Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS924.roa
File: AS924.roa (raw, json)
Hash identifier: hgSxMXXVyUqkw9bI+z5esCA18SY56RRIFluPoChHPS8=
Subject key identifier: DD:29:D5:D9:82:A1:02:F8:D5:7E:DF:0C:93:46:82:AF:C1:B9:9A:8B
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 49089A7971BBEC0AEAAC8A47DEAC2ADC76A8D24A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS924.roa
Signing time: Tue 05 Dec 2023 02:44:15 +0000
ROA not before: Tue 05 Dec 2023 02:39:15 +0000
ROA not after: Tue 03 Dec 2024 02:44:15 +0000
asID: 924
IP address blocks: 2a06:a005:d30::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 14:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:08:9a:79:71:bb:ec:0a:ea:ac:8a:47:de:ac:2a:dc:76:a8:d2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:15 2023 GMT
Not After : Dec 3 02:44:15 2024 GMT
Subject: CN=DD29D5D982A102F8D57EDF0C934682AFC1B99A8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d4:07:56:69:92:63:c1:39:cb:dd:bd:c1:f9:
f8:f4:83:b6:4a:5b:8f:48:b7:c7:2c:7f:d4:77:88:
fd:c6:ae:b4:e5:54:d8:b2:20:70:86:d9:27:1c:65:
2f:77:7b:04:bb:70:39:61:f7:52:3d:30:eb:9d:a6:
63:31:1f:57:1e:2f:a3:ea:29:f7:47:7f:b6:24:0a:
f7:13:06:f9:a6:e1:cd:e2:b9:7f:0f:fe:d2:b9:80:
2e:05:de:45:4e:1b:67:e2:fa:c9:91:1a:6c:86:0c:
13:d7:42:dd:ba:a5:02:a9:2a:f7:b8:d1:ef:1f:15:
9c:30:8b:5a:b9:39:16:32:55:68:97:6d:a6:e8:0a:
cd:d2:5d:bb:68:48:42:de:29:7e:4a:20:d0:ae:2f:
8f:b1:f9:4a:5e:bb:48:d8:a5:d5:21:ea:e6:ee:66:
df:df:c5:c1:7b:d4:97:99:db:05:57:0f:fd:05:0a:
46:39:08:74:d1:0c:a6:b4:3d:d6:51:48:c0:72:3f:
78:09:8a:91:cc:23:e3:b4:6d:81:70:42:9d:fb:f2:
74:2c:9d:60:67:ca:8b:28:88:ca:48:26:a1:8c:6e:
d5:5d:7f:19:e1:79:69:c0:f5:13:c8:9c:36:92:90:
16:3b:b5:54:7e:97:bb:34:a3:88:4a:aa:bf:12:4e:
41:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:29:D5:D9:82:A1:02:F8:D5:7E:DF:0C:93:46:82:AF:C1:B9:9A:8B
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS924.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d30::/44
Signature Algorithm: sha256WithRSAEncryption
1f:71:61:27:fe:91:ee:2b:51:04:31:c5:a8:f0:d5:a9:50:73:
85:1f:db:0e:ce:9e:1c:50:98:17:be:3a:db:a4:50:7b:c0:f9:
49:58:51:1a:2f:3e:fe:fb:7a:b7:bb:f2:c0:37:eb:e7:3f:a3:
b3:93:85:4e:f0:0a:50:1e:a1:68:6d:88:46:ee:c0:18:07:79:
e6:70:68:ce:12:13:fc:8d:ea:6e:79:16:5e:66:c7:25:6f:5b:
31:92:44:e2:bf:4c:66:c6:9b:6d:9d:3c:56:8a:d2:5d:cd:40:
3f:6b:ec:e3:e4:ce:60:5f:e8:28:9b:5f:c9:f5:04:58:af:7e:
ab:de:f1:4a:6c:18:44:4c:60:f4:9a:ff:b9:63:5b:b1:66:56:
5e:e9:ad:85:08:d2:6d:ff:e8:e9:d7:35:f4:d4:8a:56:3f:e4:
9b:4e:6d:95:57:9a:7b:b8:42:ed:eb:77:ef:59:d1:e9:92:b5:
c6:2b:8a:19:ab:44:07:4e:b6:cd:9d:73:c2:70:0e:73:db:13:
58:f2:4e:37:d8:8e:88:ad:47:2a:a0:09:3e:64:9e:19:8b:2f:
1c:ed:84:08:38:12:d5:ed:e0:ed:67:16:8e:fb:07:6b:f3:5c:
24:bf:fd:90:60:f8:19:78:15:ab:0e:09:08:b3:d3:d3:51:6c:
b3:e6:a1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 20:32:57 2024 by rpki-client on console-fra.rpki-client.org