Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa
File: AS213880.roa (raw, json)
Hash identifier: lAxZ2Nrx4TnC9dSOjOmF+qqdI89Rxs4wVxDDOiKkLhM=
Subject key identifier: 5E:C9:13:31:9D:CA:36:A8:6E:B2:90:7D:C8:E9:4D:FC:29:0C:84:AE
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 2D8887C229A50CC0A91E3D982763754F012395E4
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa
Signing time: Mon 25 Nov 2024 13:18:27 +0000
ROA not before: Mon 25 Nov 2024 13:13:27 +0000
ROA not after: Mon 24 Nov 2025 13:18:27 +0000
asID: 213880
IP address blocks: 2a0a:6044:6b00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:88:87:c2:29:a5:0c:c0:a9:1e:3d:98:27:63:75:4f:01:23:95:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Nov 25 13:13:27 2024 GMT
Not After : Nov 24 13:18:27 2025 GMT
Subject: CN=5EC913319DCA36A86EB2907DC8E94DFC290C84AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:ea:4c:59:a8:8d:2b:ef:fc:79:27:8c:e7:
69:d6:b1:7e:e9:63:6a:7c:22:62:9f:81:fd:94:38:
c8:88:8d:09:a5:2f:12:f3:04:11:69:91:73:ac:a9:
20:d9:4e:4e:0f:d0:0e:1b:bb:28:3e:d2:bb:af:24:
90:fe:50:87:33:05:5c:fd:9a:35:c4:f0:99:ce:15:
80:0f:6d:74:cb:4b:25:d6:aa:34:7b:74:0c:ed:44:
8c:6d:7b:30:69:a5:7e:df:e7:5c:70:e3:2f:19:d2:
f7:10:88:df:58:2d:ce:8d:e4:6a:8e:95:ab:66:1c:
29:5c:c7:17:23:05:b5:74:e7:51:5f:1a:be:94:06:
f5:be:d3:a0:f5:db:a5:2e:e7:91:50:f7:6b:c3:97:
d8:ad:9c:0b:33:36:61:a5:03:24:e7:ca:fa:92:81:
22:4c:85:9a:72:6a:d8:63:74:29:8e:bf:e3:4b:42:
bb:cf:b7:89:f0:da:eb:38:ca:a5:d3:45:c9:a8:a3:
a5:38:94:54:f1:86:e9:1d:75:d5:0f:d7:e3:60:14:
db:24:9d:5f:b6:30:fa:e8:83:c9:bd:2a:2a:e3:c8:
39:e0:23:57:36:7d:d7:f2:16:28:2d:1a:08:ce:9a:
da:4c:ed:47:7c:9c:3b:2e:7a:67:3a:c4:57:a5:52:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C9:13:31:9D:CA:36:A8:6E:B2:90:7D:C8:E9:4D:FC:29:0C:84:AE
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6b00::/40
Signature Algorithm: sha256WithRSAEncryption
b3:83:90:4c:b6:a9:52:15:51:bf:f9:96:c8:3c:17:3f:57:ae:
c4:50:d1:59:a6:0c:7c:b7:1b:35:28:31:ec:99:76:ff:28:bd:
03:79:5c:ad:b5:ca:fc:2e:d7:01:cd:fd:4f:ff:94:2f:29:79:
1c:60:cf:22:c3:59:16:3a:62:52:03:72:0d:90:d8:a6:ce:fb:
f4:4c:66:9a:52:5a:2d:52:f5:13:56:2a:e0:67:01:e9:04:6e:
f8:22:4d:e4:a9:21:44:b4:0a:53:54:1a:1f:00:cb:2b:72:55:
57:b8:5c:4f:cb:6a:e9:b7:71:2f:8f:e1:cf:98:b4:2a:84:34:
6e:01:22:bc:f4:be:ec:17:dc:0a:85:97:78:f1:13:92:2e:3c:
4f:8d:e3:38:06:af:24:e4:cd:c3:56:3a:aa:bf:79:f1:25:dc:
56:60:be:0e:14:49:53:ca:1c:bc:1d:3d:38:3b:08:f4:a3:dd:
4f:d5:6a:0f:7b:d9:c0:68:b6:f5:03:98:13:e2:b0:f5:b9:63:
37:8e:be:ad:6a:92:b0:be:63:f3:05:95:a2:09:dc:09:b8:5f:
94:45:c6:c9:db:d3:1b:91:07:5e:b7:b9:39:ba:64:bd:c1:ab:
e5:bf:40:06:fb:39:60:2e:50:6a:ef:32:a9:98:06:6d:8e:9b:
4d:37:87:17
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIULYiHwimlDMCpHj2YJ2N1TwEjleQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDExMjUxMzEzMjdaFw0yNTExMjQxMzE4MjdaMDMxMTAvBgNV
BAMTKDVFQzkxMzMxOURDQTM2QTg2RUIyOTA3REM4RTk0REZDMjkwQzg0QUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPIepMWaiNK+/8eSeM52nWsX7p
Y2p8ImKfgf2UOMiIjQmlLxLzBBFpkXOsqSDZTk4P0A4buyg+0ruvJJD+UIczBVz9
mjXE8JnOFYAPbXTLSyXWqjR7dAztRIxtezBppX7f51xw4y8Z0vcQiN9YLc6N5GqO
latmHClcxxcjBbV051FfGr6UBvW+06D126Uu55FQ92vDl9itnAszNmGlAyTnyvqS
gSJMhZpyathjdCmOv+NLQrvPt4nw2us4yqXTRcmoo6U4lFTxhukdddUP1+NgFNsk
nV+2MProg8m9KirjyDngI1c2fdfyFigtGgjOmtpM7Ud8nDsuemc6xFelUhVPAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUXskTMZ3KNqhuspB9yOlN/CkMhK4wHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjEzODgwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg
RGswDQYJKoZIhvcNAQELBQADggEBALODkEy2qVIVUb/5lsg8Fz9XrsRQ0VmmDHy3
GzUoMeyZdv8ovQN5XK21yvwu1wHN/U//lC8peRxgzyLDWRY6YlIDcg2Q2KbO+/RM
ZppSWi1S9RNWKuBnAekEbvgiTeSpIUS0ClNUGh8AyytyVVe4XE/Laum3cS+P4c+Y
tCqENG4BIrz0vuwX3AqFl3jxE5IuPE+N4zgGryTkzcNWOqq/efEl3FZgvg4USVPK
HLwdPTg7CPSj3U/Vag972cBotvUDmBPisPW5YzeOvq1qkrC+Y/MFlaIJ3Am4X5RF
xsnb0xuRB163uTm6ZL3Bq+W/QAb7OWAuUGrvMqmYBm2Om003hxc=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:53 2025 by rpki-client