Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS36832.roa
File: AS36832.roa (raw, json)
Hash identifier: sXXIAjlHbxsoHB0CxTFxwbla8gaVoNbv8/ZjaU9MwVw=
Subject key identifier: 6A:E6:1F:E3:8C:DE:85:3E:3B:62:65:EC:94:D4:54:C9:5F:6B:29:95
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0F943D993181696866090A826EE0B371C78C7BC5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS36832.roa
Signing time: Wed 12 Feb 2025 19:47:46 +0000
ROA not before: Wed 12 Feb 2025 19:42:46 +0000
ROA not after: Wed 11 Feb 2026 19:47:46 +0000
asID: 36832
IP address blocks: 2a06:9f40::/32 maxlen: 48
2a09:54c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:94:3d:99:31:81:69:68:66:09:0a:82:6e:e0:b3:71:c7:8c:7b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Feb 12 19:42:46 2025 GMT
Not After : Feb 11 19:47:46 2026 GMT
Subject: CN=6AE61FE38CDE853E3B6265EC94D454C95F6B2995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cc:14:be:cc:25:92:a1:c1:42:5d:9b:de:56:
3e:f0:d8:e1:37:50:54:71:28:5a:45:09:4e:f1:ac:
5f:bf:c9:33:5b:03:92:42:8a:bb:35:ec:1d:39:15:
e8:a4:58:17:57:3d:19:fd:6d:5d:40:9b:7c:71:d7:
c2:4c:00:d6:87:46:25:01:08:d9:da:34:4a:07:fa:
e4:80:03:59:4b:8d:c9:25:c9:b7:79:d5:6e:71:ef:
9c:5e:b9:e1:cf:f5:83:e1:94:45:4f:fa:7a:ed:ae:
25:46:65:af:2e:e4:c9:07:1b:63:b6:ce:9c:1f:3c:
56:fd:4b:1c:a8:66:0e:c5:84:a8:4e:34:36:d5:25:
f9:f8:72:e4:fc:b6:66:cc:a0:6f:72:88:8a:96:db:
29:c4:33:05:4a:27:3e:b8:6b:69:ee:eb:c1:8a:01:
d0:6e:10:62:53:e3:61:46:da:db:f3:16:54:32:73:
b0:bd:53:bd:ed:cd:83:78:f9:29:b4:46:e8:84:3b:
c4:82:3e:d8:03:1e:67:78:7d:e9:06:5c:2c:aa:a5:
93:99:51:b7:73:76:23:a3:66:2e:80:9e:a1:d1:61:
b1:1d:d7:85:dd:eb:9d:0c:76:e3:b8:b8:d5:3c:7b:
f6:5d:78:ab:ce:5b:88:5f:6f:0c:bc:c3:2b:2c:cd:
47:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E6:1F:E3:8C:DE:85:3E:3B:62:65:EC:94:D4:54:C9:5F:6B:29:95
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS36832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f40::/32
2a09:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
71:3f:3f:67:88:46:d9:d0:18:e0:03:0e:bd:cd:b0:7e:7c:1b:
cc:d2:91:99:7b:0b:67:2d:eb:58:6f:72:e4:50:34:bf:75:3b:
7f:76:03:45:dc:4c:43:b2:11:95:36:77:c3:65:8a:b0:13:95:
a4:34:0a:d3:22:48:ec:45:00:ec:43:d2:77:85:06:0f:39:5b:
62:69:ec:b0:8d:1f:7d:38:38:41:a5:f7:60:c1:69:0e:23:12:
73:5a:90:75:d0:de:36:9f:e6:e2:bb:24:2c:8c:18:25:00:c0:
88:c1:bb:a9:b7:0d:41:94:48:bd:f6:87:6e:9c:c7:41:29:39:
b6:c7:60:e3:41:e9:4c:81:75:ce:d7:9e:88:48:15:cf:d6:ac:
46:6d:59:de:28:22:ce:53:03:56:81:31:bf:22:64:d1:36:eb:
39:83:f6:46:08:86:ea:ed:23:12:c5:58:c5:6b:f2:b7:c7:5b:
7a:e0:76:09:85:66:b9:8d:79:6e:e6:1b:db:a9:6a:0f:b9:0b:
e9:17:06:76:85:90:e8:23:81:e8:9b:9e:73:95:f9:4f:6f:01:
9f:1c:ae:74:74:be:3a:27:e6:31:de:fa:72:51:c2:e8:e6:44:
c1:8d:5c:05:23:e7:f8:b2:48:1b:90:0f:f8:af:a9:92:ec:9f:
63:b8:01:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:14:13 2025 by rpki-client