Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa
File: AS215150.roa (raw, json)
Hash identifier: FDEE32eLCmvVT/7VKA04c1q3WH6kJ3hnNV35zNRVAVg=
Subject key identifier: 3E:E8:9A:B6:FC:D2:DC:FE:9C:CB:14:AE:95:61:40:E3:E0:3E:01:99
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 2E53F844D42F11C7517B94A4DB1A4AB5AD9ACADB
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa
Signing time: Thu 29 Aug 2024 03:41:17 +0000
ROA not before: Thu 29 Aug 2024 03:36:17 +0000
ROA not after: Thu 28 Aug 2025 03:41:17 +0000
asID: 215150
IP address blocks: 2a0a:6044:acc0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:53:f8:44:d4:2f:11:c7:51:7b:94:a4:db:1a:4a:b5:ad:9a:ca:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:17 2024 GMT
Not After : Aug 28 03:41:17 2025 GMT
Subject: CN=3EE89AB6FCD2DCFE9CCB14AE956140E3E03E0199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:db:54:fd:d6:f4:81:3f:d7:c2:4e:1d:2a:d7:
74:90:b4:11:99:9b:41:a6:b6:48:15:9a:06:4f:83:
ad:d9:23:4a:dc:8e:3f:e7:35:8a:65:17:74:5f:8c:
07:58:76:4f:5f:95:e7:8d:8d:ed:63:c1:97:0d:16:
2e:0c:a8:54:be:e2:79:43:86:5e:6a:f4:1e:2c:12:
45:6e:b3:6f:96:ce:90:61:ee:57:6c:e8:0e:c7:b5:
65:9b:f9:3e:78:c9:d7:f3:f6:3b:94:86:62:bc:66:
34:bd:43:ce:25:8c:c3:7b:bb:9d:71:b3:ea:bf:34:
d6:5d:96:3a:da:2b:e8:c4:73:ec:2e:d3:9e:13:a2:
ed:3c:61:97:46:87:a0:5b:c9:37:c5:31:9e:a4:e8:
23:f0:c2:07:5d:f1:b6:4d:58:0d:7f:39:e6:e1:ab:
9d:e7:d5:a5:9a:77:ce:b5:30:74:57:48:17:dc:66:
8c:77:a0:2e:1e:03:7e:02:e7:8e:f0:53:f4:f6:b0:
7d:14:b3:0e:c9:30:b8:08:56:c9:a7:17:0a:83:1a:
59:9f:4d:6d:66:a7:b3:67:84:00:a6:77:6f:1b:03:
ea:79:d0:6b:e1:aa:db:38:07:ca:29:10:54:f3:df:
0c:a0:85:29:3d:ee:88:ac:b4:52:cf:01:07:78:06:
92:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E8:9A:B6:FC:D2:DC:FE:9C:CB:14:AE:95:61:40:E3:E0:3E:01:99
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:acc0::/44
Signature Algorithm: sha256WithRSAEncryption
17:52:7c:0e:9c:61:c7:cf:df:b2:5a:5f:b3:f8:9c:bb:bf:ed:
5e:1c:81:e8:8f:c5:84:86:cc:d2:a2:95:a5:55:34:c4:d4:7a:
06:4c:a3:5a:c2:e3:1d:19:7e:61:98:af:7c:52:34:54:80:28:
c7:09:e7:d4:da:fe:c5:cf:07:37:dc:ab:fe:eb:ff:e5:ae:68:
23:29:0a:a8:f6:75:bb:d2:56:be:0f:5c:f6:f5:12:1f:88:4e:
21:fe:dc:2c:ce:1e:3e:cb:67:2e:b8:52:8d:f9:1b:7c:da:76:
79:3b:af:94:80:b7:80:64:74:94:47:20:f6:da:b1:2b:7c:b5:
2f:cc:b2:fc:34:f0:68:2e:aa:1a:ab:b7:9d:4a:74:78:09:03:
41:d9:9c:9c:46:f2:2c:d9:17:4b:1a:36:6c:a0:41:d2:13:3e:
2c:cc:df:e4:99:fd:c0:d7:f8:a4:51:a2:27:fa:f4:3f:24:7e:
b4:f2:53:68:93:af:31:83:e9:f6:4b:e7:1a:93:a9:b5:5a:22:
a9:b3:77:2f:6f:aa:3a:92:75:e0:fb:f6:de:1e:bd:cf:dd:cb:
c1:5f:53:bb:51:39:ff:95:04:13:0a:69:da:a8:2e:ee:92:52:
be:f0:f2:d5:66:a5:22:20:ec:32:93:c9:ca:c0:9a:96:5e:55:
b8:e9:17:c3
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIULlP4RNQvEcdRe5Sk2xpKta2aytswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV
BAMTKDNFRTg5QUI2RkNEMkRDRkU5Q0NCMTRBRTk1NjE0MEUzRTAzRTAxOTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf21T91vSBP9fCTh0q13SQtBGZ
m0GmtkgVmgZPg63ZI0rcjj/nNYplF3RfjAdYdk9fleeNje1jwZcNFi4MqFS+4nlD
hl5q9B4sEkVus2+WzpBh7lds6A7HtWWb+T54ydfz9juUhmK8ZjS9Q84ljMN7u51x
s+q/NNZdljraK+jEc+wu054Tou08YZdGh6BbyTfFMZ6k6CPwwgdd8bZNWA1/Oebh
q53n1aWad861MHRXSBfcZox3oC4eA34C547wU/T2sH0Usw7JMLgIVsmnFwqDGlmf
TW1mp7NnhACmd28bA+p50Gvhqts4B8opEFTz3wyghSk97oistFLPAQd4BpKpAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUPuiatvzS3P6cyxSulWFA4+A+AZkwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1MTUwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg
RKzAMA0GCSqGSIb3DQEBCwUAA4IBAQAXUnwOnGHHz9+yWl+z+Jy7v+1eHIHoj8WE
hszSopWlVTTE1HoGTKNawuMdGX5hmK98UjRUgCjHCefU2v7Fzwc33Kv+6//lrmgj
KQqo9nW70la+D1z29RIfiE4h/twszh4+y2cuuFKN+Rt82nZ5O6+UgLeAZHSURyD2
2rErfLUvzLL8NPBoLqoaq7edSnR4CQNB2ZycRvIs2RdLGjZsoEHSEz4szN/kmf3A
1/ikUaIn+vQ/JH608lNok68xg+n2S+cak6m1WiKps3cvb6o6knXg+/beHr3P3cvB
X1O7UTn/lQQTCmnaqC7uklK+8PLVZqUiIOwyk8nKwJqWXlW46RfD
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:42:00 2025 by rpki-client