Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa
File: AS215386.roa (raw, json)
Hash identifier: Y4RKghpydpMEwzfM7J0WQznFpxTA2EZlu4pN7sX//0U=
Subject key identifier: 94:7F:38:5F:38:5E:4E:14:CB:B0:47:C2:6C:17:34:ED:D3:79:83:53
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 6EC0563254803290B0FADB4A2885BFFFE8E71DEC
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa
Signing time: Thu 29 Aug 2024 03:41:17 +0000
ROA not before: Thu 29 Aug 2024 03:36:17 +0000
ROA not after: Thu 28 Aug 2025 03:41:17 +0000
asID: 215386
IP address blocks: 2a0a:6044:ac20::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c0:56:32:54:80:32:90:b0:fa:db:4a:28:85:bf:ff:e8:e7:1d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:17 2024 GMT
Not After : Aug 28 03:41:17 2025 GMT
Subject: CN=947F385F385E4E14CBB047C26C1734EDD3798353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:81:0f:57:2f:bf:c2:36:35:dd:00:f1:6a:bb:
cb:85:2c:fc:e6:59:27:a9:ea:bf:5f:49:ef:98:47:
86:f8:8b:85:fa:4e:cd:2b:b8:95:18:00:f0:d4:75:
ac:47:f1:6f:de:82:35:d5:56:0b:1d:98:37:04:c5:
b5:8b:49:6e:a7:78:28:1b:03:e7:eb:27:b1:cf:a9:
42:8b:e3:de:d2:d8:23:0f:48:8c:1f:2f:a0:49:45:
8d:1e:69:a7:0f:59:96:ae:ea:3d:ba:b2:81:fa:59:
a5:27:77:0f:31:17:a8:a9:55:6b:74:35:d2:03:57:
ad:9b:31:4c:6d:6a:38:f9:a7:5f:2c:bb:60:d0:fb:
44:59:26:9f:f0:f8:12:b7:14:72:4e:47:ef:ee:51:
79:a3:ac:93:65:ab:60:c4:e2:07:07:20:85:b6:ce:
be:18:ef:9f:40:b0:ee:84:72:f6:1c:fd:4f:bf:13:
8e:83:20:10:8f:52:83:88:24:07:92:e8:63:ed:39:
ac:56:3f:d7:f7:66:4e:b5:4d:d6:31:3e:fd:80:4a:
b6:c0:79:16:f5:81:a6:5d:7e:2d:51:60:f2:c9:6d:
74:4d:01:c3:5b:4f:54:a3:a0:2f:ad:86:86:59:77:
0a:58:28:09:de:c7:6f:d4:6e:07:15:22:7e:e8:68:
26:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7F:38:5F:38:5E:4E:14:CB:B0:47:C2:6C:17:34:ED:D3:79:83:53
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:ac20::/44
Signature Algorithm: sha256WithRSAEncryption
14:af:7e:f7:d5:47:9f:50:1d:4b:0c:e7:f2:c7:3d:d4:9b:ca:
20:e1:99:ad:7e:f9:42:93:05:d2:bb:1a:b2:bd:dd:34:bd:ec:
09:d2:a7:97:51:91:90:f8:57:c4:ca:24:d3:35:d1:56:f9:67:
1f:41:11:dd:17:61:fb:3e:89:d2:f1:13:ad:77:e4:f2:71:77:
b5:bb:e0:6b:e8:a7:e5:4b:58:99:13:e8:b5:9f:58:f0:44:3f:
cc:3b:ee:f1:6c:63:c2:e3:3b:81:b1:53:ec:e7:f5:6e:94:ca:
1b:48:4f:e0:55:c0:8b:56:eb:a5:53:90:f5:43:f1:75:06:5f:
f9:b3:56:ee:55:ee:d5:a8:df:1e:1f:a9:09:6b:5a:09:7d:e1:
8c:4b:cc:bc:d5:81:de:0d:20:cb:8f:30:1a:3b:fa:ab:13:82:
c8:77:04:2d:2b:0b:fd:11:56:54:1f:a9:63:8d:ec:85:9f:b1:
f1:45:8d:c2:3e:75:11:1b:ca:82:63:e7:97:a9:cd:52:8d:50:
bf:64:20:71:cb:db:45:08:6e:46:d7:25:c2:b7:1e:ae:5d:39:
7e:8b:9b:e2:8b:34:4d:dd:a3:3f:04:ef:99:7f:0e:10:54:c7:
98:99:40:f8:15:dd:6c:4d:12:2b:2f:69:30:9f:52:6b:6c:f4:
0c:35:cb:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:54 2025 by rpki-client