Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
File: AS212149.roa (raw, json)
Hash identifier: wYFkBPNCnLFbilVQR38/XxD2ErNNVFZiYdVr0Eqv5wM=
Subject key identifier: F8:84:86:07:3D:9D:39:1D:61:A6:5D:96:5F:3F:44:4C:A1:F1:6F:27
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4A5F648CCEF70CF327F3D94E6C7D63DA74AB6137
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
Signing time: Sun 16 Feb 2025 09:46:58 +0000
ROA not before: Sun 16 Feb 2025 09:41:58 +0000
ROA not after: Sun 15 Feb 2026 09:46:58 +0000
asID: 212149
IP address blocks: 2a05:dfc1:b00b::/48 maxlen: 48
2a06:1280:b00b::/48 maxlen: 48
2a06:1285:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:5f:64:8c:ce:f7:0c:f3:27:f3:d9:4e:6c:7d:63:da:74:ab:61:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 16 09:41:58 2025 GMT
Not After : Feb 15 09:46:58 2026 GMT
Subject: CN=F88486073D9D391D61A65D965F3F444CA1F16F27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:2c:07:d2:29:a7:72:3a:0f:57:84:3f:94:
3f:f9:39:48:ba:1a:34:ab:b7:d6:81:2a:8c:65:5b:
ed:63:cc:4a:db:44:7d:ca:51:76:cc:5e:97:e0:8c:
f3:f3:b5:bc:2a:e4:08:dd:6f:1d:e4:9c:a7:05:16:
9c:ea:1e:77:7e:f0:ac:78:73:b5:08:98:22:04:6d:
06:cb:f8:12:d1:d2:9f:6c:32:ed:7f:2e:13:4e:67:
1c:1d:eb:52:4b:75:89:2a:7c:96:20:e1:b2:a3:1b:
0e:e2:ec:b6:e2:6f:b8:51:23:3b:67:2d:d1:e9:da:
97:cf:c1:2e:26:f9:1e:d6:ba:d6:26:23:1f:ef:f2:
49:b9:53:39:ef:e9:5b:62:20:06:e2:d6:a0:6a:7c:
6b:ff:15:60:70:81:ab:49:0e:63:54:8a:6a:dd:c3:
25:9a:e7:7f:cd:08:63:15:24:43:6b:17:76:1f:88:
76:cd:92:84:7f:73:a7:09:c7:c7:e1:13:4a:0e:b9:
42:c8:b7:e2:ad:42:2a:08:4e:65:58:d7:a2:ab:51:
22:73:cc:31:05:73:92:6b:3b:49:2e:bf:8f:42:75:
9b:bc:48:3c:a6:af:62:b0:36:48:38:06:75:a9:e6:
2b:f3:cf:67:88:43:f0:da:be:f1:62:24:06:47:6b:
05:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:84:86:07:3D:9D:39:1D:61:A6:5D:96:5F:3F:44:4C:A1:F1:6F:27
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212149.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:b00b::/48
2a06:1280:b00b::/48
2a06:1285:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
30:b2:48:44:ca:e5:e6:e1:3b:71:e8:5c:83:90:74:62:41:12:
60:33:1b:35:29:e0:65:48:58:f6:1c:1b:50:8c:2d:d6:fc:ea:
22:80:99:40:4c:4c:95:c8:b5:a3:9b:ef:8d:97:38:79:cf:00:
97:87:fe:97:a3:e9:98:d3:42:15:37:d1:69:70:f0:db:f1:2d:
b5:1c:c9:1e:73:d6:ff:24:0f:a3:3c:d3:b4:32:e8:2b:c5:4c:
37:5f:ff:d6:57:d7:30:0c:54:bd:73:b7:75:0f:39:29:6d:96:
b7:5c:d6:39:81:88:e1:6a:f3:19:6c:2b:01:cd:98:64:92:48:
f0:12:8a:5f:64:3a:ea:10:1f:e3:7e:79:f3:e9:d7:c3:d4:e2:
dd:12:34:c8:2f:1b:6d:85:54:7f:c7:ca:fe:0c:5c:c5:b4:47:
06:b1:5e:d4:85:65:46:f4:08:0c:de:80:a9:ed:68:12:54:41:
03:49:d0:81:a2:e8:14:db:af:ab:b5:bb:07:ae:4e:5b:aa:f8:
60:96:2c:e4:47:2c:6a:55:5f:f1:b4:3b:5a:4d:9e:41:15:ad:
a6:da:29:0c:01:97:1a:73:d7:31:cc:87:80:83:1e:23:e9:04:
e1:f7:da:b8:f5:c5:f1:2c:6a:83:f8:28:82:0e:72:1a:3a:06:
c1:4d:83:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:41:28 2025 by rpki-client