Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS21738.roa
File: AS21738.roa (raw, json)
Hash identifier: NjgaJZKosDtFdEx5fhB5d2YVsm5QqEz8t23YJthhOEg=
Subject key identifier: 8E:AA:BD:0C:05:AC:E0:3E:5E:81:D5:10:1F:41:EF:1A:82:2B:1B:0D
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 53C1D58E7F9D7EAD75521AB39A8C2748220718CF
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS21738.roa
Signing time: Fri 13 Dec 2024 02:56:30 +0000
ROA not before: Fri 13 Dec 2024 02:51:30 +0000
ROA not after: Fri 12 Dec 2025 02:56:30 +0000
asID: 21738
IP address blocks: 2a0d:d905::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:c1:d5:8e:7f:9d:7e:ad:75:52:1a:b3:9a:8c:27:48:22:07:18:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 13 02:51:30 2024 GMT
Not After : Dec 12 02:56:30 2025 GMT
Subject: CN=8EAABD0C05ACE03E5E81D5101F41EF1A822B1B0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:49:d4:8c:8c:e9:74:43:b4:b6:b4:43:28:c2:
6c:d8:f2:ca:e2:bf:70:f7:10:03:66:d1:03:77:19:
37:a1:26:f9:e5:a8:24:0e:02:eb:fd:44:f3:c1:dd:
e3:f3:ed:ba:ad:23:39:80:df:7c:ba:60:0c:67:ad:
f2:8a:20:f2:53:3b:db:18:c3:2b:c4:5e:a7:ba:2a:
3a:8b:5b:e8:56:fd:27:3e:7d:d3:39:6f:5a:ad:cc:
c3:17:15:0a:54:12:d2:72:2f:b7:4a:05:86:41:23:
69:d7:d4:d2:e7:85:bf:d7:c1:64:13:1f:05:92:3b:
64:fa:7b:3d:54:cb:86:30:20:9f:18:84:07:30:4d:
0b:58:3f:e6:38:9e:1e:f6:5b:94:63:21:c6:35:c4:
c0:c7:22:8e:f8:06:c1:9c:fc:77:18:8e:81:fd:63:
74:af:54:ce:9c:5e:02:36:34:e1:04:8d:71:c7:d2:
1e:02:57:dc:48:d1:91:43:40:c5:f8:40:3f:76:5f:
86:0d:b4:d0:04:4a:46:94:d6:ac:15:64:f5:74:25:
5e:17:15:fb:0c:46:65:32:17:9e:c9:f9:20:61:85:
c8:e6:61:71:65:ca:fa:fa:3b:de:d5:57:08:30:64:
e8:48:62:7d:61:3a:77:41:b5:05:12:c8:85:64:34:
5a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AA:BD:0C:05:AC:E0:3E:5E:81:D5:10:1F:41:EF:1A:82:2B:1B:0D
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS21738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d905::/32
Signature Algorithm: sha256WithRSAEncryption
6f:c2:a5:84:ee:cc:45:a8:2f:46:87:53:a2:3f:48:6d:f7:5d:
21:9f:93:10:d3:80:e6:c2:92:da:b9:98:18:ac:44:a3:26:63:
8e:89:0a:e9:9f:36:0b:8a:d0:50:ba:b8:78:4f:c2:ad:1f:18:
1c:e8:d5:05:8d:c9:43:5f:68:f7:28:75:81:a7:0c:b8:1c:e8:
b7:b3:5a:6c:ee:d8:28:31:91:12:93:ac:88:21:36:8f:ac:e6:
d3:af:39:b9:bf:aa:05:79:28:77:19:87:60:5c:7e:5c:07:14:
91:5d:b6:5a:7d:9e:f8:b2:06:75:34:8d:17:d6:bb:e3:1e:4e:
86:6f:cb:39:e6:cb:e5:b5:4d:cd:e7:58:c9:69:06:97:62:63:
0d:85:c0:b4:d5:96:27:f5:9d:1d:48:25:88:7a:f5:6c:00:06:
a8:89:3b:fd:ef:12:b8:1a:69:51:05:53:1b:89:57:cd:b5:00:
3a:63:00:63:37:50:d3:e6:19:df:cb:f5:80:8c:a7:f4:b1:12:
73:f0:80:3f:0e:63:81:9c:5d:73:d0:8c:4c:45:1f:a7:9a:42:
3c:23:3c:cb:df:10:c1:72:7b:e4:f2:f3:6c:60:2b:de:e7:64:
ef:83:2e:4c:ca:02:22:31:c2:da:fa:5b:6b:e5:67:30:2c:01:
c8:5c:c8:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:15:02 2025 by rpki-client