Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211151.roa
File: AS211151.roa (raw, json)
Hash identifier: gbaB/tPRwcFK2loIEk69RCLRNHpAndYl3rOVWP9xp/A=
Subject key identifier: 0F:A0:39:94:2B:5B:AA:1B:66:17:9A:93:B5:BE:A2:19:CE:73:C6:1D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 57C01A7F6DB68F39329F61079FD46236C025CCB4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211151.roa
Signing time: Wed 08 Jan 2025 13:40:16 +0000
ROA not before: Wed 08 Jan 2025 13:35:16 +0000
ROA not after: Wed 07 Jan 2026 13:40:16 +0000
asID: 211151
IP address blocks: 2a06:a005:1d53::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:c0:1a:7f:6d:b6:8f:39:32:9f:61:07:9f:d4:62:36:c0:25:cc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 8 13:35:16 2025 GMT
Not After : Jan 7 13:40:16 2026 GMT
Subject: CN=0FA039942B5BAA1B66179A93B5BEA219CE73C61D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:2f:ea:f7:2c:84:5e:1e:f1:5b:9b:fe:f2:
fe:de:2b:25:78:72:06:5f:ab:a6:14:b7:30:60:24:
30:72:04:6d:f6:8f:6c:c2:31:6b:1e:5a:97:ff:14:
3d:ad:3b:11:6a:f6:51:59:22:db:cb:fa:0a:4b:18:
64:52:7b:6b:79:c1:7e:59:d0:8c:14:58:93:37:f4:
d3:00:fd:f0:88:3d:2a:08:76:5d:af:ec:ef:3e:9f:
ec:c8:d4:81:5d:3c:2c:22:3f:d1:9d:aa:ce:69:b2:
e4:f9:bd:11:76:2c:73:53:73:0c:3f:e3:7f:bd:43:
af:72:3a:e3:82:6b:30:00:91:8e:e3:58:28:50:30:
94:8c:81:84:4f:03:ec:ab:0d:ac:21:e9:c6:31:dc:
f4:ce:f8:02:1c:cd:d4:1b:6a:c6:4e:62:d7:88:5e:
11:d4:4b:c1:f4:c0:b6:2e:54:c6:4b:1f:db:d1:27:
96:6e:a5:a2:76:51:43:69:01:43:71:07:e1:15:de:
33:be:27:c0:d6:ce:28:b3:90:28:e9:d6:21:32:44:
88:69:6d:09:e2:3b:21:b8:56:c4:88:24:f3:64:f8:
e7:81:9d:a2:bc:26:58:db:8c:5f:7d:9c:c7:b4:1d:
cf:86:11:ea:a9:ca:9d:b5:60:e6:f9:20:28:93:b8:
72:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A0:39:94:2B:5B:AA:1B:66:17:9A:93:B5:BE:A2:19:CE:73:C6:1D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211151.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1d53::/48
Signature Algorithm: sha256WithRSAEncryption
9e:c2:1f:9f:ac:36:07:7b:7f:fa:9e:38:23:e1:47:c3:ef:c1:
68:f8:b4:22:ab:39:15:f7:78:08:60:f3:79:4b:df:5b:8f:06:
ef:42:f8:f7:fd:4a:45:06:19:85:26:72:82:fc:68:c3:6c:76:
da:51:8e:d1:b4:34:42:8d:8b:73:95:83:bd:08:5d:09:e6:5a:
fa:7b:d3:7a:86:41:d8:7b:60:76:7e:c9:27:19:e1:c1:6d:0a:
d1:3d:bb:6c:03:7e:b5:26:ad:64:e4:86:38:31:a9:59:6a:d7:
51:8c:b1:a1:9e:64:bc:a5:2a:47:fa:c8:c0:89:62:a0:79:de:
e6:33:38:ca:19:e2:29:25:b4:72:af:a8:47:2f:6e:c8:31:1f:
39:e8:b4:f4:a4:f1:ce:cd:8b:41:54:6c:65:80:0c:db:08:2b:
df:b5:a1:b3:55:97:06:c6:88:81:2b:5b:26:93:df:b1:c8:c1:
71:02:6a:81:df:cf:ea:79:10:87:c5:82:d9:98:9d:c7:1a:ab:
63:6c:fc:50:75:a7:b7:bc:06:9d:e8:a4:f3:c0:58:de:aa:37:
42:9e:44:e4:c4:f7:da:08:e0:d8:c3:73:fb:c4:63:28:5f:c6:
60:65:6d:7d:e2:fc:90:dd:45:e2:b5:ab:23:74:d2:b7:69:b6:
8a:6e:6b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:25 2025 by rpki-client