Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa
File: AS214161.roa (raw, json)
Hash identifier: f+E48Sm10y8m7U7Q3XOla2MEXs+h1RWi9UzatjllX/E=
Subject key identifier: C5:84:B8:AF:00:DF:B1:E1:48:C0:F6:44:B0:05:80:98:17:94:83:4F
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 71EAEE5CB675E9DF092D049468320AF74C540742
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa
Signing time: Tue 29 Oct 2024 13:04:41 +0000
ROA not before: Tue 29 Oct 2024 12:59:41 +0000
ROA not after: Tue 28 Oct 2025 13:04:41 +0000
asID: 214161
IP address blocks: 2a0a:6044:aa11::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:ea:ee:5c:b6:75:e9:df:09:2d:04:94:68:32:0a:f7:4c:54:07:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Oct 29 12:59:41 2024 GMT
Not After : Oct 28 13:04:41 2025 GMT
Subject: CN=C584B8AF00DFB1E148C0F644B00580981794834F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cd:01:8d:9b:49:e2:38:da:45:fa:eb:6b:e8:
cf:a0:7b:1a:85:2d:67:7c:1a:f5:1b:6b:5f:96:12:
f2:3b:63:25:3a:66:7a:c2:aa:8d:5f:2c:66:cf:89:
8c:aa:88:41:68:05:5d:2f:b3:e6:93:9f:3f:df:c4:
55:32:d6:27:bf:ac:99:5d:e4:da:06:f9:3d:42:61:
da:16:7a:ae:a2:26:12:a6:79:7a:ab:03:a0:2a:ca:
73:cd:aa:76:8f:73:44:df:be:e0:4f:ba:c6:67:c5:
1e:67:38:5a:53:c4:88:c8:b2:3f:de:8b:25:85:02:
4a:7d:73:a9:c6:cc:18:0c:8b:b0:f3:20:c7:f5:a4:
66:98:5d:3c:e3:84:7b:2d:30:46:2e:9c:34:95:04:
5c:5b:13:5d:ae:c5:93:98:2c:92:ab:e5:ac:09:33:
64:54:5d:a2:5e:27:77:c5:19:2a:ef:7f:3f:94:fa:
bb:9f:27:4c:e5:25:8e:fb:06:9d:66:15:9a:89:98:
72:8a:8c:ea:eb:c9:4b:af:bc:67:f2:1e:c5:92:27:
7f:10:1c:47:13:b9:0e:48:5c:12:3a:68:80:db:58:
b8:73:44:f1:86:0d:37:9d:6d:a7:ec:b9:44:3d:4c:
7d:bd:1c:a1:59:a9:38:bb:e9:0f:eb:cc:f8:f2:b8:
ed:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:84:B8:AF:00:DF:B1:E1:48:C0:F6:44:B0:05:80:98:17:94:83:4F
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:aa11::/48
Signature Algorithm: sha256WithRSAEncryption
26:bb:7a:d7:d8:60:af:6b:1f:e6:91:27:df:c8:59:73:15:47:
70:eb:2f:86:dc:aa:21:fa:8b:b7:57:49:75:bb:7e:41:72:f7:
b2:ee:6a:51:79:27:45:93:86:fc:9c:a8:cb:6d:39:b1:45:33:
9c:5b:d3:c5:a2:4a:78:58:7f:c0:35:b4:31:9c:c8:7e:78:86:
08:7a:a6:e3:bf:d0:ef:8d:5a:60:ef:78:8b:c8:fb:d2:41:45:
83:6e:5a:e9:0c:9b:5e:fc:9e:78:c4:11:e6:d5:3e:6f:1a:52:
d0:21:bb:6b:be:55:15:44:6a:d6:af:fe:d3:d8:56:76:1b:af:
87:1a:0a:77:e3:eb:e5:30:31:94:9f:6d:d3:11:61:35:27:83:
18:7d:ae:83:9a:1c:3f:5e:10:43:2b:c0:be:fb:b4:45:b9:d2:
64:a8:ce:db:ec:5e:fd:6c:e2:c0:8f:42:60:32:c5:fa:48:cb:
a1:a7:3b:d0:f6:3e:b9:48:08:20:fb:c5:70:1e:0f:f0:14:23:
2e:24:cb:bd:2c:00:47:26:8a:71:4d:fb:30:c0:58:de:8f:fd:
56:1c:9b:f0:4a:90:e0:fe:d8:0e:c2:ff:68:14:4d:2b:ae:24:
ab:60:2f:47:d3:e5:7d:e5:ac:c0:29:93:88:6a:6a:43:3c:ea:
16:75:8b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:39 2025 by rpki-client