Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS207083.roa
File: AS207083.roa (raw, json)
Hash identifier: rz2ht7+megEbgpWXsM2XuBJLBlGqfz5adkP4tdt4hU8=
Subject key identifier: 9C:DB:DE:0E:1C:0D:D7:D6:44:52:74:CA:26:AF:EB:1B:22:AD:6C:6C
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 7420EE6441A5A1B2B16DE0B66CED39193AD11069
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS207083.roa
Signing time: Tue 28 Jan 2025 21:56:28 +0000
ROA not before: Tue 28 Jan 2025 21:51:28 +0000
ROA not after: Tue 27 Jan 2026 21:56:28 +0000
asID: 207083
IP address blocks: 2a09:54c6:a000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:20:ee:64:41:a5:a1:b2:b1:6d:e0:b6:6c:ed:39:19:3a:d1:10:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Jan 28 21:51:28 2025 GMT
Not After : Jan 27 21:56:28 2026 GMT
Subject: CN=9CDBDE0E1C0DD7D6445274CA26AFEB1B22AD6C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:00:d8:1f:04:c0:d9:52:7f:7b:d9:f4:9e:69:
15:02:21:cd:93:b5:50:12:f0:33:52:61:c8:97:de:
76:5e:25:59:fa:fb:53:2f:8f:c4:b7:f6:20:f6:a2:
1f:7e:86:06:58:f9:e6:3b:86:39:ee:74:0a:76:6d:
a2:f1:57:99:1e:5e:bc:4c:70:81:2f:cd:a6:5d:3f:
4f:75:f1:3c:a9:c8:c3:6a:71:85:38:34:e2:e4:3a:
d8:63:40:59:7a:56:b4:59:d6:4b:ce:6f:92:73:df:
2e:35:cb:6c:db:ec:cf:c9:70:65:32:8c:5f:88:bd:
4c:5e:51:12:b0:f4:71:ff:a9:1d:8e:d5:88:d3:57:
94:81:06:c7:29:01:e3:cb:fd:42:9b:db:11:b2:a7:
78:e5:a8:23:21:ae:67:24:d8:cd:aa:6f:07:d2:91:
9d:db:b5:88:cb:d3:1a:18:1b:63:21:34:9b:2f:40:
69:1c:d3:1c:72:83:7c:f6:e9:31:da:42:05:9f:fe:
84:b0:57:8e:03:d8:a3:7f:d0:e0:99:8e:f4:ab:f9:
e4:ac:b9:3c:f2:f9:9f:fa:8b:2a:a8:a8:2b:cf:0e:
b2:a1:3b:c5:f1:69:85:9e:2a:e8:4d:b8:74:38:f8:
9b:ea:38:c7:97:47:00:71:44:61:32:c5:17:a6:19:
bf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:DB:DE:0E:1C:0D:D7:D6:44:52:74:CA:26:AF:EB:1B:22:AD:6C:6C
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS207083.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c6:a000::/36
Signature Algorithm: sha256WithRSAEncryption
73:fb:a7:b4:47:e6:6e:cf:fb:f9:f3:0e:fa:51:51:97:0e:9c:
65:cb:ba:93:ba:0b:58:03:4c:c6:a7:61:5a:6a:7c:7b:e3:ee:
6f:c0:ad:02:29:33:62:f5:e5:10:c8:f3:34:fb:98:4b:8e:63:
af:21:60:21:8f:ad:6f:b6:01:8e:49:33:7d:1b:67:df:4e:c9:
4f:c7:c7:65:34:77:d2:be:90:60:58:d0:28:1c:69:19:ac:f5:
0e:0e:2f:ec:a9:15:b7:2c:72:e6:01:8e:30:d1:64:7c:1f:81:
e9:f3:0e:72:64:b0:8d:fb:cd:83:a7:9d:b2:b9:5d:69:f3:7e:
e1:72:18:19:16:cd:6e:73:74:ac:f2:46:ac:79:6d:bb:56:18:
fb:9a:bf:4a:ba:c9:6b:1a:88:d1:3d:59:7a:d5:e5:4b:af:42:
90:5c:55:fe:10:9a:5c:28:5e:2c:f6:47:de:78:2e:f0:c3:27:
a3:a7:1a:8d:b7:0e:ab:5b:55:15:80:93:25:9e:f0:c7:b0:4a:
0e:10:5f:1e:57:bd:e3:74:17:a5:77:d7:78:10:76:f2:6d:f2:
64:64:c5:8b:e8:89:11:55:47:cc:ae:ad:73:c2:46:e8:b8:1f:
61:b0:c2:46:54:03:ae:d6:40:d6:f2:78:01:e7:11:e5:e0:aa:
88:af:45:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:36 2025 by rpki-client