Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa
File: AS21859.roa (raw, json)
Hash identifier: TZm2XqQbsoi60zCcA0j555Tju1Ypnfo0ZS3Iyl+m+20=
Subject key identifier: 66:E5:59:C7:60:7C:28:F8:6B:E1:C1:81:D7:86:E7:6D:B5:3A:E7:42
Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
Certificate serial: 73E85EEDF4E1615885ABCC6B9CA3552FBEEFAB2D
Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa
Signing time: Wed 12 Mar 2025 00:01:07 +0000
ROA not before: Tue 11 Mar 2025 23:56:07 +0000
ROA not after: Wed 11 Mar 2026 00:01:07 +0000
asID: 21859
IP address blocks: 206.53.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:e8:5e:ed:f4:e1:61:58:85:ab:cc:6b:9c:a3:55:2f:be:ef:ab:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
Validity
Not Before: Mar 11 23:56:07 2025 GMT
Not After : Mar 11 00:01:07 2026 GMT
Subject: CN=66E559C7607C28F86BE1C181D786E76DB53AE742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d9:e8:ba:11:5e:9d:54:43:be:5a:19:5f:8d:
62:fa:06:a1:51:e6:30:97:ee:24:d0:b6:30:58:1e:
8d:74:c6:79:95:11:a2:be:d1:9d:de:f5:f6:c1:12:
9b:71:08:e6:19:cb:54:61:e6:9f:20:e4:26:2f:0e:
12:58:f5:a8:d7:22:80:82:2d:85:0b:d9:a9:49:69:
d0:0d:3f:8f:9b:41:46:1d:32:04:29:3c:08:4a:d0:
d5:27:ab:e9:e2:e2:4e:a7:7a:df:c6:fb:07:a6:00:
2f:4c:1d:96:48:6b:29:7e:e0:64:a1:03:57:49:79:
d6:79:69:48:97:ce:31:21:cb:d3:1e:8a:0a:98:58:
8d:b4:e0:36:6a:4f:b8:53:2f:9e:8d:57:ec:44:4c:
8b:5b:8b:3a:1c:3d:34:c8:9a:61:2d:a7:43:ff:4f:
a3:79:00:a6:af:b4:5d:4a:f9:b2:00:58:d9:76:04:
eb:68:ed:3b:3c:11:80:61:15:0b:9f:1d:04:da:bb:
17:d1:57:ab:a8:8f:96:7b:cb:e7:82:91:3f:b5:e7:
f8:3a:6b:f5:e7:8b:67:28:0f:2b:99:02:85:e8:0b:
26:3a:fd:df:31:d4:db:c8:91:a5:df:66:8c:fc:7f:
36:4c:44:aa:a9:fb:bd:96:ad:ef:bb:ac:b6:0f:64:
72:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E5:59:C7:60:7C:28:F8:6B:E1:C1:81:D7:86:E7:6D:B5:3A:E7:42
X509v3 Authority Key Identifier:
keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS21859.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.53.57.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3b:c6:df:81:fc:5a:8b:63:ef:b3:7c:da:38:7c:17:96:77:
a3:af:c4:b4:79:e6:4a:7b:7d:ff:8d:1a:c2:ae:b6:85:f8:93:
96:3b:b3:25:5c:28:e9:0d:98:7c:f8:a7:cd:a7:fd:d4:19:d9:
21:99:b2:86:d2:bb:36:38:b5:ae:bd:51:7d:e4:71:93:fc:6c:
6d:f9:52:28:01:74:7d:aa:fd:44:6d:bc:df:0a:67:6a:9d:8e:
4a:3d:3a:85:d1:9a:4c:88:e8:02:da:dd:fd:84:3d:6f:96:f2:
35:a1:12:20:15:75:a1:12:04:75:14:ed:ae:85:89:9d:4e:02:
ff:c0:1f:4e:3a:44:35:da:82:cb:6a:56:eb:c2:2c:3c:1b:95:
70:2d:e7:29:dc:77:7d:4e:99:34:b3:df:73:30:79:6a:ad:65:
27:7b:8a:e0:49:70:21:5e:1c:a7:8e:20:8e:ef:c3:41:f7:17:
dd:24:9c:d6:f0:f7:fa:e6:2f:4d:f4:ab:6d:f7:41:e6:9c:5d:
bf:47:a5:b2:8e:02:3d:c4:7b:30:4d:09:10:29:07:8a:92:c4:
3c:09:72:31:ee:16:7e:04:8c:51:82:66:51:01:b5:a9:ae:e6:
88:b1:a3:a4:b0:16:7a:70:c6:14:46:ad:a5:3e:71:2f:87:2c:
40:81:94:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:06:36 2025 by rpki-client