oct 2023 03:30:56 +0000
ROA not after: Sun 20 Oct 2024 03:35:56 +0000
asID: 8987
IP address blocks: 2a0a:6043::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:c6:68:c2:2b:bc:8f:24:8c:b6:fd:bc:07:be:2e:99:48:db:9e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Oct 22 03:30:56 2023 GMT
Not After : Oct 20 03:35:56 2024 GMT
Subject: CN=6191FC37450F698E11D1281A2F27A292DF7EDB3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:35:f6:70:ab:c8:de:b6:7b:33:e1:80:e0:2b:
93:d5:a7:95:44:62:75:5e:b1:86:a7:00:65:57:39:
b2:e9:30:f6:72:57:18:9d:c8:48:47:ff:cf:37:26:
1f:8f:8a:bf:ca:8c:a3:56:37:bc:14:bb:d6:c1:f1:
9b:84:ee:c2:ff:2b:d6:db:83:b0:25:04:4f:f0:13:
11:1f:a4:e9:66:5b:7e:52:15:24:14:21:46:5a:b8:
50:04:90:25:a2:46:fb:bc:6e:83:d3:da:39:00:b1:
2a:e8:68:c8:86:21:5b:71:18:84:7f:08:82:ad:81:
fc:40:3f:f0:e3:9b:b1:cf:7a:dd:83:c5:4a:f4:03:
a7:53:9e:f5:b4:ad:7b:1e:8c:35:2a:63:d5:9b:83:
65:e8:39:b7:6a:ae:53:24:77:58:3b:d9:f0:46:38:
85:07:04:a2:f6:b8:b2:5e:06:5d:26:d8:3d:ba:ef:
30:10:58:e3:a9:46:3c:59:66:85:2a:cd:c5:2b:b3:
87:3f:76:b6:4d:fd:44:ba:85:02:eb:da:2f:c0:7b:
4e:ed:95:bf:26:7d:bb:57:08:6f:c0:2d:7e:db:e4:
9a:45:21:4d:ea:6e:4b:a9:55:28:d3:7e:48:5b:6c:
5d:40:17:58:d9:20:48:37:a2:b5:54:a4:33:90:72:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:91:FC:37:45:0F:69:8E:11:D1:28:1A:2F:27:A2:92:DF:7E:DB:3D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS8987.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6043::/40
Signature Algorithm: sha256WithRSAEncryption
61:9a:61:32:d4:b7:1f:0a:8c:94:dc:79:f4:ce:68:01:f3:bc:
6c:ed:bf:c8:c4:19:aa:1d:30:fc:27:3a:08:b6:2a:ea:b2:c4:
d5:f4:2f:b1:b7:c2:79:ff:88:6e:63:c9:41:71:e5:9f:38:dc:
d0:f9:a5:24:a4:81:37:bc:bc:ef:57:86:37:a5:b8:3b:69:81:
de:bd:bb:06:e0:ac:51:27:f6:65:9e:4f:a4:39:cb:37:38:27:
21:ce:56:d7:8a:28:d2:04:ba:25:8b:4d:fe:b8:40:d8:a7:4e:
e3:e1:8e:f5:7a:d3:a9:7f:00:29:41:d8:25:88:3d:5d:81:5a:
7f:ed:59:b8:3e:70:0e:08:80:22:a5:a7:44:3b:87:b2:60:02:
81:d7:d3:6c:21:76:f0:a5:34:16:ee:c9:ff:d7:4e:96:c4:04:
b8:bc:71:39:b9:c4:f8:1f:f5:f7:5e:f5:39:60:b2:9e:cd:88:
4c:86:1b:1a:2e:5a:6c:40:9c:da:79:40:a1:1b:c7:8a:62:9b:
ba:92:84:ac:45:9b:31:44:83:29:09:ff:fe:38:8a:b7:b0:2a:
35:92:16:14:bd:47:ba:9d:1a:5a:64:ae:72:6b:1d:2b:3d:7c:
45:fe:f2:3c:a4:c7:20:66:3f:f4:2f:bb:b6:da:70:ab:be:a2:
fc:be:9c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:12:34 2024 by rpki-client on console-ams.rpki-client.org