Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS393577.roa
File: AS393577.roa (raw, json)
Hash identifier: aU47oe0+4ddXe701aQ/NIpVfCd50ubpcjMwQItAsnPE=
Subject key identifier: 3B:B3:2D:DE:66:92:4A:FE:F9:75:0F:23:91:61:4F:64:F4:F1:01:44
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 03A6C392E87298B22125A4ACA9F6AA451C64D467
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS393577.roa
Signing time: Thu 26 Dec 2024 08:40:12 +0000
ROA not before: Thu 26 Dec 2024 08:35:12 +0000
ROA not after: Thu 25 Dec 2025 08:40:12 +0000
asID: 393577
IP address blocks: 2a06:a005:15d8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a6:c3:92:e8:72:98:b2:21:25:a4:ac:a9:f6:aa:45:1c:64:d4:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 26 08:35:12 2024 GMT
Not After : Dec 25 08:40:12 2025 GMT
Subject: CN=3BB32DDE66924AFEF9750F2391614F64F4F10144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a4:2a:bb:cd:51:47:dd:a1:9d:1c:43:3f:c2:
62:58:82:28:9d:9c:40:be:7f:83:25:dc:9a:15:cd:
1a:82:74:5e:70:60:69:69:eb:cc:f0:ec:b9:25:9b:
c5:53:6f:d2:63:6a:e9:a9:78:87:70:70:8a:1f:92:
41:5d:ff:b7:aa:c6:b4:fe:07:b5:16:df:d5:88:ea:
fa:6d:f6:79:2d:95:ff:20:f1:fd:f8:1e:ae:1f:2f:
92:0f:cf:ab:74:07:ae:f4:ff:82:4d:6d:a4:ed:9e:
9c:e3:ff:16:39:68:2e:9d:c4:cf:b1:a7:9f:f4:8f:
28:09:e4:f2:89:c7:7b:bd:c6:75:a1:0b:9a:12:06:
40:30:f7:81:65:81:b2:e9:67:10:55:80:04:3f:d6:
e5:a6:0c:15:66:f9:5a:14:9e:42:8e:15:a8:70:58:
17:ca:aa:81:1a:3d:cc:e1:e8:37:32:c5:9a:7e:dc:
f9:9f:02:98:bd:da:e6:44:5f:af:f5:79:e5:dd:e1:
9b:56:7b:37:eb:43:0a:7d:bc:a0:64:83:c7:bc:a5:
df:de:c3:6d:1e:f1:1d:85:01:9f:e7:9a:5c:ad:de:
b1:df:24:7a:66:8e:2d:fc:a3:7f:3f:52:37:1f:db:
7b:33:72:48:99:f7:93:c7:01:34:78:09:46:0b:a5:
93:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B3:2D:DE:66:92:4A:FE:F9:75:0F:23:91:61:4F:64:F4:F1:01:44
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS393577.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15d8::/48
Signature Algorithm: sha256WithRSAEncryption
33:7d:41:ce:62:1d:94:bc:68:0c:e6:b9:a0:fb:d1:06:6d:1b:
b1:6f:da:b8:19:b9:55:1c:ba:14:28:95:88:bc:2f:6d:8e:07:
54:3b:7b:dd:28:d0:3d:8f:e8:ae:cb:93:5f:9f:6a:c4:6d:22:
ef:36:3d:0a:0a:9e:97:3e:f2:55:a8:08:ec:ea:65:41:5f:89:
33:e9:fd:79:53:5f:35:0b:37:6e:2e:72:a1:51:20:f8:2b:bf:
2a:b0:a5:ed:5e:97:e8:b8:1d:45:20:17:b3:df:a4:03:2f:fa:
da:3a:9c:64:03:b8:3b:cc:20:ee:07:ea:5f:e1:ac:d6:ee:fb:
d2:b5:3f:c4:71:4a:89:ea:23:85:19:2d:94:94:52:6b:66:41:
f0:d2:8e:ee:db:76:d4:12:1f:3d:f7:cc:6d:09:51:1c:3e:3f:
0f:68:0e:d8:a2:fa:8e:95:85:9c:17:d0:ad:12:85:b6:a4:43:
7d:ca:9d:16:d2:ce:11:66:05:64:b4:5e:d5:7b:46:95:ef:5d:
05:12:d6:9a:84:bd:99:cb:fe:c3:0c:00:e5:1a:e4:28:f5:2b:
3c:98:a0:89:e3:8f:ef:e0:34:5e:42:84:93:3f:49:ef:ba:da:
20:2f:88:1e:09:71:5d:07:b2:8b:5f:33:4d:09:a4:46:d8:d6:
c2:3c:c2:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:06:15 2025 by rpki-client