Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
File: AS203861.roa (raw, json)
Hash identifier: pVgCavrWKz0m/s/KW7WnXXolpWIdsfHMQs1IPvEMSUE=
Subject key identifier: 1E:0B:2D:F5:14:42:B1:67:2B:45:D5:14:A2:09:97:56:DB:61:83:FB
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 24CCB87C2C781EF46F3A1AAF0F9833BF47031B34
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
Signing time: Wed 27 Nov 2024 19:40:12 +0000
ROA not before: Wed 27 Nov 2024 19:35:12 +0000
ROA not after: Wed 26 Nov 2025 19:40:12 +0000
asID: 203861
IP address blocks: 2a06:a005:1d52::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:cc:b8:7c:2c:78:1e:f4:6f:3a:1a:af:0f:98:33:bf:47:03:1b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 27 19:35:12 2024 GMT
Not After : Nov 26 19:40:12 2025 GMT
Subject: CN=1E0B2DF51442B1672B45D514A2099756DB6183FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:f4:8d:f5:12:28:6b:21:a8:dc:34:e6:cf:
6a:86:22:a0:26:ff:fe:34:2c:b2:3d:0e:33:80:3b:
d8:e4:43:1c:0d:1e:a1:fd:87:c0:79:7e:b6:2d:4f:
2c:31:87:d7:7a:97:35:fe:b3:64:98:10:28:a7:c7:
d3:1d:de:48:d0:3a:12:22:44:16:6e:05:37:b2:23:
43:d0:fc:33:5b:a5:cc:86:a9:83:0c:9b:25:6d:26:
3d:14:98:eb:7d:fc:4a:53:d0:19:03:9a:18:1e:2a:
65:30:ac:7f:7c:e3:ff:6a:88:fb:bc:55:99:61:9b:
49:6b:6c:1e:f3:74:22:02:e7:97:1e:ec:3c:c2:d5:
91:f7:41:cc:a6:e0:4f:2f:03:48:8f:1e:57:03:54:
24:cb:ba:97:de:67:34:8a:1d:77:b7:b5:83:f8:e9:
90:92:27:3f:4c:93:c8:ad:a5:49:6f:24:32:6e:bb:
1a:81:cd:6e:80:91:72:a6:1f:6c:2d:50:c4:a6:27:
b0:63:c5:ff:f0:73:21:43:04:11:d6:ff:9b:4f:e5:
33:fe:3b:64:11:f0:7c:80:1b:b5:9f:66:13:81:69:
96:4f:fa:81:e5:9b:55:f5:0e:4f:03:1a:87:c0:c5:
90:c8:df:68:ae:42:cd:65:18:db:0e:12:b4:42:25:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:0B:2D:F5:14:42:B1:67:2B:45:D5:14:A2:09:97:56:DB:61:83:FB
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203861.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d52::/48
Signature Algorithm: sha256WithRSAEncryption
62:d7:05:81:db:c4:5b:44:04:f4:79:cd:c2:3d:70:fc:af:1e:
09:2a:7e:1b:bf:eb:b5:b6:72:cc:bd:ec:a6:18:36:b3:4d:0a:
bd:89:cb:0d:57:80:98:56:a1:5c:8e:17:24:6b:27:57:af:fa:
6d:ba:88:e1:cd:e3:22:8a:27:97:8d:b7:5c:b2:8c:d6:2f:70:
84:8c:e5:3a:d6:0a:b9:e2:6f:10:03:51:ac:41:39:1b:d2:78:
a2:e5:11:eb:ba:6c:af:e6:f1:2f:52:02:89:ed:51:52:c8:78:
93:a9:3b:1f:2e:a2:05:f6:2a:f3:65:8a:91:55:e2:c3:c2:9e:
0d:80:90:01:cf:2f:23:f5:0f:32:1d:2b:24:de:e6:3a:9e:04:
87:55:7a:16:68:bd:a7:ad:56:f0:17:c1:8f:b5:55:ba:de:eb:
3f:46:b8:5f:c4:55:42:96:69:59:15:5f:ae:ff:c9:a8:f9:6c:
2c:3b:48:5c:4c:db:50:d2:c1:c8:a1:e4:91:de:f7:2b:cd:62:
f6:4d:08:dd:9a:85:96:2e:6c:87:94:3e:0e:8c:42:f7:91:9c:
c4:ec:14:6f:c2:93:a2:00:4d:e4:3e:2c:1d:95:8a:19:74:3e:
ea:4b:b9:9b:df:36:5a:9b:39:26:5b:e6:e1:34:b9:bc:cb:bc:
9a:7a:33:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:16:44 2025 by rpki-client