Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138995.roa
File: AS138995.roa (raw, json)
Hash identifier: 7A7aBULYJgnZNdyDhX9H0FCsuNCztHd7OTNz4YuWfdw=
Subject key identifier: 67:C7:90:09:9E:64:86:E4:02:7E:FA:A8:D9:64:36:CE:BB:12:B7:AF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5887E506C4D606CA896A668B9F4932C79D705534
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138995.roa
Signing time: Fri 31 Jan 2025 06:15:31 +0000
ROA not before: Fri 31 Jan 2025 06:10:31 +0000
ROA not after: Fri 30 Jan 2026 06:15:31 +0000
asID: 138995
IP address blocks: 103.214.70.0/24 maxlen: 24
185.121.170.0/24 maxlen: 24
185.121.178.0/24 maxlen: 24
185.121.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:87:e5:06:c4:d6:06:ca:89:6a:66:8b:9f:49:32:c7:9d:70:55:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 31 06:10:31 2025 GMT
Not After : Jan 30 06:15:31 2026 GMT
Subject: CN=67C790099E6486E4027EFAA8D96436CEBB12B7AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:76:70:26:0c:fa:18:1e:27:c6:d5:36:03:64:
c3:ce:bd:c1:c5:d7:aa:3b:fa:21:bb:16:e6:29:18:
43:64:4a:74:5e:cc:bd:20:4d:0f:10:cc:66:5b:0b:
a2:07:aa:31:49:1f:b1:b9:a6:e8:ab:56:db:47:59:
bf:13:59:4c:d7:36:83:c3:03:e0:31:11:e1:c1:25:
35:b8:71:84:14:4b:b8:44:d0:50:2b:17:91:8d:32:
af:fe:34:a5:5a:2e:4f:16:31:bf:ec:8a:34:47:49:
76:08:10:67:92:f3:6c:75:9c:be:81:46:94:0c:05:
24:fd:cf:6b:b6:95:c4:75:b8:af:9d:72:27:74:a3:
91:b1:b1:c2:68:f5:05:52:49:0a:9d:1a:ee:ee:c9:
85:4e:5a:b0:03:4a:6c:42:d3:13:6d:51:b3:3a:07:
99:9e:7c:6a:53:7b:c8:5b:12:dc:22:61:fc:30:8f:
5c:19:af:ea:d8:e4:29:a8:86:ee:dc:9d:b1:3a:8a:
2f:06:5f:08:93:5a:68:19:6f:7b:42:ac:f8:e8:51:
d0:13:a2:cc:80:f5:7e:e0:37:06:bd:f6:ea:80:77:
07:b7:c2:a4:62:e8:8d:1a:95:fa:63:a2:5b:14:7c:
d4:0f:eb:89:fc:d8:81:f3:ef:3c:47:de:01:62:e3:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C7:90:09:9E:64:86:E4:02:7E:FA:A8:D9:64:36:CE:BB:12:B7:AF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138995.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.70.0/24
185.121.170.0/24
185.121.178.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:0d:b7:9f:e4:ef:76:71:4f:a2:9e:00:60:b2:ca:24:a4:f3:
ab:ef:29:07:6d:f6:90:20:8d:be:8f:f0:2c:33:b1:5f:8a:28:
c4:28:63:6b:6b:7b:07:bf:0d:6b:52:53:88:82:f5:9b:b0:3d:
89:e0:ad:e2:ec:7a:4c:d8:8c:cc:5e:02:7c:92:17:01:bb:af:
96:45:bb:4f:f9:ca:b5:b2:66:26:03:0d:76:89:98:1b:ef:a3:
54:cc:fe:f3:ad:25:77:55:2a:1d:06:30:fd:d2:3e:6c:69:ed:
ae:2f:b5:88:4d:3f:42:ee:53:b0:2d:fb:09:b6:8d:57:ff:42:
8f:0a:cb:bb:13:dc:db:4c:e3:4c:a1:52:bc:f2:1c:04:dd:17:
ea:62:dc:a1:39:ae:cd:f0:f0:24:85:b0:2e:ce:de:ca:14:76:
fa:02:1b:62:56:83:71:0c:6a:8a:98:49:66:cb:fd:6d:a7:e8:
22:20:d8:b0:37:bc:c2:f9:45:87:42:cc:0f:ed:0a:e1:cf:5a:
19:12:3f:c0:b3:af:36:17:d6:6b:ee:2f:02:85:7f:9d:69:5e:
ee:60:15:78:6b:d6:a1:51:4f:87:97:49:46:57:db:42:8c:ee:
14:87:25:b3:60:5a:0e:ac:6d:0b:6d:9c:2a:73:88:46:60:ff:
c7:a1:2b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:41:27 2025 by rpki-client