Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213215.roa
File: AS213215.roa (raw, json)
Hash identifier: d8wpGewkCR2+UbSd+NjL5py4EW0uxIgD/cQE5/pqnGc=
Subject key identifier: B5:4B:95:EC:8C:3E:22:4D:C9:FF:F7:1F:FB:26:1E:61:32:9C:CA:04
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4E4985910952998BD14D3CA97483D212088EE594
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213215.roa
Signing time: Wed 11 Dec 2024 05:40:12 +0000
ROA not before: Wed 11 Dec 2024 05:35:12 +0000
ROA not after: Wed 10 Dec 2025 05:40:12 +0000
asID: 213215
IP address blocks: 2a06:a005:e60::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:49:85:91:09:52:99:8b:d1:4d:3c:a9:74:83:d2:12:08:8e:e5:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 11 05:35:12 2024 GMT
Not After : Dec 10 05:40:12 2025 GMT
Subject: CN=B54B95EC8C3E224DC9FFF71FFB261E61329CCA04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f0:5d:e6:77:ef:ab:eb:cd:61:cf:67:e7:fc:
bd:db:4c:17:85:c9:a2:5b:12:f4:ad:c3:10:19:67:
3b:0c:11:52:3d:7f:6a:eb:b6:71:5f:8d:94:b2:d6:
9e:7a:40:db:f8:ef:1e:08:e0:ad:75:19:15:b8:6c:
9e:63:5d:0e:11:92:bd:6e:1e:1a:95:00:ae:d8:68:
09:93:7b:30:da:33:aa:b0:91:2b:e0:f1:e7:3f:cd:
f1:2c:f5:62:b2:9e:7d:02:f4:3d:bf:22:a2:88:12:
5e:1c:2c:ac:b5:cf:f2:53:a1:7e:35:11:4d:59:2b:
0d:07:4e:ef:6d:96:2f:ad:61:0c:84:0a:e7:50:1e:
de:f6:51:10:2e:98:c1:7e:74:25:75:8a:71:83:5d:
d4:da:9a:1a:83:16:06:c5:cb:30:90:1f:f6:f6:35:
27:0e:46:0b:8a:a6:e0:5d:f7:69:96:f8:f8:6d:82:
8b:99:ab:e0:2b:95:a6:f0:65:7e:91:bc:7b:b5:91:
92:1a:19:12:d1:a5:43:af:71:1b:5e:2c:0e:20:52:
1a:f9:68:04:f3:20:93:d6:07:fa:1c:95:41:c8:2e:
81:40:63:13:f2:c6:b4:b1:20:7f:97:9c:b8:ef:ff:
36:f9:c7:21:38:5f:ce:8e:7a:69:6c:c5:c6:c7:2e:
e7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4B:95:EC:8C:3E:22:4D:C9:FF:F7:1F:FB:26:1E:61:32:9C:CA:04
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213215.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:e60::/44
Signature Algorithm: sha256WithRSAEncryption
94:4c:c2:69:6e:50:ff:51:f3:4b:16:9d:07:5a:4a:c1:cf:20:
69:d5:eb:75:35:76:0f:97:e6:63:87:63:67:d1:5f:90:90:db:
ce:a4:41:1c:df:65:71:90:c1:0d:09:b6:13:f2:3b:89:e4:80:
67:c8:b7:f9:d1:37:cd:62:c4:00:5d:b0:23:70:1a:48:a2:b4:
2e:60:9a:fb:db:b5:23:92:e6:c6:a8:c0:8b:e4:3a:e9:f7:8a:
81:be:94:a1:ef:f5:91:86:4d:26:c3:cd:44:bf:ca:0e:18:b1:
78:8a:5c:5f:85:91:7d:0b:70:3d:22:95:2b:c6:6d:04:94:97:
a2:01:3b:66:fd:18:b9:72:5d:d6:a0:96:3a:b9:9a:3f:85:97:
60:3f:6d:e5:f2:4d:84:fe:5d:5b:d4:a0:ee:c3:24:00:82:6f:
f5:5a:61:e5:90:1d:91:b3:16:1d:33:00:41:7d:56:74:96:7e:
46:ff:93:fd:d8:7a:22:5f:54:e1:7a:77:5f:7d:a0:28:8d:65:
2b:c5:3e:c7:10:ef:6d:0e:c4:e5:c5:6a:d5:17:32:1b:f6:d2:
6b:2b:a3:2d:65:e1:f9:51:5a:b7:55:83:1e:12:ca:99:3f:5d:
a4:0d:44:00:ef:92:95:5a:1c:0e:76:31:8b:2b:82:00:2b:6c:
9d:4a:64:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:13:24 2025 by rpki-client