Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205212.roa
File: AS205212.roa (raw, json)
Hash identifier: 0lIRIaDyqvJfYljAaF9bx0OP16IIOEVNBry9QVky5cw=
Subject key identifier: D1:73:58:B8:3A:5F:5E:79:C4:02:CF:21:0A:DA:26:A3:A5:1D:DD:D9
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5A7BF9E5F4377DA3BD4A2FFCB079EEC1B768B0D7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205212.roa
Signing time: Sat 14 Dec 2024 00:40:12 +0000
ROA not before: Sat 14 Dec 2024 00:35:12 +0000
ROA not after: Sat 13 Dec 2025 00:40:12 +0000
asID: 205212
IP address blocks: 2a06:a005:1f70::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:7b:f9:e5:f4:37:7d:a3:bd:4a:2f:fc:b0:79:ee:c1:b7:68:b0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 14 00:35:12 2024 GMT
Not After : Dec 13 00:40:12 2025 GMT
Subject: CN=D17358B83A5F5E79C402CF210ADA26A3A51DDDD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8f:2d:29:30:e9:1a:df:67:59:e6:b4:f9:a8:
b1:48:9c:b7:0b:ce:bb:0b:59:51:35:d0:f9:60:80:
9b:01:9f:2d:85:5d:76:d6:79:9f:5c:82:d6:7d:6b:
19:db:65:7a:58:7e:86:1d:a6:d6:8d:50:33:86:91:
02:71:17:b5:26:a0:b7:aa:4f:d7:0a:ba:ea:32:2f:
b5:8c:a2:e0:11:27:1c:a1:59:a2:45:81:48:0d:07:
2a:8d:35:c8:c4:df:63:9b:a2:68:0c:eb:7a:49:e2:
af:74:ac:6f:f3:8e:d8:36:17:8b:ab:6b:5c:a3:d5:
06:6a:64:87:b5:fb:2f:03:66:dd:c1:c5:cb:77:99:
2b:30:54:1a:6d:ca:f2:9d:c8:fc:fd:5f:16:00:c9:
9b:61:e7:ea:22:50:83:12:dd:7e:6c:75:be:c7:71:
4c:4c:96:2c:08:fa:dd:dd:f2:dc:a4:e3:13:86:8d:
90:1c:7c:05:ba:57:e8:5c:fb:a7:e0:e7:07:f5:75:
51:1a:02:32:63:f4:6e:21:80:ff:a0:d4:b2:a9:3f:
ed:1b:90:3b:2e:53:b4:f6:08:48:9f:fc:bc:83:36:
6e:0e:70:44:88:94:08:95:41:de:76:2c:f0:f3:7c:
0f:4d:11:82:8f:2a:26:19:3d:44:73:3a:60:ea:a8:
a7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:73:58:B8:3A:5F:5E:79:C4:02:CF:21:0A:DA:26:A3:A5:1D:DD:D9
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205212.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1f70::/44
Signature Algorithm: sha256WithRSAEncryption
a6:df:79:93:b1:88:bb:a9:e5:0b:3d:84:05:21:5f:dc:05:fa:
6d:5e:9a:ba:9c:f7:14:27:b7:66:d3:25:9d:9c:b9:f6:aa:d3:
43:4b:7d:b4:bd:66:a3:e3:61:12:1e:4a:38:92:b5:0b:dd:4c:
e9:0e:00:14:e7:93:44:05:8d:42:75:ca:fe:84:5e:59:5c:b2:
1d:87:0a:38:e2:8c:d3:c0:a7:d7:4e:c7:1a:c9:6a:af:dc:18:
26:04:eb:ee:1d:4d:6d:19:d5:cc:0e:39:cb:3a:37:8e:bb:cc:
bc:70:65:9b:c1:c9:5a:39:13:91:48:d9:33:b6:6d:4f:fe:1c:
8a:41:c2:53:9d:2f:9b:aa:b7:3a:96:4f:aa:7a:3e:92:af:6d:
f5:c2:af:a3:27:cf:47:d2:cb:0b:68:bf:d5:0c:6b:a5:b9:ca:
df:5a:de:56:a6:0f:10:ea:89:f2:08:22:45:ef:c4:6f:77:ba:
91:32:15:fb:31:c5:d4:4d:61:cc:41:bf:ba:0d:62:e0:dc:72:
19:34:19:7f:5e:ac:84:8c:25:eb:b2:68:f2:ec:ee:be:89:8d:
b8:79:c8:9c:1c:4b:15:26:f3:7e:b9:dc:08:06:ea:f8:75:89:
4d:06:c6:14:0f:80:d9:83:61:2b:ec:b5:f5:b8:de:f1:0a:c1:
eb:5b:c5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:20 2025 by rpki-client