Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200101.roa
File: AS200101.roa (raw, json)
Hash identifier: KIN+vXpYEPRZWMRBcV3mf+JiqpzExIv6//qIYKMBE9w=
Subject key identifier: AB:71:70:2F:CA:01:2D:FE:24:77:F6:BD:BD:65:FC:2A:0C:3F:F6:76
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 531BBC4D9220C7399980CA46C7AA2B7D6F10871E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200101.roa
Signing time: Tue 03 Dec 2024 20:40:12 +0000
ROA not before: Tue 03 Dec 2024 20:35:12 +0000
ROA not after: Tue 02 Dec 2025 20:40:12 +0000
asID: 200101
IP address blocks: 2a06:a005:458::/48 maxlen: 48
2a06:a005:459::/48 maxlen: 48
2a06:a005:1620::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:1b:bc:4d:92:20:c7:39:99:80:ca:46:c7:aa:2b:7d:6f:10:87:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 3 20:35:12 2024 GMT
Not After : Dec 2 20:40:12 2025 GMT
Subject: CN=AB71702FCA012DFE2477F6BDBD65FC2A0C3FF676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:c1:01:a7:25:12:b2:95:58:41:07:7f:23:
70:45:ee:32:28:a2:34:8e:cb:ac:db:80:49:5e:ee:
a7:21:54:49:9e:80:6b:e9:1b:6d:7b:60:c3:9c:7a:
a5:81:82:7b:20:7c:45:90:e7:0e:74:d3:74:2b:43:
8b:04:68:25:51:25:b4:2d:7c:8b:1d:b7:65:2a:36:
c1:4f:87:88:c2:83:14:ae:9a:3e:f0:47:d2:5b:47:
65:47:62:66:07:2c:cc:bd:de:4d:38:af:4e:c4:72:
2b:7a:30:a8:d6:63:6a:62:78:bf:81:2d:5b:cc:a2:
84:d8:3d:69:0f:93:93:ec:25:dd:e5:60:fe:0e:e8:
52:56:58:ba:72:02:ed:7d:c0:f2:ea:fb:e3:f7:79:
c1:68:6c:14:d8:4b:98:b8:60:99:71:1e:c5:05:5e:
bb:65:a9:23:32:25:2d:94:48:b7:57:b5:53:a3:16:
d3:3c:0e:6d:54:c4:0d:2a:ff:4f:e5:7b:c1:eb:43:
5e:e1:78:c7:e4:80:f2:59:a4:4f:ed:c5:83:82:f7:
2c:76:93:1f:e2:72:20:73:0d:2c:50:f2:d4:b3:de:
7e:6d:e4:b3:09:29:4a:95:b5:06:9a:61:0e:91:5d:
c6:e5:a7:89:0a:b3:3e:26:13:16:75:4a:cd:89:c9:
e1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:71:70:2F:CA:01:2D:FE:24:77:F6:BD:BD:65:FC:2A:0C:3F:F6:76
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200101.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:458::/47
2a06:a005:1620::/44
Signature Algorithm: sha256WithRSAEncryption
a1:6d:7f:ca:89:fe:ab:91:2f:e2:7c:15:92:52:4a:24:43:e8:
f2:57:5c:a3:46:c0:04:c2:13:cc:c8:50:9d:ff:b2:9f:8b:cc:
fd:26:7e:95:b3:28:57:e4:8c:c5:96:55:2c:8e:e7:0b:44:33:
0a:3b:ed:c6:93:ff:67:f5:00:40:2e:52:91:0d:36:01:f7:2b:
ba:f6:38:29:39:5f:3d:48:54:e9:4b:63:7a:fe:20:75:a9:9b:
08:22:0e:0b:e8:98:e2:d9:68:d8:e8:0f:cc:be:16:99:6b:d9:
21:6d:9a:8c:15:f5:69:96:6d:73:5f:62:8e:d9:a9:c2:0c:c6:
25:fc:cc:64:0b:5c:ec:35:e0:05:71:dd:08:3c:1e:01:ca:25:
e5:49:f9:6a:05:61:49:e4:79:0b:01:c8:74:a0:6d:d8:b4:d6:
9a:dc:09:5a:88:00:51:5e:e8:ce:97:cf:af:28:b1:ab:7d:a9:
ad:dc:e8:04:4a:c2:d0:dc:26:a3:80:33:53:51:35:b1:a4:e5:
f4:93:f2:d8:dd:32:8d:c2:38:79:af:4a:aa:38:c8:f9:3d:cb:
d5:41:fe:29:5a:63:31:40:f7:d1:96:53:d0:35:21:3d:e5:0e:
5e:a8:f4:10:01:3c:dc:84:2d:e2:bc:ee:5f:8a:ec:54:19:5c:
cf:9e:6c:93
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIUUxu8TZIgxzmZgMpGx6orfW8Qhx4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMDMyMDM1MTJaFw0yNTEyMDIyMDQwMTJaMDMxMTAvBgNV
BAMTKEFCNzE3MDJGQ0EwMTJERkUyNDc3RjZCREJENjVGQzJBMEMzRkY2NzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxrcEBpyUSspVYQQd/I3BF7jIo
ojSOy6zbgEle7qchVEmegGvpG217YMOceqWBgnsgfEWQ5w5003QrQ4sEaCVRJbQt
fIsdt2UqNsFPh4jCgxSumj7wR9JbR2VHYmYHLMy93k04r07Ecit6MKjWY2pieL+B
LVvMooTYPWkPk5PsJd3lYP4O6FJWWLpyAu19wPLq++P3ecFobBTYS5i4YJlxHsUF
XrtlqSMyJS2USLdXtVOjFtM8Dm1UxA0q/0/le8HrQ17heMfkgPJZpE/txYOC9yx2
kx/iciBzDSxQ8tSz3n5t5LMJKUqVtQaaYQ6RXcblp4kKsz4mExZ1Ss2JyeEvAgMB
AAGjggH7MIIB9zAdBgNVHQ4EFgQUq3FwL8oBLf4kd/a9vWX8Kgw/9nYwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAwMTAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEH
AQH/BBwwGjAYBAIAAjASAwcBKgagBQRYAwcEKgagBRYgMA0GCSqGSIb3DQEBCwUA
A4IBAQChbX/Kif6rkS/ifBWSUkokQ+jyV1yjRsAEwhPMyFCd/7Kfi8z9Jn6VsyhX
5IzFllUsjucLRDMKO+3Gk/9n9QBALlKRDTYB9yu69jgpOV89SFTpS2N6/iB1qZsI
Ig4L6Jji2WjY6A/MvhaZa9khbZqMFfVplm1zX2KO2anCDMYl/MxkC1zsNeAFcd0I
PB4ByiXlSflqBWFJ5HkLAch0oG3YtNaa3AlaiABRXujOl8+vKLGrfamt3OgESsLQ
3CajgDNTUTWxpOX0k/LY3TKNwjh5r0qqOMj5PcvVQf4pWmMxQPfRllPQNSE95Q5e
qPQQATzchC3ivO5fiuxUGVzPnmyT
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:13:30 2025 by rpki-client