Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS9267.roa
File: AS9267.roa (raw, json)
Hash identifier: DM4BLvNGC4KboxGFIs16TuA6dPnSGzoTetTp/yhtVeo=
Subject key identifier: C7:FB:AC:C7:99:27:6B:99:B8:B6:68:7A:A2:A0:6F:8F:3B:E0:3A:57
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7EA8DA856B91E67DC084323DED62C9E929E2EDFB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS9267.roa
Signing time: Tue 05 Dec 2023 02:44:15 +0000
ROA not before: Tue 05 Dec 2023 02:39:15 +0000
ROA not after: Tue 03 Dec 2024 02:44:15 +0000
asID: 9267
IP address blocks: 2a06:a005:200::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:a8:da:85:6b:91:e6:7d:c0:84:32:3d:ed:62:c9:e9:29:e2:ed:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 5 02:39:15 2023 GMT
Not After : Dec 3 02:44:15 2024 GMT
Subject: CN=C7FBACC799276B99B8B6687AA2A06F8F3BE03A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f4:c8:71:3f:9a:dd:e6:03:56:5c:06:d8:17:
a6:2a:94:98:ce:e0:75:7b:9e:67:a5:4d:8b:e6:e5:
74:f7:3d:4a:b0:df:33:eb:d5:49:76:67:64:e5:49:
63:c6:29:14:1c:53:af:b6:db:2a:d8:88:5e:7c:b2:
08:05:af:98:6a:0b:fc:b7:07:17:81:47:2f:bf:90:
33:95:24:98:da:a5:fb:fd:5c:74:17:33:d9:bf:e1:
1a:8a:9e:ad:69:9c:92:a5:36:10:93:eb:da:f6:46:
31:76:a8:10:38:34:e5:85:b3:34:f7:50:6a:ca:db:
30:76:a6:a8:7d:89:16:0c:6d:1c:d5:20:e2:44:50:
a1:70:ec:53:cc:e4:fc:4b:dc:8c:46:fa:69:eb:50:
78:77:04:34:59:88:21:c1:15:bb:c9:b3:57:54:8b:
b7:b2:1d:f0:9f:b9:c5:94:cb:c8:80:e7:25:74:41:
57:64:d9:87:48:d4:79:ac:7d:ca:f8:21:c5:55:15:
06:7c:ad:81:c5:7a:a0:08:01:e3:b7:6c:54:e4:60:
6c:ac:5d:ae:f5:1a:2c:96:67:64:8f:69:d5:39:87:
2a:65:0a:fd:46:55:e4:f9:3e:1c:c1:71:17:82:d4:
15:35:2f:a0:33:5e:ba:5d:5c:d5:25:48:b8:0b:9a:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FB:AC:C7:99:27:6B:99:B8:B6:68:7A:A2:A0:6F:8F:3B:E0:3A:57
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS9267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:200::/44
Signature Algorithm: sha256WithRSAEncryption
81:f3:19:f5:4e:49:ef:d8:eb:1e:7b:70:16:4b:2e:ec:06:24:
99:e6:74:c1:18:6f:05:7c:43:bf:f3:3c:7f:ee:63:13:2d:7b:
51:25:84:a8:52:6d:6c:da:1d:88:5f:54:fc:5d:bc:54:f2:86:
f8:08:3c:14:0c:30:68:f7:1c:57:65:7c:4d:40:7e:2a:fa:be:
5f:13:bd:43:bb:e3:f5:ef:25:d1:96:66:b7:3e:41:27:a7:b5:
72:a7:13:2c:dd:a5:8e:6f:8c:a8:27:eb:14:9d:83:6a:0e:ef:
5f:f9:3b:d7:5f:ad:a5:12:f4:18:33:bc:08:8c:69:09:24:05:
9b:40:4a:f9:71:e3:43:05:d8:b0:a8:6b:f3:6a:10:3e:c2:25:
13:e6:58:33:b8:95:a2:a8:b8:0b:c3:37:c0:1e:9a:2c:48:7a:
9a:ca:24:e4:97:ec:88:97:4a:83:67:42:55:88:a1:82:49:5d:
49:e9:4a:aa:89:24:8d:ed:5f:87:49:b7:e3:25:45:93:ef:ac:
67:69:39:ae:3f:9c:8d:d2:22:d9:df:09:33:29:5f:2f:1d:7a:
f5:bf:b1:9c:3b:a4:9c:26:b2:92:91:ee:2a:0f:0f:6f:ee:09:
20:52:24:bb:dc:e6:26:40:45:d6:d8:97:7e:d3:15:5e:77:33:
07:48:65:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 12:12:19 2024 by rpki-client on console-ams.rpki-client.org