Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa
File: AS214172.roa (raw, json)
Hash identifier: BP0zgrf1hUHBVHLnYyKr63XPNaiHL9jlN33xN0ad+T0=
Subject key identifier: A0:E3:6F:D5:CA:24:6C:34:27:D4:63:28:83:7F:2A:8A:0F:77:31:51
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 7720AA4F8D6BC909F3B8F1E25E827DC684C5A0BB
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa
Signing time: Mon 23 Sep 2024 09:31:23 +0000
ROA not before: Mon 23 Sep 2024 09:26:23 +0000
ROA not after: Mon 22 Sep 2025 09:31:23 +0000
asID: 214172
IP address blocks: 2a0a:6044:6200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:20:aa:4f:8d:6b:c9:09:f3:b8:f1:e2:5e:82:7d:c6:84:c5:a0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Sep 23 09:26:23 2024 GMT
Not After : Sep 22 09:31:23 2025 GMT
Subject: CN=A0E36FD5CA246C3427D46328837F2A8A0F773151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6c:c4:29:2e:8e:3d:5e:30:dd:67:43:ff:5c:
00:51:82:61:e7:99:28:28:d5:4f:0d:e4:89:a0:bc:
f8:40:48:fb:45:0f:16:fb:7d:67:e0:67:e6:cb:71:
0a:60:c7:1e:c8:1e:57:9a:02:53:b6:7f:0d:0c:29:
0f:fa:9d:7b:77:76:4b:61:01:74:f1:a5:84:b1:c4:
5f:81:cd:de:90:ce:1c:75:ed:4b:42:95:72:ed:8a:
b9:07:8d:d8:3d:c6:c4:6e:52:4c:ba:f1:8a:a8:c5:
b4:bb:13:89:56:50:06:db:35:7d:a7:6b:47:9c:0d:
61:b9:a1:79:be:92:51:e7:da:e0:8d:60:85:05:a1:
1b:b9:e1:50:c7:f6:0e:f7:96:b2:64:6d:94:2e:cf:
49:42:85:30:40:e7:da:9f:a1:66:b2:81:33:d7:57:
f0:c3:6d:29:a3:05:da:38:30:32:2d:07:ee:b8:28:
cf:17:01:f4:bd:2e:c2:81:9f:80:51:b4:66:97:75:
6b:1b:de:4d:1e:80:9d:04:9a:2f:15:07:10:91:f4:
a2:81:fe:48:92:9f:9b:7b:fd:13:cc:22:63:60:c3:
84:3b:0b:ca:99:1c:80:74:47:7e:77:39:6e:c2:ef:
78:d8:ef:2a:26:b4:16:25:42:5c:c1:ff:4b:0c:37:
f0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E3:6F:D5:CA:24:6C:34:27:D4:63:28:83:7F:2A:8A:0F:77:31:51
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6200::/40
Signature Algorithm: sha256WithRSAEncryption
01:06:f0:67:90:c5:e7:02:82:65:73:8f:22:4f:c7:21:13:aa:
2b:38:fa:27:8d:07:0a:8d:c5:01:b8:2a:60:0e:d7:fd:85:fd:
e4:e7:ee:5d:9d:9c:fb:ed:d5:ab:1a:fe:ea:38:9c:e5:7f:64:
7d:94:95:10:2a:d7:61:fb:cc:32:da:07:dc:40:ac:dc:88:ff:
47:bc:02:78:b9:b5:77:3d:f3:5e:3c:97:25:15:c3:60:ac:f8:
b7:47:3e:b9:95:df:7f:aa:84:b0:27:d1:d8:e7:9e:18:cd:5c:
c1:4d:2a:c3:b0:3d:ef:43:69:03:19:5f:f6:b5:27:e1:81:f6:
48:4b:bc:af:e6:b0:fb:68:f8:03:fd:d7:ea:38:a2:39:d4:11:
22:2e:e5:53:65:3a:41:7f:7e:53:6e:66:da:8b:ed:c8:7d:23:
20:90:b5:ad:66:13:0a:f7:91:b2:5c:f5:b7:95:b3:ef:a7:9d:
6e:fa:98:75:48:6b:21:d6:ea:14:65:28:f7:f4:d0:8e:cd:92:
c8:e9:73:77:9a:8a:f9:23:1d:cb:6f:42:b5:66:31:16:56:84:
eb:a1:a5:c0:5b:b6:4a:18:69:aa:4a:57:ad:a9:86:69:72:66:
1e:b7:63:42:82:0d:40:97:e2:86:28:fd:30:0a:fa:d0:2f:2a:
6e:16:83:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:36 2025 by rpki-client