Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
File: AS205398.roa (raw, json)
Hash identifier: nlk6t3n9b7RYRewc5bYXUkRCvGLYlLvMEGgV+XjuEz8=
Subject key identifier: F5:15:1F:A4:18:A8:55:8A:5F:9A:DB:7F:F3:D9:45:98:B3:8D:31:76
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 10D848A6E2194AC0338C95C599499005641A13D8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
Signing time: Fri 13 Dec 2024 02:56:29 +0000
ROA not before: Fri 13 Dec 2024 02:51:29 +0000
ROA not after: Fri 12 Dec 2025 02:56:29 +0000
asID: 205398
IP address blocks: 2a06:a005:2db::/48 maxlen: 48
2a06:a005:b6c::/48 maxlen: 48
2a06:a005:b6d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d8:48:a6:e2:19:4a:c0:33:8c:95:c5:99:49:90:05:64:1a:13:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:29 2024 GMT
Not After : Dec 12 02:56:29 2025 GMT
Subject: CN=F5151FA418A8558A5F9ADB7FF3D94598B38D3176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:46:6f:0b:7c:9e:51:47:20:5e:d2:aa:9f:78:
96:52:54:30:4e:b4:50:4b:65:04:48:db:68:38:67:
38:16:bf:61:92:d0:66:a4:8e:53:5b:4b:3a:26:69:
6e:7a:e3:d4:95:0e:0d:b5:d9:17:1b:99:e4:61:4f:
49:02:44:5c:35:f7:d7:9b:7b:18:f6:72:32:ff:3d:
23:ba:31:84:c6:50:3c:da:b1:5c:d0:82:1e:e8:4c:
5a:b6:fe:f3:d4:c8:c4:7d:c2:4a:3f:39:06:c8:7f:
f6:5d:16:43:94:0c:99:ce:24:71:45:aa:f0:ff:f5:
09:c5:f9:ff:7e:da:62:5a:7a:17:84:93:05:d1:76:
b6:4f:0b:e9:48:66:79:46:1e:09:d3:c0:94:15:64:
d2:0e:a6:07:ba:2e:19:b4:0f:09:dd:7b:b6:28:4d:
de:c3:5e:28:98:1e:df:ee:28:ae:b8:17:8f:34:77:
23:74:3d:75:9c:fb:59:04:12:55:a5:fc:37:3e:8a:
23:b3:3d:2d:a9:38:1b:5e:5e:da:3f:20:bd:af:a2:
22:0e:db:0a:45:20:28:fc:d2:7f:61:17:3b:d3:a3:
47:46:88:6d:86:69:dc:52:34:10:a3:9d:27:bd:85:
4d:e9:ac:2f:2d:35:5d:42:66:21:4c:e4:a0:d4:06:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:15:1F:A4:18:A8:55:8A:5F:9A:DB:7F:F3:D9:45:98:B3:8D:31:76
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS205398.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2db::/48
2a06:a005:b6c::/47
Signature Algorithm: sha256WithRSAEncryption
6d:2e:9b:0c:9d:bd:d8:0e:89:81:6a:f4:8d:6a:c6:55:48:bc:
d2:3e:9f:b9:d8:b9:36:d3:03:01:75:13:62:fb:f2:2a:0b:f0:
a9:df:5f:5c:64:b2:d4:57:95:be:05:db:f7:aa:99:57:9f:9e:
1d:73:58:5b:bc:7d:32:7a:87:c2:b4:1f:63:01:85:92:0c:73:
4d:dc:6e:e6:b8:b2:8d:7e:f1:24:fc:26:44:a9:62:ee:21:55:
aa:d3:f4:af:9c:72:73:e9:64:6d:6d:bc:a2:1a:bc:48:71:42:
53:9a:b2:b5:b6:42:41:e9:17:dc:f5:af:b3:f5:b7:6a:d7:2b:
e2:75:1f:08:fc:5b:bd:cb:50:27:ce:71:8e:45:6a:2b:3b:e8:
30:64:80:0d:f2:98:c7:21:b7:24:3b:cc:dd:68:78:e3:a8:50:
a1:80:13:d3:de:5b:18:0d:2f:34:f7:65:66:e7:7c:7c:f3:43:
05:b7:de:5c:c3:f6:e9:be:09:4c:c6:6d:cf:d4:4f:46:c7:bd:
f4:7d:19:38:59:7c:ad:69:ce:29:bb:3a:34:4c:69:08:f2:f0:
a3:13:6b:b7:a5:fb:53:b2:31:73:f1:a0:9e:93:e8:38:d2:cc:
a0:11:83:cd:b0:80:9d:83:80:79:33:fa:04:49:f2:b6:aa:52:
95:7e:84:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:41:21 2025 by rpki-client