Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
File: AS214456.roa (raw, json)
Hash identifier: uqvVlj0VTF5pp9SzCm1AJEjVtmNG3uR1nOON7eoPIfs=
Subject key identifier: 13:86:D0:B4:34:F7:AD:5F:DA:6B:C4:CB:DB:2A:39:EA:33:6D:BB:ED
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5F23CA58AB162236653A784D046AE36302FFA1F9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
Signing time: Sat 25 Jan 2025 17:46:25 +0000
ROA not before: Sat 25 Jan 2025 17:41:25 +0000
ROA not after: Sat 24 Jan 2026 17:46:25 +0000
asID: 214456
IP address blocks: 81.31.213.0/24 maxlen: 24
103.230.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:23:ca:58:ab:16:22:36:65:3a:78:4d:04:6a:e3:63:02:ff:a1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jan 25 17:41:25 2025 GMT
Not After : Jan 24 17:46:25 2026 GMT
Subject: CN=1386D0B434F7AD5FDA6BC4CBDB2A39EA336DBBED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:7d:0c:e4:f3:32:50:40:82:50:37:ee:1e:50:
e0:4a:01:d9:b1:c1:30:8c:e0:51:46:f1:56:b5:56:
f4:ff:52:81:bb:63:e5:46:35:27:86:4e:4c:00:40:
6f:f0:cd:8b:0a:97:03:e0:b4:e5:2b:9b:87:9b:2f:
ac:54:74:d2:88:f7:50:69:0b:56:7b:02:bb:c2:ac:
82:76:cf:c2:14:be:47:1c:21:cf:b7:02:09:a2:ad:
da:18:c5:90:7a:16:2a:f1:f9:50:b6:ca:53:30:17:
ff:ef:d5:ec:3c:39:fc:b0:41:cc:73:ad:07:57:f7:
2f:5e:b6:40:3f:2e:d2:6e:05:2c:fe:3f:46:00:d3:
80:f8:a8:97:a7:71:20:b5:d6:be:74:ae:11:38:0b:
a4:c6:84:43:3d:ef:bb:27:2b:52:36:ea:0f:60:74:
9c:68:d4:10:29:83:a6:d3:b6:34:51:6e:fe:e6:f6:
05:e8:52:5d:e3:17:62:ed:a4:34:3e:f8:c2:67:3b:
c2:c1:39:85:aa:8b:95:4d:32:93:a7:5a:74:cb:4d:
1d:9d:98:62:76:a5:20:35:e4:4f:f1:90:fb:39:49:
71:bf:5e:f1:18:89:21:eb:8b:02:46:1e:68:0b:6b:
cc:e2:1d:fa:48:79:3b:23:bb:3e:1e:03:7a:5a:78:
ad:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:86:D0:B4:34:F7:AD:5F:DA:6B:C4:CB:DB:2A:39:EA:33:6D:BB:ED
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS214456.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.213.0/24
103.230.142.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:f9:81:81:d7:fe:90:ab:82:45:95:92:21:cd:6d:de:e9:3f:
e5:f2:91:aa:a0:a3:67:9f:d1:45:6b:97:5c:f3:37:92:5c:6a:
33:fd:73:2d:5d:6c:d9:9b:72:a4:ac:e7:49:6c:5e:4a:0b:46:
67:0f:68:84:d4:26:78:92:dd:de:19:14:e6:43:87:92:b8:a4:
4e:54:fa:1d:f0:65:50:fa:c1:49:19:c8:93:f8:08:56:c0:ff:
25:9a:d4:31:83:58:17:a2:ce:68:3e:3d:2b:fd:f4:95:24:93:
95:76:e6:7a:db:02:9e:3e:6a:ec:c6:ee:86:22:72:a7:5d:e0:
cb:20:95:18:e5:f6:0c:d2:00:44:0a:94:c0:db:56:eb:6a:4e:
b7:d0:65:8f:18:77:38:f3:3f:7d:33:c7:36:3b:2d:9a:ec:40:
22:6b:68:c6:cc:ea:5d:24:26:72:6d:23:60:c8:56:08:46:b5:
72:20:e4:45:58:ae:0a:3f:f0:2f:4a:7b:cc:86:23:83:08:e6:
06:fe:15:f7:6e:b3:3e:12:ae:bc:13:23:6b:8a:30:61:7b:f9:
78:44:5f:20:24:8a:17:67:c3:a4:da:b3:69:51:7e:6f:4e:d7:
3c:a9:be:c7:7b:15:9f:e2:1d:c7:e3:1b:f7:b8:e9:f5:4f:3e:
e0:5d:0d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:20 2025 by rpki-client