Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa
File: AS205398.roa (raw, json)
Hash identifier: T/Bmi3GxVhepin3a0tGjI3IiIsOIwQym7IIc8fVXATE=
Subject key identifier: 04:8D:DC:0B:2A:B1:BA:1F:04:D6:42:9F:57:32:7B:0A:C1:4F:D1:F5
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 4B215AFB6644C714866D87EDBEDFC0A391AAC227
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa
Signing time: Thu 29 Aug 2024 03:41:18 +0000
ROA not before: Thu 29 Aug 2024 03:36:18 +0000
ROA not after: Thu 28 Aug 2025 03:41:18 +0000
asID: 205398
IP address blocks: 2a0a:6044:ad00::/40 maxlen: 48
2a0a:6044:ae00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:21:5a:fb:66:44:c7:14:86:6d:87:ed:be:df:c0:a3:91:aa:c2:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:18 2024 GMT
Not After : Aug 28 03:41:18 2025 GMT
Subject: CN=048DDC0B2AB1BA1F04D6429F57327B0AC14FD1F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:25:77:f7:35:06:4e:df:af:f6:0c:c0:ba:4f:
48:72:a7:a7:e2:0c:6c:bb:44:4b:ae:a8:13:4d:6a:
ed:05:cd:9b:c1:35:4b:22:4f:30:db:e4:d4:54:14:
48:d5:f4:e2:d8:f9:e2:65:65:50:4a:49:29:ff:5c:
b5:77:b8:55:27:d7:34:0b:60:03:16:e1:04:bd:d7:
03:ce:3f:10:78:ed:29:07:5e:87:ce:34:70:e6:ff:
a2:b3:d5:a5:a4:ca:85:29:90:32:58:1e:56:81:55:
1c:44:b5:57:19:3d:6f:4c:ae:ff:52:6f:49:c4:15:
bc:2c:89:95:3f:21:47:e7:a0:12:a7:a4:fa:4e:35:
31:6f:7e:9a:51:9f:05:ac:1c:30:17:ac:ba:52:72:
26:4b:80:fa:32:43:4e:cc:06:8a:3c:4e:81:f3:30:
7c:c3:1f:2e:80:92:1b:3c:e6:6f:9c:8f:0e:a4:f5:
40:19:65:4d:d2:10:fb:a1:6d:64:5c:fd:33:33:16:
49:ae:bb:fe:d8:76:87:1b:f7:fb:a8:09:cc:06:ba:
ab:b9:ac:3d:c3:f1:32:84:d6:2a:fa:11:f6:c9:d8:
f5:5d:44:64:d3:df:42:86:b1:70:70:d5:71:a0:e0:
f0:de:e8:04:aa:83:81:7e:71:0e:8a:19:37:fd:cb:
6c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8D:DC:0B:2A:B1:BA:1F:04:D6:42:9F:57:32:7B:0A:C1:4F:D1:F5
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:ad00::-2a0a:6044:aeff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b7:bd:86:43:81:1f:cd:aa:0e:5f:39:0a:02:df:56:9b:22:56:
87:5e:6f:82:cd:0d:ee:88:e8:b1:69:16:0f:6e:c1:d7:a2:92:
4c:0a:b3:cb:7e:5d:d7:a1:46:f3:fd:42:5b:7f:19:02:93:d8:
7c:c8:db:36:5e:c9:63:25:e7:f6:9c:ee:7b:11:77:a0:78:74:
8b:be:8a:95:d0:05:2d:c7:d5:d9:4b:86:39:6f:66:61:8a:71:
c0:c3:a7:47:db:42:f3:87:12:41:e3:f9:0e:bd:f5:80:a8:f5:
5e:1d:d9:0e:a5:d7:6b:cf:0e:f2:b4:fd:bf:a1:d5:08:98:13:
ed:95:e6:eb:15:ae:4d:a9:1f:a8:3c:41:89:1b:b7:96:25:2c:
cc:4e:e0:ac:ae:b5:15:c2:93:c4:70:ae:12:c1:84:78:e0:d4:
47:2c:f1:54:86:2f:4b:8a:f0:2e:a9:87:5c:8c:ba:e8:7c:5c:
22:62:9f:60:06:71:ba:52:45:68:ae:03:21:55:9f:5c:94:b6:
be:78:4d:08:1b:99:f2:fc:b9:86:cf:00:b3:3d:ce:c3:b8:31:
63:eb:ba:59:75:2a:b8:f3:62:96:d4:d2:21:fb:70:ff:e6:62:
25:e2:6b:f8:8c:3e:2a:51:2a:f5:21:81:be:2f:eb:a8:4a:b3:
31:b5:29:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:41 2025 by rpki-client