Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa
File: AS198959.roa (raw, json)
Hash identifier: EE97O1yJqzNdRzQryr6dOGiQutcBBtlTMw+o97gDdtA=
Subject key identifier: 40:D9:FE:7A:AA:75:5E:CD:80:B8:9D:06:B0:33:B3:81:B0:FC:0F:24
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 6A9BC8D2368652889EB805EC1274771B2A1927C6
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa
Signing time: Thu 29 Aug 2024 03:41:18 +0000
ROA not before: Thu 29 Aug 2024 03:36:18 +0000
ROA not after: Thu 28 Aug 2025 03:41:18 +0000
asID: 198959
IP address blocks: 2a0a:6044:b200::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:9b:c8:d2:36:86:52:88:9e:b8:05:ec:12:74:77:1b:2a:19:27:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:18 2024 GMT
Not After : Aug 28 03:41:18 2025 GMT
Subject: CN=40D9FE7AAA755ECD80B89D06B033B381B0FC0F24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ca:31:bc:90:c2:b6:6b:21:56:3b:ef:4f:09:
2c:a4:78:88:00:8e:08:63:44:3c:cd:4c:1e:44:5a:
33:1f:2d:3e:c3:2f:6e:5c:0d:14:49:d9:85:9e:40:
6c:58:11:e3:39:13:c4:05:65:84:87:6a:ff:ab:21:
27:ee:03:15:18:2e:d8:fa:34:cd:ce:df:7e:1d:0f:
be:31:18:22:04:bf:90:68:35:19:a3:49:3a:1d:f4:
30:f7:49:35:43:90:4b:11:01:70:0f:fe:a3:bf:73:
2d:e3:db:9e:b9:88:37:26:22:6d:00:0b:20:88:17:
3b:4b:05:61:4d:a0:ea:a3:98:21:36:b6:f4:48:13:
04:ff:5f:bc:1b:fe:04:fa:e6:70:8e:e6:92:b2:b5:
8a:af:8d:7a:2b:bc:07:d2:2c:d6:17:0c:56:24:7b:
de:02:b6:bf:a1:56:c9:89:56:74:08:84:c5:e3:a7:
7a:5b:d1:0f:88:a4:70:29:96:62:c7:9f:8c:d0:96:
ab:c3:51:9a:b4:4b:7d:56:cc:29:60:27:9b:20:44:
0a:74:4e:df:24:bd:0e:29:9f:12:db:d9:4a:fa:8f:
a3:7b:86:a5:c3:7b:38:7a:46:56:0d:b7:e9:f6:4c:
e2:1e:6f:59:92:3e:49:79:3e:52:77:24:e2:4b:36:
82:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D9:FE:7A:AA:75:5E:CD:80:B8:9D:06:B0:33:B3:81:B0:FC:0F:24
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b200::/40
Signature Algorithm: sha256WithRSAEncryption
20:5b:06:03:6a:5e:72:1d:fe:b4:48:66:1f:74:cd:56:a9:94:
7a:85:d9:39:e9:c1:f9:51:38:3d:39:5f:c3:98:29:5f:6f:ab:
0e:e1:2f:18:97:88:c7:c1:cb:e5:a5:24:db:ee:f6:bc:33:53:
b7:94:d5:c8:8d:ee:31:1c:ca:3d:3f:de:a3:9a:2e:e7:23:16:
1e:3a:72:cc:2d:51:b3:92:f1:73:46:da:0a:45:b5:a5:83:b8:
fb:49:18:b4:e3:95:91:b9:23:4f:28:a4:e7:55:25:02:ff:0c:
36:77:b1:b6:16:a5:a0:1b:df:ed:a6:57:7f:3b:56:77:0a:5f:
f2:22:dc:13:22:90:63:80:33:3b:a8:fb:d2:7d:17:56:13:b4:
77:92:9b:d3:74:3a:24:22:26:0b:f3:aa:f4:bb:20:b3:e2:f6:
67:32:e3:e4:6c:ec:c9:00:a7:26:08:87:00:7c:09:de:1a:57:
85:4b:a3:ba:e6:e6:e5:52:2b:f6:cf:76:3f:78:2a:87:de:d1:
f7:24:68:e2:8b:df:ce:1c:7e:82:8f:d8:45:40:c8:79:0c:8e:
db:ca:31:6f:74:30:16:d6:7b:76:5d:df:5d:e2:56:bc:6e:e7:
2f:27:2c:bd:be:a1:5f:64:47:23:6f:77:41:f9:86:33:d5:89:
d3:8f:c8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:52 2025 by rpki-client