Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198016.roa
File: AS198016.roa (raw, json)
Hash identifier: PTax9WzbxgPpV8yRIOfAB1jkzI70sWCjhWCWsMdm+j0=
Subject key identifier: 64:70:F3:68:02:BD:70:D1:29:97:79:42:BD:0F:E1:15:85:DD:51:1D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4B2392E431ED439BB0680C493C8DC374EF5C8F99
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198016.roa
Signing time: Sun 15 Dec 2024 21:40:12 +0000
ROA not before: Sun 15 Dec 2024 21:35:12 +0000
ROA not after: Sun 14 Dec 2025 21:40:12 +0000
asID: 198016
IP address blocks: 81.31.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:23:92:e4:31:ed:43:9b:b0:68:0c:49:3c:8d:c3:74:ef:5c:8f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 15 21:35:12 2024 GMT
Not After : Dec 14 21:40:12 2025 GMT
Subject: CN=6470F36802BD70D129977942BD0FE11585DD511D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:b0:a5:f7:fb:e7:c6:55:a5:8b:f7:4b:8a:2d:
f9:a1:f0:b1:cf:f9:55:03:e8:96:2b:55:e0:96:b5:
a6:a7:db:af:4a:9e:7e:17:98:45:8a:a9:6d:aa:fd:
53:0c:57:c3:da:94:dc:0c:8e:ef:e9:e3:b3:53:3f:
10:66:81:93:c7:88:6f:f0:c6:a7:3a:18:c4:27:90:
e2:b5:b9:4c:87:fb:0c:44:79:98:ca:30:f8:10:2c:
c8:d2:d1:93:3d:f8:ab:fd:1b:5d:d4:a9:26:8e:68:
e3:19:b2:83:8b:ec:cb:f1:f8:35:4a:1b:d2:df:3a:
44:b8:36:6c:68:f6:5e:5d:63:a4:4d:7f:ba:ee:68:
3d:83:b6:8d:24:bd:c2:9a:5c:97:da:6a:db:ab:dc:
2f:66:d6:b6:44:65:3a:ff:bc:a9:cb:6f:fd:9d:36:
2e:02:ab:f0:59:20:f9:05:46:4b:26:db:84:d2:53:
20:0f:12:95:e0:43:7a:9d:58:f6:74:5d:cb:5e:c9:
cf:fb:a5:bb:52:e0:cc:9e:38:74:23:3e:d6:c2:0d:
97:22:ec:1f:2a:f5:1a:e6:9e:a1:ac:0c:5c:51:3e:
b8:2a:f9:5f:89:58:fd:8c:0c:1f:69:3a:42:34:7b:
22:09:4e:cf:db:01:9c:b9:60:38:ca:f3:36:d9:de:
45:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:70:F3:68:02:BD:70:D1:29:97:79:42:BD:0F:E1:15:85:DD:51:1D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS198016.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.214.0/24
Signature Algorithm: sha256WithRSAEncryption
22:29:21:70:57:58:15:7b:81:6b:c0:8c:3b:21:2d:14:af:4f:
ff:64:72:9f:d7:a5:8f:83:62:3a:c2:2f:56:d4:50:17:26:9b:
12:25:ac:27:f7:83:e0:fe:53:17:ad:e2:1a:56:0c:f1:fc:e7:
86:f3:f2:55:60:69:2d:54:ce:b8:f4:88:a2:ca:53:d3:35:b5:
88:4f:e4:e4:fd:76:50:9f:e0:1b:09:24:70:80:39:56:2d:bf:
d8:14:01:82:97:12:ed:c8:2e:a1:8e:8c:c3:8f:73:78:2d:19:
c1:b1:b6:21:e5:58:a5:c7:84:78:cf:d6:b7:35:2d:66:1f:19:
d3:98:ac:c2:70:ea:5d:8c:7d:6d:08:cb:72:f6:f9:b0:15:7c:
8f:e4:d2:41:5f:5b:51:86:04:4c:0e:08:c7:fb:9e:ea:eb:8b:
33:80:a8:0f:49:d3:2b:25:f0:6c:09:f8:bb:74:2e:01:5a:c8:
70:ff:8f:6e:23:b8:1e:b8:a1:47:4a:39:9e:ac:36:63:27:9f:
c1:d5:50:ac:d3:74:0a:76:e7:eb:df:07:71:1a:14:ea:a7:04:
45:34:6f:3c:a0:32:d9:43:50:0b:ba:b7:8b:b0:45:45:20:a3:
af:48:1e:13:df:91:93:c7:58:fd:3f:ab:11:47:1b:c4:26:e6:
e0:a8:2d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:18 2025 by rpki-client