Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
File: AS204789.roa (raw, json)
Hash identifier: b/A14w/lUvLVc8LnnWb+orYzkzQKcqtyNAzmghMQqXs=
Subject key identifier: C5:9A:86:51:B4:4D:3D:78:AC:03:40:57:BF:FF:0E:23:41:CC:62:9E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 68393E4DA1FB1950BFDC6B88B09BEEBAEA6135B2
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
Signing time: Sat 14 Dec 2024 16:56:02 +0000
ROA not before: Sat 14 Dec 2024 16:51:02 +0000
ROA not after: Sat 13 Dec 2025 16:56:02 +0000
asID: 204789
IP address blocks: 2a06:1286::/32 maxlen: 48
2a06:a001:a0b0::/44 maxlen: 48
2a06:a005:1db0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:39:3e:4d:a1:fb:19:50:bf:dc:6b:88:b0:9b:ee:ba:ea:61:35:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 14 16:51:02 2024 GMT
Not After : Dec 13 16:56:02 2025 GMT
Subject: CN=C59A8651B44D3D78AC034057BFFF0E2341CC629E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:98:71:6a:8c:2a:95:ac:48:7a:82:7c:08:
ac:ce:5a:fc:3d:94:58:00:4b:cd:bf:84:0c:e9:fe:
df:bc:07:2e:89:43:9c:82:93:cc:b0:d1:3e:9d:5c:
bb:f1:99:88:6f:28:b2:f2:51:f4:35:2b:e5:3b:64:
4a:78:72:af:dd:b8:35:53:ba:a1:c2:b2:ef:78:29:
27:38:d6:42:d0:36:96:8f:45:b8:49:93:5c:a1:60:
80:76:fd:c8:c8:d8:e6:40:dd:dd:fc:dc:96:63:fd:
48:14:7c:41:c3:73:ab:86:bb:e8:5c:32:01:a2:19:
84:f9:69:b2:49:ad:2e:6e:bf:ea:00:d3:4c:eb:bf:
4d:27:c4:ac:66:8f:cb:69:ad:f4:df:36:db:87:ec:
94:c5:db:99:d6:f4:fb:b4:4e:2d:66:4f:82:a2:13:
22:2e:5f:d5:ad:75:38:33:83:d2:76:81:29:ed:2d:
94:ab:19:2f:43:f9:32:44:30:4b:95:c6:e6:11:41:
15:d1:79:c5:77:02:8e:1a:80:36:8d:23:91:67:5f:
05:52:78:b3:02:0a:ac:76:13:55:9b:2b:74:ee:cd:
96:db:e0:69:5d:9c:41:20:3c:26:ce:e5:9a:61:d2:
d2:4b:fb:90:5f:0a:76:b6:a2:df:b0:08:4c:18:1b:
99:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9A:86:51:B4:4D:3D:78:AC:03:40:57:BF:FF:0E:23:41:CC:62:9E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204789.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1286::/32
2a06:a001:a0b0::/44
2a06:a005:1db0::/44
Signature Algorithm: sha256WithRSAEncryption
d3:b2:f9:b4:72:10:20:97:1e:c8:4a:b8:25:6a:41:f4:bb:0a:
83:82:95:3b:4c:8e:80:c6:86:2c:0f:a2:fd:70:e5:92:90:34:
e9:67:55:48:46:ba:d2:05:6a:77:7b:2b:0d:c5:02:4a:71:d7:
f5:6c:e6:e3:66:06:9e:bf:3c:12:5c:20:3d:7b:52:0f:33:b9:
76:f0:45:41:5c:18:ca:3d:ae:ab:46:a6:8c:4a:ad:71:4f:86:
70:4b:0e:2d:38:ba:63:26:70:e4:42:5b:44:f6:78:b7:0e:16:
ca:07:50:10:78:4a:ef:71:00:63:37:b9:19:77:b5:7d:c1:ae:
ad:98:07:d7:72:2a:0f:0b:83:a5:09:19:fe:2a:a3:60:21:5d:
26:83:85:13:56:12:07:c3:23:ef:ee:7e:aa:7d:75:2d:30:e7:
5a:a9:6d:4a:a5:55:a8:2d:01:39:6f:19:35:62:49:fd:09:97:
95:e1:ed:7f:38:6d:53:1c:00:65:38:a4:f6:c5:7c:f7:93:68:
fb:59:42:b6:9a:e0:e8:a2:7d:f1:59:b8:1d:b9:b8:ab:ec:6c:
fa:6b:6d:38:02:78:c4:a3:95:d9:61:11:af:4e:b3:11:b6:ff:
32:5e:06:da:32:31:17:72:d1:0c:f1:72:5e:33:ba:22:6c:58:
a3:8f:7d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:42:25 2025 by rpki-client