Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209710.roa
File: AS209710.roa (raw, json)
Hash identifier: usb8I3YBM1YNwBHqAefZXdKnTUC139vy1ohKhe+UF90=
Subject key identifier: 37:BD:B7:5D:00:CC:6E:29:5B:67:B4:13:80:DA:9D:35:5E:32:75:75
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 24A73D1F30228EF6B83577010C073312AAED5A46
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209710.roa
Signing time: Wed 11 Dec 2024 11:40:12 +0000
ROA not before: Wed 11 Dec 2024 11:35:12 +0000
ROA not after: Wed 10 Dec 2025 11:40:12 +0000
asID: 209710
IP address blocks: 2a06:a005:610::/44 maxlen: 48
2a06:a005:1f40::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:a7:3d:1f:30:22:8e:f6:b8:35:77:01:0c:07:33:12:aa:ed:5a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 11 11:35:12 2024 GMT
Not After : Dec 10 11:40:12 2025 GMT
Subject: CN=37BDB75D00CC6E295B67B41380DA9D355E327575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:57:13:66:4e:04:29:17:d7:b4:f5:93:61:
74:62:4d:e7:69:17:6e:a5:09:10:32:86:9b:2c:c4:
ef:8a:be:f9:63:11:b1:0e:59:76:2a:53:e6:7a:ef:
a6:3d:46:5e:00:e1:12:1a:18:d3:2b:92:0b:01:ee:
c9:31:11:98:76:9b:6a:46:f0:6c:72:d1:e8:4c:71:
7e:bd:7c:bf:4b:5a:17:ab:48:83:00:b2:ce:b4:da:
2f:ae:c3:17:df:1f:43:ac:b6:4e:d5:8b:61:71:02:
e5:05:6e:d5:4b:8e:47:64:4a:37:0c:42:35:2b:fb:
4d:b4:03:fc:1f:8b:cd:3b:4d:5b:61:83:bc:13:b2:
dc:61:32:fa:d1:b6:7e:14:c8:a2:08:5a:80:a6:48:
91:37:96:59:b3:1b:2c:40:a6:99:c4:57:2c:4b:d2:
f5:8c:a9:ea:c5:78:06:c0:ee:5a:98:19:e7:19:7c:
23:30:9f:35:5b:8a:04:44:5a:6c:28:a0:5b:f6:74:
94:76:c3:b0:1b:d6:5b:e8:d0:07:fa:71:48:84:f0:
7c:2a:2d:40:c6:bc:17:0c:bd:2b:ff:ac:6b:65:31:
20:3e:ae:21:b8:5a:94:c9:7b:a8:31:fa:57:00:31:
3a:28:3d:72:5f:a5:d2:b5:00:e4:15:09:4a:2f:37:
e2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BD:B7:5D:00:CC:6E:29:5B:67:B4:13:80:DA:9D:35:5E:32:75:75
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209710.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:610::/44
2a06:a005:1f40::/44
Signature Algorithm: sha256WithRSAEncryption
8a:83:f7:39:dc:92:54:72:b2:f2:64:c0:66:f7:1b:b8:a5:4a:
c7:b6:84:4d:97:77:c4:43:f1:9e:f8:10:f5:47:8d:16:6e:3e:
c8:96:5f:15:05:ae:81:7b:bf:33:7c:f5:f2:9c:02:35:42:48:
9b:a7:e4:e7:da:72:b7:b1:1a:ef:cc:96:0c:1c:bf:cb:ff:40:
1a:28:f6:0a:98:21:44:91:0d:98:fd:b6:27:45:49:56:6a:22:
21:f4:a2:bd:68:69:f7:0b:79:e6:44:74:ea:46:4d:c1:f7:bd:
12:ad:45:0e:00:52:b8:f6:bb:b6:5e:bb:0e:7e:61:9b:23:12:
0a:25:88:2e:f7:ec:7e:d6:03:25:ac:cd:78:a0:e5:21:ec:29:
65:74:d7:34:18:3b:ad:37:31:ff:05:ff:12:b7:6e:c8:ee:4d:
8d:db:d9:b2:46:66:49:9c:51:83:ff:4b:a2:34:a9:b7:ae:90:
fa:a0:3e:6b:61:bd:85:73:d5:56:42:d2:56:9e:2f:34:dd:80:
37:1b:b5:62:90:62:bb:31:7f:93:d3:b6:43:6d:0f:07:ee:aa:
d8:ff:27:c9:63:73:60:dd:00:92:61:e4:c1:34:49:9e:a0:1b:
d5:cb:1e:35:43:8a:c9:ee:06:3f:58:5b:01:f5:c0:9a:0e:66:
fa:82:58:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:15:00 2025 by rpki-client