Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
File: AS200192.roa (raw, json)
Hash identifier: hYIRwdqdGrJqFhUeWu4YSiuaXhKKxlpfXzpSSTktGZY=
Subject key identifier: CF:29:D8:B3:AD:77:C4:D6:90:CE:32:8F:A3:FD:8D:32:95:AD:D1:F5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0D4409E98B706B02A5650179450A8DC1616D825E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
Signing time: Mon 25 Nov 2024 12:40:12 +0000
ROA not before: Mon 25 Nov 2024 12:35:12 +0000
ROA not after: Mon 24 Nov 2025 12:40:12 +0000
asID: 200192
IP address blocks: 2a06:a005:1274::/48 maxlen: 48
2a06:a005:1680::/44 maxlen: 48
2a06:a005:16b0::/44 maxlen: 48
2a06:a005:1c00::/44 maxlen: 48
2a06:a005:20a0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:44:09:e9:8b:70:6b:02:a5:65:01:79:45:0a:8d:c1:61:6d:82:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 25 12:35:12 2024 GMT
Not After : Nov 24 12:40:12 2025 GMT
Subject: CN=CF29D8B3AD77C4D690CE328FA3FD8D3295ADD1F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4e:aa:30:cd:7b:a0:85:af:43:19:ac:56:69:
cf:68:c2:91:01:61:0b:c8:22:fe:c6:11:bb:92:fd:
97:14:02:8b:04:a8:f7:4e:8e:d4:59:cb:98:30:74:
0f:8f:e1:cf:f7:49:85:fd:fc:5e:b8:ce:37:46:fe:
26:0f:17:3f:a9:3c:32:0b:a8:36:78:37:f6:ca:59:
13:bb:74:fb:55:ce:90:ba:bc:05:2c:f8:3e:93:bc:
e3:46:76:93:58:bc:81:07:89:79:3c:7b:16:2e:01:
6f:67:76:83:8f:21:17:78:db:2c:26:9d:52:86:1a:
79:1c:c7:74:a7:88:69:fd:99:cd:0b:26:fe:06:bc:
08:c7:0d:be:50:45:08:df:a3:ce:0a:f3:27:a1:ce:
89:92:7f:61:b1:6d:ca:d5:3a:78:a5:ef:21:0c:87:
f2:ca:3e:f9:78:1a:70:25:83:4c:3b:66:a1:32:a2:
5e:8c:94:d6:41:29:ef:e8:40:7e:2d:c4:be:73:6c:
7a:17:64:c0:7a:01:84:07:5e:d0:8b:0d:20:dd:7a:
9e:6e:0b:64:88:f9:a4:2b:19:39:68:b9:00:9e:ef:
aa:35:11:27:09:79:8a:09:5e:25:ba:61:7f:63:7a:
29:50:1a:51:da:74:1c:92:19:1c:2a:9c:05:3b:42:
dc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:29:D8:B3:AD:77:C4:D6:90:CE:32:8F:A3:FD:8D:32:95:AD:D1:F5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200192.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1274::/48
2a06:a005:1680::/44
2a06:a005:16b0::/44
2a06:a005:1c00::/44
2a06:a005:20a0::/44
Signature Algorithm: sha256WithRSAEncryption
2a:0f:8f:65:ee:b6:f5:73:2a:db:74:1b:11:ec:90:a1:af:cb:
17:f9:8d:58:e1:fe:0e:48:08:c8:56:f0:92:27:01:3a:36:7a:
b6:a5:b8:83:49:8d:af:b3:f7:27:f6:98:25:80:c3:78:38:ff:
15:32:96:77:76:f9:b4:74:b1:c4:9b:86:77:ce:11:d2:9a:cf:
c3:25:5e:88:27:5a:2f:bf:5d:9c:20:6a:66:81:69:18:cf:47:
6d:34:31:9a:10:32:da:48:6b:6e:1a:f1:10:c2:66:cb:7e:ed:
f0:05:3e:48:85:7d:a8:b6:76:2f:e7:f1:79:5e:0b:3d:73:47:
7d:95:40:f5:c9:35:02:fc:b9:14:81:f3:89:b2:f2:b0:00:ec:
79:25:4c:a6:ca:66:7e:03:2c:e0:b5:3a:a7:88:d2:d5:f7:5d:
44:a2:da:19:85:87:e4:9b:35:09:fb:1e:75:c2:2b:a2:1c:53:
4b:40:db:04:2b:ef:82:cd:24:4c:88:f2:be:c5:20:6e:e0:96:
1b:ba:9b:08:ad:c0:6d:3e:17:d0:16:2e:2f:b9:0e:71:f6:b4:
5d:04:7a:f8:35:a5:20:4a:38:ba:fd:18:6c:19:ba:85:cb:89:
fd:24:a3:5f:c0:54:ff:79:54:59:74:11:5b:3a:f0:8c:49:01:
e7:9e:42:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:16:51 2025 by rpki-client