Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204901.roa
File: AS204901.roa (raw, json)
Hash identifier: 6Cx20b8sz8ESDVbYqXxgnyiqH2N1WV6iTHZG4nx1gaE=
Subject key identifier: A0:6D:E8:22:0E:FA:DD:3E:80:24:9C:BD:37:80:06:05:08:33:A5:65
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 486FB178871BB61D2FB18C4CA811BCB535728B01
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204901.roa
Signing time: Sun 24 Nov 2024 22:40:12 +0000
ROA not before: Sun 24 Nov 2024 22:35:12 +0000
ROA not after: Sun 23 Nov 2025 22:40:12 +0000
asID: 204901
IP address blocks: 2a06:a005:1690::/44 maxlen: 48
2a06:a005:1c20::/44 maxlen: 48
2a06:a005:2600::/44 maxlen: 48
2a06:a005:2830::/44 maxlen: 48
2a06:a005:2840::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:6f:b1:78:87:1b:b6:1d:2f:b1:8c:4c:a8:11:bc:b5:35:72:8b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 24 22:35:12 2024 GMT
Not After : Nov 23 22:40:12 2025 GMT
Subject: CN=A06DE8220EFADD3E80249CBD378006050833A565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9a:b4:6b:4e:d6:50:03:fc:c5:a4:65:52:77:
6f:c7:8e:65:08:cd:fe:06:e7:c4:37:fe:72:b6:16:
55:9f:f0:38:fd:ab:9e:54:29:9e:83:0e:64:32:4f:
9d:55:80:16:29:3f:b0:a1:6c:e3:35:f3:c0:63:71:
fd:4e:02:bd:ce:d8:64:95:01:40:49:eb:cc:b9:39:
7c:bd:21:a8:78:c8:4d:16:2b:f7:41:ea:51:5e:93:
eb:8f:f9:04:ea:75:19:e5:92:8d:51:a7:75:d5:6d:
b1:ba:3d:de:62:23:6e:90:7f:ab:94:07:e2:f9:dc:
ab:3a:e8:53:b7:02:10:e1:f4:d8:d9:d3:a0:42:e1:
8a:93:ed:c0:d9:ac:49:71:5c:fb:25:a6:f8:3e:74:
c2:fc:c8:4e:8b:c3:0a:99:21:88:22:f6:44:4e:bc:
bf:1f:b0:5b:f2:32:47:c0:20:fd:2d:70:21:a1:fb:
d6:4e:2b:df:c4:81:b7:30:4e:25:39:1b:49:74:3c:
5e:51:85:38:0d:ee:79:7d:cb:74:7c:a7:ce:bf:f4:
f9:a6:cc:a3:b0:81:cd:df:44:fb:31:17:ce:08:80:
55:20:20:88:5b:8c:ad:6b:39:db:bc:9a:ca:b4:00:
98:c7:f5:30:5c:71:4b:ee:d9:b2:1f:86:9c:9c:d3:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6D:E8:22:0E:FA:DD:3E:80:24:9C:BD:37:80:06:05:08:33:A5:65
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204901.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1690::/44
2a06:a005:1c20::/44
2a06:a005:2600::/44
2a06:a005:2830::-2a06:a005:284f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d2:c7:ae:3a:e4:83:7b:44:49:e2:7d:0a:99:c5:21:30:ba:c1:
98:80:45:83:84:b0:2a:d5:39:9c:ec:9e:5e:83:50:b9:43:d6:
44:27:1e:77:06:ba:4c:0e:fe:dc:88:84:9c:30:7b:3d:15:88:
fe:b6:e8:a0:99:54:a7:43:a5:9f:e3:d1:18:fd:47:01:5e:bb:
d1:06:28:19:db:aa:96:4a:d3:31:d9:4f:2c:4d:11:4d:a5:24:
96:1a:ff:36:3a:0d:7e:92:49:78:ae:27:84:d8:e8:31:1a:70:
a7:d6:37:fb:f2:f0:e5:66:38:7e:2f:6b:fd:7e:84:65:ef:81:
5f:3b:ee:9d:48:9b:4a:5f:d6:f0:33:6c:70:df:6b:45:f2:e9:
a3:cf:3e:ff:53:b8:ac:89:53:1c:d7:0b:b4:66:04:e1:4d:7d:
89:e2:35:84:16:c7:50:e7:61:71:ca:fe:f0:93:a2:b4:51:3b:
44:91:d0:06:01:0d:59:70:1c:99:8e:19:98:64:f7:99:3e:18:
e0:5e:61:bf:ff:1b:2c:16:3b:4c:c3:b0:52:df:43:bd:02:72:
43:29:b0:29:0f:29:8b:4b:1f:07:84:6f:e1:5c:a2:0a:5f:08:
b3:18:32:c0:5b:25:73:b5:5f:e4:a8:0d:85:15:23:ef:75:03:
a9:16:14:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:27 2025 by rpki-client