Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199767.roa
File: AS199767.roa (raw, json)
Hash identifier: ru5PX2nu/NWtxYkKMOfGvokNYXRfKq5lOBc03Xn2jaQ=
Subject key identifier: 7D:1B:0B:56:49:38:EF:2A:0F:74:63:7B:61:13:31:9D:91:73:B0:A5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 20A489CE08B58061A4AE9A034201E95153328AA7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199767.roa
Signing time: Sat 28 Dec 2024 12:40:12 +0000
ROA not before: Sat 28 Dec 2024 12:35:12 +0000
ROA not after: Sat 27 Dec 2025 12:40:12 +0000
asID: 199767
IP address blocks: 2a06:a005:2390::/44 maxlen: 48
2a06:a005:2cb0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:a4:89:ce:08:b5:80:61:a4:ae:9a:03:42:01:e9:51:53:32:8a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 28 12:35:12 2024 GMT
Not After : Dec 27 12:40:12 2025 GMT
Subject: CN=7D1B0B564938EF2A0F74637B6113319D9173B0A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5e:63:1e:43:bd:34:44:76:7b:dc:6a:a2:cd:
91:ad:48:6c:c8:ff:42:d6:ab:b9:ad:08:93:f3:68:
74:d4:93:8e:63:a3:d9:69:aa:84:12:93:95:fb:c8:
8a:37:73:ef:7f:ed:32:1d:44:a9:4a:3a:4c:80:27:
6f:c3:dd:ee:c7:1a:fd:9b:bb:62:bc:ec:09:e4:f1:
59:9e:9f:a3:cb:5a:ba:c3:66:2b:13:e6:0b:e4:9f:
02:7e:4d:47:88:70:4e:3c:07:c6:06:08:81:ed:b9:
d2:5b:38:b0:7e:54:c3:03:fb:69:11:46:57:cb:d1:
59:3b:ec:4f:86:51:77:76:37:8a:d2:e7:88:82:49:
1c:e6:21:79:c2:91:2d:fa:84:63:78:8d:f0:dc:dd:
4c:d1:c8:df:54:ae:bb:dd:b7:0e:bb:89:c5:b5:3d:
cb:ca:1a:9b:0c:4f:2b:34:92:6f:78:d4:1a:97:c8:
3d:b3:9f:50:f4:b1:59:70:d9:e2:9d:ce:5a:eb:65:
a4:12:93:e0:06:d6:a9:ec:b5:3d:dd:f3:b6:e6:c8:
9a:84:70:48:64:64:85:ea:3a:92:9b:81:5e:0c:00:
0f:e6:7e:93:fd:d8:96:c6:4f:55:b9:02:10:6e:c9:
6d:bd:b8:ec:12:3b:a2:ae:63:21:97:1c:45:c4:f1:
0e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1B:0B:56:49:38:EF:2A:0F:74:63:7B:61:13:31:9D:91:73:B0:A5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS199767.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2390::/44
2a06:a005:2cb0::/44
Signature Algorithm: sha256WithRSAEncryption
54:f4:98:d2:e0:ef:45:29:88:97:41:73:90:f3:ee:0e:af:68:
5c:22:46:79:8e:df:91:c7:91:ee:6b:e5:f6:6d:4d:51:bf:e1:
f7:a2:d3:15:54:64:cc:87:e3:0b:26:08:bf:50:e7:3e:75:56:
c7:c0:73:11:4b:de:d4:c0:11:38:ce:c9:41:c8:b6:91:0e:11:
f1:7e:64:b1:dd:e5:d6:9e:06:d0:b1:d9:43:3e:03:6a:a7:33:
ad:71:d9:1e:12:08:6c:b3:38:2a:f0:6b:73:a4:13:9a:4c:fd:
52:ba:a4:bc:3e:a4:bb:e4:ff:c8:fa:8c:1e:10:10:c1:76:cf:
0f:c5:8d:40:cd:ed:d3:3f:50:87:59:71:6a:2e:7f:07:f2:b5:
a6:6f:5f:71:a5:73:b2:01:83:47:15:d2:1b:b7:c2:d3:e9:cd:
85:89:60:01:c0:19:a6:74:95:82:b3:71:07:28:d3:84:cf:0d:
db:b8:60:41:d8:0f:9b:f1:70:ec:8a:18:de:bd:22:d8:46:85:
ad:2c:4c:59:1d:51:16:84:48:05:d4:fe:5b:3d:33:d1:9b:bd:
8b:0d:a5:d8:06:c3:7d:ba:9c:67:79:5e:7e:cb:3c:77:a3:c9:
b2:e5:6b:45:86:5e:30:b7:5f:a7:1c:3a:c3:c1:2a:b0:bd:84:
a2:a5:fc:07
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIUIKSJzgi1gGGkrpoDQgHpUVMyiqcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMjgxMjM1MTJaFw0yNTEyMjcxMjQwMTJaMDMxMTAvBgNV
BAMTKDdEMUIwQjU2NDkzOEVGMkEwRjc0NjM3QjYxMTMzMTlEOTE3M0IwQTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXmMeQ700RHZ73GqizZGtSGzI
/0LWq7mtCJPzaHTUk45jo9lpqoQSk5X7yIo3c+9/7TIdRKlKOkyAJ2/D3e7HGv2b
u2K87Ank8Vmen6PLWrrDZisT5gvknwJ+TUeIcE48B8YGCIHtudJbOLB+VMMD+2kR
RlfL0Vk77E+GUXd2N4rS54iCSRzmIXnCkS36hGN4jfDc3UzRyN9Urrvdtw67icW1
PcvKGpsMTys0km941BqXyD2zn1D0sVlw2eKdzlrrZaQSk+AG1qnstT3d87bmyJqE
cEhkZIXqOpKbgV4MAA/mfpP92JbGT1W5AhBuyW29uOwSO6KuYyGXHEXE8Q71AgMB
AAGjggH7MIIB9zAdBgNVHQ4EFgQUfRsLVkk47yoPdGN7YRMxnZFzsKUwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MTk5NzY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEH
AQH/BBwwGjAYBAIAAjASAwcEKgagBSOQAwcEKgagBSywMA0GCSqGSIb3DQEBCwUA
A4IBAQBU9JjS4O9FKYiXQXOQ8+4Or2hcIkZ5jt+Rx5Hua+X2bU1Rv+H3otMVVGTM
h+MLJgi/UOc+dVbHwHMRS97UwBE4zslByLaRDhHxfmSx3eXWngbQsdlDPgNqpzOt
cdkeEghsszgq8GtzpBOaTP1SuqS8PqS75P/I+oweEBDBds8PxY1Aze3TP1CHWXFq
Ln8H8rWmb19xpXOyAYNHFdIbt8LT6c2FiWABwBmmdJWCs3EHKNOEzw3buGBB2A+b
8XDsihjevSLYRoWtLExZHVEWhEgF1P5bPTPRm72LDaXYBsN9upxneV5+yzx3o8my
5WtFhl4wt1+nHDrDwSqwvYSipfwH
-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:18 2025 by rpki-client