Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa
File: AS214129.roa (raw, json)
Hash identifier: vDoGKwERFzLt81JTMU4b4+7zLBeKApg3JdM51bEy1co=
Subject key identifier: 6D:F6:B5:4C:54:CB:52:01:EE:0C:B2:6E:D7:14:BE:E9:33:13:78:4E
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 65644085A85FAC2ED796941BE9CB5F47B5952A0A
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa
Signing time: Sun 27 Oct 2024 19:41:39 +0000
ROA not before: Sun 27 Oct 2024 19:36:39 +0000
ROA not after: Sun 26 Oct 2025 19:41:39 +0000
asID: 214129
IP address blocks: 2a0a:6044:6300::/40 maxlen: 48
2a0a:6044:6500::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:64:40:85:a8:5f:ac:2e:d7:96:94:1b:e9:cb:5f:47:b5:95:2a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Oct 27 19:36:39 2024 GMT
Not After : Oct 26 19:41:39 2025 GMT
Subject: CN=6DF6B54C54CB5201EE0CB26ED714BEE93313784E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ef:d4:c2:51:b1:4e:b5:d5:8b:de:bb:58:80:
14:0c:67:9f:5f:54:7b:4f:69:a4:33:c2:0c:8a:5b:
9b:f7:a3:a7:71:77:83:91:59:8e:f2:3f:27:a0:95:
1c:63:79:35:db:e4:0b:29:f7:37:44:73:7c:df:53:
a2:83:ab:5f:37:96:3b:9e:5c:0f:dd:28:04:17:d7:
f2:0e:9a:49:85:e9:74:04:40:b5:42:cc:56:e5:cb:
37:8a:e9:44:b8:50:91:3d:67:c2:39:f9:92:8d:32:
0e:11:aa:05:60:47:55:e7:79:32:32:74:7f:27:be:
97:1e:ab:2a:75:3c:65:dd:36:b1:c1:ef:90:e7:69:
82:0c:e2:9f:ee:82:c2:1c:df:4b:20:03:7a:c7:cf:
bb:71:78:e9:ad:88:73:d6:63:f7:ec:eb:86:9e:fc:
3a:75:25:70:bf:39:63:4b:33:b4:ce:45:d9:48:bd:
c0:e7:8c:99:9a:d0:c4:71:4f:67:ff:96:23:f8:c7:
0f:11:66:c1:8d:77:8f:39:90:71:e1:4f:d9:07:af:
db:a8:a6:cb:52:c3:ba:4b:ad:35:f9:ec:a4:fa:64:
9e:2b:ed:1f:b0:94:7e:b7:b7:80:fd:4e:b3:46:be:
e5:fd:82:64:a2:a8:39:41:03:28:4f:56:22:56:cb:
6c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F6:B5:4C:54:CB:52:01:EE:0C:B2:6E:D7:14:BE:E9:33:13:78:4E
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6300::/40
2a0a:6044:6500::/40
Signature Algorithm: sha256WithRSAEncryption
c0:b9:0e:14:d2:7b:63:00:bf:52:1a:7a:b2:41:0d:36:0a:f3:
2c:42:96:3b:91:bc:96:75:d0:1b:8d:bd:20:9e:5c:8a:14:52:
7f:73:da:45:ad:73:65:aa:dc:b5:95:61:04:73:21:a5:6a:dc:
1a:38:16:8e:07:10:5c:d0:6f:8a:27:96:f0:83:10:5b:a7:28:
e3:50:bc:c5:90:5a:30:fc:32:c0:86:97:c1:31:3c:4b:4f:eb:
5b:c4:5d:80:e5:7f:d7:d1:15:ee:af:39:43:d8:42:92:a0:24:
0f:c9:af:c7:5b:f5:69:6d:4b:af:0b:e8:be:dd:42:b1:f0:d3:
1b:d3:c1:3c:41:47:33:4d:d3:94:f6:98:bd:b2:e8:30:c0:99:
38:d1:9b:14:5a:99:37:60:dd:06:19:2c:55:a7:7d:e2:d5:e7:
9e:37:e1:d9:69:ff:23:a4:43:4d:b9:9f:1e:7d:27:4e:bd:5f:
68:b2:f0:4e:82:54:2c:82:ad:42:12:d9:4f:02:04:1a:4b:81:
5b:64:f8:d0:14:93:43:55:f3:2c:84:6c:70:71:63:ee:2a:e1:
29:ac:e7:0b:48:f6:31:ee:c2:de:fc:58:f8:11:05:00:cd:27:
b7:03:be:23:60:05:7c:f4:65:08:8b:ff:06:9f:9f:c9:19:f9:
7b:3a:62:c3
-----BEGIN CERTIFICATE-----
MIIFOjCCBCKgAwIBAgIUZWRAhahfrC7XlpQb6ctfR7WVKgowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDEwMjcxOTM2MzlaFw0yNTEwMjYxOTQxMzlaMDMxMTAvBgNV
BAMTKDZERjZCNTRDNTRDQjUyMDFFRTBDQjI2RUQ3MTRCRUU5MzMxMzc4NEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq79TCUbFOtdWL3rtYgBQMZ59f
VHtPaaQzwgyKW5v3o6dxd4ORWY7yPyeglRxjeTXb5Asp9zdEc3zfU6KDq183ljue
XA/dKAQX1/IOmkmF6XQEQLVCzFblyzeK6US4UJE9Z8I5+ZKNMg4RqgVgR1XneTIy
dH8nvpceqyp1PGXdNrHB75DnaYIM4p/ugsIc30sgA3rHz7txeOmtiHPWY/fs64ae
/Dp1JXC/OWNLM7TORdlIvcDnjJma0MRxT2f/liP4xw8RZsGNd485kHHhT9kHr9uo
pstSw7pLrTX57KT6ZJ4r7R+wlH63t4D9TrNGvuX9gmSiqDlBAyhPViJWy2xzAgMB
AAGjggJEMIICQDAdBgNVHQ4EFgQUbfa1TFTLUgHuDLJu1xS+6TMTeE4wHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTI5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgpg
RGMDBgAqCmBEZTANBgkqhkiG9w0BAQsFAAOCAQEAwLkOFNJ7YwC/Uhp6skENNgrz
LEKWO5G8lnXQG429IJ5cihRSf3PaRa1zZarctZVhBHMhpWrcGjgWjgcQXNBviieW
8IMQW6co41C8xZBaMPwywIaXwTE8S0/rW8RdgOV/19EV7q85Q9hCkqAkD8mvx1v1
aW1Lrwvovt1CsfDTG9PBPEFHM03TlPaYvbLoMMCZONGbFFqZN2DdBhksVad94tXn
njfh2Wn/I6RDTbmfHn0nTr1faLLwToJULIKtQhLZTwIEGkuBW2T40BSTQ1XzLIRs
cHFj7irhKaznC0j2Me7C3vxY+BEFAM0ntwO+I2AFfPRlCIv/Bp+fyRn5ezpiww==
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:57 2025 by rpki-client