Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa
File: AS214182.roa (raw, json)
Hash identifier: Pxro6kbatsHw3hRl5QXh9WVCGDF2TMHtYbK3BFdDbH4=
Subject key identifier: B8:4E:79:FF:C8:90:B3:3E:65:15:B7:1A:D5:A1:60:38:4D:F1:70:E1
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 655FF7E67FDACB9843595F5FED2EE039D9EC43AE
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa
Signing time: Thu 03 Oct 2024 18:22:47 +0000
ROA not before: Thu 03 Oct 2024 18:17:47 +0000
ROA not after: Thu 02 Oct 2025 18:22:47 +0000
asID: 214182
IP address blocks: 2a0a:6044:aa0d::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:5f:f7:e6:7f:da:cb:98:43:59:5f:5f:ed:2e:e0:39:d9:ec:43:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Oct 3 18:17:47 2024 GMT
Not After : Oct 2 18:22:47 2025 GMT
Subject: CN=B84E79FFC890B33E6515B71AD5A160384DF170E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e8:14:51:79:73:90:4f:eb:cb:5c:1b:5d:2b:
b9:a4:da:66:e7:da:67:11:de:db:6a:7d:e8:3c:fc:
f1:7f:95:34:56:92:f9:53:bb:71:4f:74:0a:db:a9:
4c:da:6b:01:46:45:fd:b8:e8:70:65:a1:c4:19:84:
24:ae:79:da:9c:d2:30:ec:d4:91:ec:29:8d:30:2a:
20:45:42:d3:c9:c2:67:f2:a2:13:f7:6b:7d:9b:d3:
da:63:1b:83:7a:64:99:6e:16:d1:03:3c:4c:f8:e6:
c9:5f:48:32:0d:79:f8:e3:f2:ec:54:93:c4:47:57:
52:5e:20:86:3e:e6:c9:8a:1c:c4:e2:e7:38:eb:a4:
9e:23:90:2c:00:8f:ab:c6:d4:3f:3f:d9:55:f4:09:
e7:90:cb:b0:0f:c7:51:7f:9d:46:68:7c:4c:5e:6f:
22:3b:23:92:29:e5:e7:e4:5f:7d:91:67:dc:9f:97:
f0:b6:75:f8:ec:1a:c8:c6:1e:09:49:43:82:ce:32:
e6:e3:d4:c0:42:86:4f:de:e9:c8:44:7b:c4:92:2c:
d9:ce:0e:30:0c:f3:1e:1a:88:99:4d:83:8e:7f:31:
ad:5a:d2:0a:5c:ea:37:2a:f9:b7:df:66:03:3d:a5:
51:a8:b6:26:02:28:d0:ee:07:79:00:dc:9f:5c:c7:
a4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4E:79:FF:C8:90:B3:3E:65:15:B7:1A:D5:A1:60:38:4D:F1:70:E1
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:aa0d::/48
Signature Algorithm: sha256WithRSAEncryption
4d:f0:92:fb:8e:08:80:df:1e:3f:d6:be:cb:00:1b:35:25:a1:
86:3e:06:1b:76:b0:1d:74:1b:7c:24:72:9d:b8:23:2b:8b:f2:
3b:37:43:4d:b0:2c:f0:6e:4c:47:b7:0e:62:ab:a7:a4:e1:7c:
d2:46:6c:c6:25:4e:40:85:2a:9f:4b:40:6c:04:ee:df:38:85:
4b:cb:09:6c:f2:df:70:37:12:ea:66:61:2e:ff:c5:68:ba:bf:
b7:a5:5c:a0:a1:63:a0:10:f4:5f:e4:a2:77:d5:53:cf:86:87:
2c:02:3b:0c:94:e0:bf:3a:62:62:aa:48:8e:32:fa:82:cf:17:
cf:0c:b1:62:f8:b8:a9:59:a9:38:b1:3d:ef:48:e7:fd:af:2a:
f5:2f:31:59:12:30:7b:67:7b:e8:04:aa:a2:ff:82:7f:f7:96:
a6:9c:48:a4:ec:14:58:52:44:9d:56:59:dc:68:96:0f:05:26:
3a:a8:b1:56:c7:ca:a9:aa:b6:86:18:01:ee:be:76:9c:e0:6d:
e5:e6:71:ba:cb:32:fa:08:b2:95:e3:c6:f9:31:63:75:2e:c4:
4d:60:fb:1b:93:c9:9a:a2:6f:0e:0b:1c:7a:38:dd:2c:67:80:
65:e9:b6:23:67:89:70:87:82:f7:70:75:74:74:d2:01:7e:a4:
ac:b1:62:fc
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUZV/35n/ay5hDWV9f7S7gOdnsQ64wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDEwMDMxODE3NDdaFw0yNTEwMDIxODIyNDdaMDMxMTAvBgNV
BAMTKEI4NEU3OUZGQzg5MEIzM0U2NTE1QjcxQUQ1QTE2MDM4NERGMTcwRTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK6BRReXOQT+vLXBtdK7mk2mbn
2mcR3ttqfeg8/PF/lTRWkvlTu3FPdArbqUzaawFGRf246HBlocQZhCSuedqc0jDs
1JHsKY0wKiBFQtPJwmfyohP3a32b09pjG4N6ZJluFtEDPEz45slfSDINefjj8uxU
k8RHV1JeIIY+5smKHMTi5zjrpJ4jkCwAj6vG1D8/2VX0CeeQy7APx1F/nUZofExe
byI7I5Ip5efkX32RZ9yfl/C2dfjsGsjGHglJQ4LOMubj1MBChk/e6chEe8SSLNnO
DjAM8x4aiJlNg45/Ma1a0gpc6jcq+bffZgM9pVGotiYCKNDuB3kA3J9cx6R3AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUuE55/8iQsz5lFbca1aFgOE3xcOEwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTgyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpg
RKoNMA0GCSqGSIb3DQEBCwUAA4IBAQBN8JL7jgiA3x4/1r7LABs1JaGGPgYbdrAd
dBt8JHKduCMri/I7N0NNsCzwbkxHtw5iq6ek4XzSRmzGJU5AhSqfS0BsBO7fOIVL
ywls8t9wNxLqZmEu/8Vour+3pVygoWOgEPRf5KJ31VPPhocsAjsMlOC/OmJiqkiO
MvqCzxfPDLFi+LipWak4sT3vSOf9ryr1LzFZEjB7Z3voBKqi/4J/95amnEik7BRY
UkSdVlncaJYPBSY6qLFWx8qpqraGGAHuvnac4G3l5nG6yzL6CLKV48b5MWN1LsRN
YPsbk8maom8OCxx6ON0sZ4Bl6bYjZ4lwh4L3cHV0dNIBfqSssWL8
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:46 2025 by rpki-client