Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/46/3130342e3234352e31302e302f32342d3234203d3e203336333531.roa
File: 3130342e3234352e31302e302f32342d3234203d3e203336333531.roa (raw, json)
Hash identifier: 57nYp6h/6E+SHSpEE52l7J3TWn+o2NI5EucTi82ES0I=
Subject key identifier: 17:30:97:A9:EC:E8:E8:4A:C5:D9:D4:45:9B:14:EE:73:BF:A0:97:C3
Certificate issuer: /CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524
Certificate serial: 01B6C59523E7147B14890AA880C180AC75D4A29A
Authority key identifier: DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31302e302f32342d3234203d3e203336333531.roa
Signing time: Sat 14 Sep 2024 01:22:24 +0000
ROA not before: Sat 14 Sep 2024 01:17:24 +0000
ROA not after: Sat 13 Sep 2025 01:22:24 +0000
asID: 36351
IP address blocks: 104.245.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl
rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Fri 11 Apr 2025 13:43:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:b6:c5:95:23:e7:14:7b:14:89:0a:a8:80:c1:80:ac:75:d4:a2:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524
Validity
Not Before: Sep 14 01:17:24 2024 GMT
Not After : Sep 13 01:22:24 2025 GMT
Subject: CN=173097A9ECE8E84AC5D9D4459B14EE73BFA097C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4c:54:ad:ef:66:a4:cc:2b:30:86:78:1d:b7:
e3:6d:93:32:00:cc:24:3f:73:3e:ec:49:e8:7b:1c:
2f:d2:8b:28:b5:01:6f:ed:fa:bf:14:36:76:48:1a:
28:45:5f:39:1e:12:8d:22:65:b2:8b:e1:41:86:6c:
6b:29:09:ce:03:1e:02:7a:f3:13:b3:8b:b3:71:b8:
c9:8f:a5:5e:fd:0d:ec:2c:df:ca:72:aa:bf:47:ad:
d7:13:34:2a:dc:bf:57:4b:4d:69:56:91:86:e5:94:
da:94:8d:94:f9:52:f6:db:43:f2:fa:88:d5:25:27:
ab:1f:c8:03:6d:9a:f0:58:66:b0:ac:5b:24:a0:64:
11:91:e1:71:82:be:f5:bd:1b:3e:23:4f:04:69:3c:
27:45:2f:34:24:35:08:30:76:31:d8:00:ed:dd:7a:
cf:69:16:09:8e:e0:8c:e1:5b:18:09:8b:93:4b:62:
9b:38:f9:c9:54:ab:a9:ac:ee:0a:52:0a:88:29:e4:
0f:0d:d6:bc:d3:2f:84:2f:30:08:5f:cb:9f:5f:8c:
42:17:0a:7c:58:4c:5c:48:ee:04:ac:75:52:b1:ee:
00:c8:d9:67:87:e4:0c:98:16:b7:72:d0:54:b1:1e:
3c:8e:2a:de:d8:af:80:01:19:37:e3:f7:e7:b8:cd:
34:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:30:97:A9:EC:E8:E8:4A:C5:D9:D4:45:9B:14:EE:73:BF:A0:97:C3
X509v3 Authority Key Identifier:
keyid:DB:AC:61:EF:F8:0C:31:58:04:BC:FD:A2:BC:F7:3C:19:A6:24:8D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/46/DBAC61EFF80C315804BCFDA2BCF73C19A6248D99.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/54c036c5-e20a-4ba1-8516-5ab3a356dbfd/6555c74db5287d4077fbb273a5b5a5c2d28c158b65b814c524.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/46/3130342e3234352e31302e302f32342d3234203d3e203336333531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.245.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:d7:8c:a5:1b:f8:b3:d6:0c:aa:4b:e8:85:02:16:a0:31:7e:
14:91:9f:ca:41:d7:41:a9:86:b0:75:e6:e3:07:bc:e6:c8:49:
09:49:bd:96:eb:bb:82:14:19:b2:d1:a2:9d:f4:07:02:ff:cf:
4a:2b:23:0e:80:41:3d:2c:a5:14:19:c9:b9:02:87:0a:90:ea:
fd:6c:31:5a:18:c2:0e:1e:19:80:61:5f:6f:5a:8b:31:af:34:
d0:dc:a1:9a:e8:5a:b8:32:3f:90:85:6c:96:c1:d6:c3:4f:1e:
cd:71:e0:f5:2e:db:d7:52:08:53:5c:6c:a0:fd:25:f9:0d:7d:
39:73:c5:8c:14:d8:1d:a1:a4:6a:11:9a:e5:89:cc:07:01:91:
1b:b6:2b:12:cf:6e:99:b0:22:d9:f8:9b:e1:df:6a:37:90:d4:
09:f1:8f:33:f7:e5:7b:c0:b5:b4:e6:e5:2b:d2:db:48:a3:5b:
b6:4c:19:e6:f1:8e:72:74:f7:e7:2c:d7:21:2b:63:da:a1:e8:
41:17:a8:1d:87:db:f4:49:76:71:f9:f3:24:c4:35:6c:71:04:
e0:a0:49:dd:a4:cc:79:d3:b6:4c:4d:8d:d3:d8:38:df:e8:86:
e0:10:1c:bf:49:9c:19:51:89:b8:49:a4:cc:40:26:6c:94:ba:
25:0f:b3:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 16:42:16 2025 by rpki-client