Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
File: AS208046.roa (raw, json)
Hash identifier: Ly35r0XW0U6iOheNY1tgGqH87cO9a0N+5+qfaphKYL4=
Subject key identifier: 89:8D:7C:A7:BD:8C:9C:51:18:94:B5:94:E7:E1:B1:23:93:F6:2C:19
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6E7002E02B1B98CD29BBE56DD263626C410B872A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
Signing time: Sun 26 Jan 2025 18:27:26 +0000
ROA not before: Sun 26 Jan 2025 18:22:26 +0000
ROA not after: Sun 25 Jan 2026 18:27:26 +0000
asID: 208046
IP address blocks: 5.253.84.0/24 maxlen: 24
5.253.86.0/24 maxlen: 24
185.99.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:70:02:e0:2b:1b:98:cd:29:bb:e5:6d:d2:63:62:6c:41:0b:87:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 26 18:22:26 2025 GMT
Not After : Jan 25 18:27:26 2026 GMT
Subject: CN=898D7CA7BD8C9C511894B594E7E1B12393F62C19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:97:63:63:19:e8:6e:00:7e:6d:84:03:9b:77:
d1:19:76:5b:cb:d0:18:b9:98:89:d0:bd:48:fb:73:
d3:a2:fb:ba:f9:d2:c6:cd:e7:4f:8d:41:6f:d8:eb:
b9:8b:21:11:de:f0:3f:54:b9:a3:5b:a8:39:3e:59:
1f:6e:f8:c5:49:5a:85:c2:a0:80:70:5b:7e:00:ef:
46:ac:e0:2e:f2:cd:85:19:16:ac:79:cf:77:fd:8f:
d1:1b:30:7a:8a:8d:25:cd:bc:91:59:e9:fa:7b:64:
d6:a6:92:a1:42:ff:0e:d0:eb:e2:0c:a5:b4:27:64:
79:51:fe:80:47:1b:46:a8:30:e4:00:a6:86:22:e0:
3e:9e:e3:02:e6:d9:2a:2a:9d:18:b6:7e:ce:22:fb:
a5:61:94:e3:b0:aa:65:2b:92:aa:23:de:41:13:e3:
6a:17:e6:e7:2b:21:d1:8e:96:1d:96:56:19:c0:62:
9f:15:9a:48:cf:ea:2a:20:26:06:e9:8f:e8:7a:28:
a9:31:e3:94:82:b2:12:25:cc:37:37:cf:82:56:a2:
0a:d7:9c:94:f1:52:00:42:71:cc:93:b6:9f:af:83:
b4:9b:d2:79:21:eb:4d:37:74:97:44:28:f9:43:b0:
56:9e:ad:2f:d6:58:45:80:85:a0:f6:69:87:bb:79:
be:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8D:7C:A7:BD:8C:9C:51:18:94:B5:94:E7:E1:B1:23:93:F6:2C:19
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208046.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/24
5.253.86.0/24
185.99.135.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:c5:0b:4a:4c:53:b1:fb:32:3c:8d:06:65:13:d1:ef:4c:a3:
e9:07:e0:30:ec:f1:f1:76:4e:a4:ea:d8:89:ae:2f:21:84:42:
40:b5:38:6c:a3:d1:ac:b1:78:e8:f6:e5:aa:a6:4b:ac:19:0a:
70:9e:77:0b:e5:60:e3:ae:e3:80:cb:7a:13:b0:55:4e:eb:5a:
03:dc:b2:6f:00:6a:e0:4a:07:dd:41:77:67:42:42:62:c2:fb:
d5:bb:23:6c:e6:00:cf:b8:58:ed:69:90:ac:c2:29:73:5e:fa:
e1:57:c3:f8:22:ad:7b:47:6a:d9:66:65:e4:2e:da:b8:cc:da:
4c:1b:24:31:50:dc:33:42:35:b6:ea:ac:25:e7:68:4e:3d:85:
cd:2b:41:d2:e2:88:47:eb:da:e2:42:2e:47:18:28:37:17:d8:
0b:e6:2b:41:ea:6e:40:e8:e9:aa:cf:4c:cb:42:54:b4:95:aa:
51:66:1f:df:ec:cf:85:d6:72:2d:84:e5:23:16:64:6e:78:28:
a8:e9:e1:63:62:45:26:d3:4f:55:8c:58:51:c9:e5:b5:c3:6e:
7f:e2:87:91:42:3b:85:26:b2:e9:b8:f2:9f:44:a0:1f:a5:59:
61:66:53:e3:26:94:00:4e:9d:f7:74:66:49:41:01:3b:9a:e2:
1c:6d:da:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:39:20 2025 by rpki-client