Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
File: AS0.roa (raw, json)
Hash identifier: /WOGwuLWP9TCciXq7bjsmMia8BHDvJFf1jWgCuyUzGk=
Subject key identifier: 75:D9:14:67:67:D4:9E:91:0E:8E:A5:14:77:C4:5D:D6:F0:D6:36:06
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 484BA5D2DAB759EC3C7E04B9AED94B652FC9595D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
Signing time: Tue 18 Feb 2025 03:32:55 +0000
ROA not before: Tue 18 Feb 2025 03:27:55 +0000
ROA not after: Tue 17 Feb 2026 03:32:55 +0000
asID: 0
IP address blocks: 2a06:a007::/32 maxlen: 32
2a0d:d905::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:4b:a5:d2:da:b7:59:ec:3c:7e:04:b9:ae:d9:4b:65:2f:c9:59:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 18 03:27:55 2025 GMT
Not After : Feb 17 03:32:55 2026 GMT
Subject: CN=75D9146767D49E910E8EA51477C45DD6F0D63606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:26:11:d0:fc:54:c0:7f:d4:36:d1:52:cf:b6:
27:38:4d:c8:a6:e6:78:46:73:64:cf:06:be:72:eb:
c0:34:64:66:6e:13:9f:bb:16:da:5d:89:3f:ba:9c:
4f:ef:f0:1c:80:bd:58:c6:76:9e:9b:af:b3:2f:89:
7e:0f:72:ca:ff:34:d6:04:0f:43:4a:8e:03:17:60:
b2:36:02:db:01:47:aa:8e:52:bd:67:0c:e7:8c:15:
3e:e8:1a:ca:01:3a:55:6c:d4:7e:98:62:63:28:3a:
66:ae:5f:fb:74:94:22:ee:6f:88:05:5e:2b:03:1f:
fe:26:14:08:8b:d8:24:6d:20:30:7d:46:6b:56:5e:
cc:7b:56:c3:4b:2d:d7:93:06:ce:95:aa:0e:3e:f7:
01:a7:44:b0:de:a6:a0:cf:7d:0e:4f:6e:8f:ea:9a:
e2:8b:eb:15:5f:b4:3f:f5:41:5e:fb:fc:9d:ae:c4:
c6:9f:c9:b6:cc:8e:7c:b8:71:67:54:d4:d8:df:e9:
9b:cf:5c:f0:72:5c:1b:c0:8e:1a:b2:19:22:d1:98:
7a:5c:8d:d8:a8:e2:c8:d2:d6:3f:e1:77:7b:86:f8:
d7:9a:c9:f0:a9:32:a4:e1:7a:62:df:be:3b:04:96:
cd:4c:e7:7e:01:f3:49:7e:b8:08:a0:dc:69:ce:a4:
2d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D9:14:67:67:D4:9E:91:0E:8E:A5:14:77:C4:5D:D6:F0:D6:36:06
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a007::/32
2a0d:d905::/32
Signature Algorithm: sha256WithRSAEncryption
2c:6a:28:9f:5d:26:fd:a8:cd:90:4a:c2:16:c4:0d:46:f2:96:
e3:13:6a:02:51:ea:81:73:3a:d2:ca:cb:f9:e3:b1:b2:46:34:
52:ee:03:9e:16:34:4a:f9:d4:0b:01:5d:75:08:1f:07:c7:3d:
f2:01:0c:c4:46:29:5e:c8:78:6a:5a:2a:f3:bc:d5:c4:79:84:
a1:23:fd:5e:89:e7:59:3a:64:15:09:ca:8d:69:65:c6:49:be:
f0:cf:b8:cf:15:cc:fc:da:8c:23:6b:99:e8:34:fa:1c:88:a9:
bd:0e:7e:0c:a0:7e:73:e5:02:48:1b:c5:8f:83:2b:de:67:ba:
a0:e7:62:37:86:03:1c:60:1e:f7:b0:38:92:61:56:d0:e0:c2:
f2:c2:48:2e:06:0c:f0:91:ba:4f:34:8e:97:d3:c3:82:e4:8c:
c7:15:19:ea:08:dd:28:ff:b1:51:00:25:f8:0e:9b:12:32:7a:
61:02:f1:d9:be:a7:11:e6:e2:de:9b:f9:b2:a2:99:d0:12:bd:
9b:0f:7a:7a:c7:38:ce:f5:ea:c1:36:46:00:68:d9:a4:0d:d8:
46:1a:5a:bd:fa:bc:44:1a:22:c5:e1:e0:5f:8a:bc:0e:c3:65:
db:6f:ae:0a:3c:b7:ef:f6:79:ca:fc:fe:06:91:ba:a6:cc:8e:
a9:fc:ba:f2
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUSEul0tq3Wew8fgS5rtlLZS/JWV0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNTAyMTgwMzI3NTVaFw0yNjAyMTcwMzMyNTVaMDMxMTAvBgNV
BAMTKDc1RDkxNDY3NjdENDlFOTEwRThFQTUxNDc3QzQ1REQ2RjBENjM2MDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJhHQ/FTAf9Q20VLPtic4Tcim
5nhGc2TPBr5y68A0ZGZuE5+7FtpdiT+6nE/v8ByAvVjGdp6br7MviX4Pcsr/NNYE
D0NKjgMXYLI2AtsBR6qOUr1nDOeMFT7oGsoBOlVs1H6YYmMoOmauX/t0lCLub4gF
XisDH/4mFAiL2CRtIDB9RmtWXsx7VsNLLdeTBs6Vqg4+9wGnRLDepqDPfQ5Pbo/q
muKL6xVftD/1QV77/J2uxMafybbMjny4cWdU1Njf6ZvPXPByXBvAjhqyGSLRmHpc
jdio4sjS1j/hd3uG+NeayfCpMqThemLfvjsEls1M534B80l+uAig3GnOpC17AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUddkUZ2fUnpEOjqUUd8Rd1vDWNgYwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBrBggrBgEF
BQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQY
MBYwFAQCAAIwDgMFACoGoAcDBQAqDdkFMA0GCSqGSIb3DQEBCwUAA4IBAQAsaiif
XSb9qM2QSsIWxA1G8pbjE2oCUeqBczrSysv547GyRjRS7gOeFjRK+dQLAV11CB8H
xz3yAQzERileyHhqWirzvNXEeYShI/1eiedZOmQVCcqNaWXGSb7wz7jPFcz82owj
a5noNPociKm9Dn4MoH5z5QJIG8WPgyveZ7qg52I3hgMcYB73sDiSYVbQ4MLywkgu
BgzwkbpPNI6X08OC5IzHFRnqCN0o/7FRACX4DpsSMnphAvHZvqcR5uLem/myopnQ
Er2bD3p6xzjO9erBNkYAaNmkDdhGGlq9+rxEGiLF4eBfirwOw2Xbb64KPLfv9nnK
/P4GkbqmzI6p/Lry
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:13:30 2025 by rpki-client