Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa
File: AS215502.roa (raw, json)
Hash identifier: e/EnhB0BmN6TiV4gHdeWeUNmslXYmNeJ39PhVpi+ktE=
Subject key identifier: E1:EF:AF:7D:DF:6D:7A:8E:E3:AF:03:55:50:06:44:07:16:E8:22:F3
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 43FB655CB35CAA26BD9B754DE7163ACD6F8EF6DE
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa
Signing time: Thu 29 Aug 2024 03:41:18 +0000
ROA not before: Thu 29 Aug 2024 03:36:18 +0000
ROA not after: Thu 28 Aug 2025 03:41:18 +0000
asID: 215502
IP address blocks: 2a0a:6044:b800::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:fb:65:5c:b3:5c:aa:26:bd:9b:75:4d:e7:16:3a:cd:6f:8e:f6:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:18 2024 GMT
Not After : Aug 28 03:41:18 2025 GMT
Subject: CN=E1EFAF7DDF6D7A8EE3AF03555006440716E822F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ea:47:41:ba:d3:f4:a0:4d:3a:00:dc:3b:5a:
d1:2f:54:52:9e:9c:dd:43:aa:11:66:40:c3:61:99:
69:cb:f3:23:60:59:0f:23:34:09:0e:2f:a0:ac:28:
37:a2:cb:e1:58:6d:8f:e7:0b:9a:9a:1d:a8:ae:db:
e2:7e:ba:4a:38:bd:bc:65:51:bf:a0:04:bc:ad:cd:
06:ed:4e:2c:e6:a9:68:05:cf:18:0d:71:76:34:8d:
3a:f6:e8:0f:82:ac:33:c9:2e:4b:a1:97:e6:29:be:
be:97:10:4c:ac:c2:08:8e:24:b5:a7:14:4b:b2:50:
31:4f:0d:29:65:7c:89:04:f3:de:99:14:e9:7a:54:
fc:ae:2b:30:22:ad:a7:6c:3a:5e:9d:bd:63:65:0b:
aa:a8:a8:00:db:81:79:1b:36:fa:7e:f0:ac:40:a9:
1e:56:e7:84:83:66:3d:97:5c:c8:da:35:cf:51:93:
78:28:a0:ac:cc:09:92:d6:5f:8a:c8:b1:b8:2d:29:
db:15:c9:6d:57:0b:89:60:8e:75:a6:99:52:be:16:
c9:14:16:0d:1c:fb:61:83:db:35:9e:e8:39:5e:e7:
b7:02:12:2a:0a:e9:52:e9:ca:1d:1b:d2:7e:b5:1f:
1e:aa:9e:6f:35:22:f5:fa:75:e9:75:c2:0f:16:16:
04:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EF:AF:7D:DF:6D:7A:8E:E3:AF:03:55:50:06:44:07:16:E8:22:F3
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b800::/40
Signature Algorithm: sha256WithRSAEncryption
b9:38:fc:54:29:0e:e3:7e:5f:e5:06:4b:cf:37:2e:1d:94:28:
4c:22:00:75:43:23:16:7e:2c:c5:34:59:f5:36:e0:84:db:49:
8e:a0:b9:d9:42:42:51:b5:bf:3f:1f:6b:af:9c:c5:c8:eb:c9:
11:98:45:2a:05:3e:18:a0:40:37:83:cb:a8:20:ba:b0:1e:1e:
24:37:2c:ea:e4:dd:03:d3:5f:79:8d:e8:c4:72:45:65:3b:54:
74:88:3c:7e:0d:29:79:b1:b4:20:b5:e0:ba:fc:17:ed:ff:ca:
cf:67:e7:39:ce:64:53:42:10:02:23:b0:44:54:f2:63:15:e1:
fd:9f:a2:9e:09:73:d9:3b:1a:29:1c:ed:51:58:41:cd:1f:c8:
5f:49:ba:cd:30:75:8c:10:9a:b0:4c:07:2c:ab:54:99:b8:2d:
b8:bc:77:e2:0e:ac:7b:cd:9f:d9:17:1a:82:ae:d3:54:56:b0:
5b:f5:46:26:06:5c:f6:67:c1:0f:37:79:cd:44:15:47:de:52:
67:78:93:6d:df:e3:7c:85:ff:b7:a4:6d:4e:a6:1f:5f:62:b6:
d7:86:e5:f3:24:2e:57:bb:fb:6d:50:99:72:78:8e:0b:6b:9f:
b2:9f:20:80:8e:30:a9:32:91:8d:cc:0a:71:a0:fa:d7:c9:42:
bd:0b:04:83
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUQ/tlXLNcqia9m3VN5xY6zW+O9t4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV
BAMTKEUxRUZBRjdEREY2RDdBOEVFM0FGMDM1NTUwMDY0NDA3MTZFODIyRjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg6kdButP0oE06ANw7WtEvVFKe
nN1DqhFmQMNhmWnL8yNgWQ8jNAkOL6CsKDeiy+FYbY/nC5qaHaiu2+J+uko4vbxl
Ub+gBLytzQbtTizmqWgFzxgNcXY0jTr26A+CrDPJLkuhl+Ypvr6XEEyswgiOJLWn
FEuyUDFPDSllfIkE896ZFOl6VPyuKzAiradsOl6dvWNlC6qoqADbgXkbNvp+8KxA
qR5W54SDZj2XXMjaNc9Rk3gooKzMCZLWX4rIsbgtKdsVyW1XC4lgjnWmmVK+FskU
Fg0c+2GD2zWe6Dle57cCEioK6VLpyh0b0n61Hx6qnm81IvX6del1wg8WFgTBAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQU4e+vfd9teo7jrwNVUAZEBxboIvMwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1NTAyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg
RLgwDQYJKoZIhvcNAQELBQADggEBALk4/FQpDuN+X+UGS883Lh2UKEwiAHVDIxZ+
LMU0WfU24ITbSY6gudlCQlG1vz8fa6+cxcjryRGYRSoFPhigQDeDy6ggurAeHiQ3
LOrk3QPTX3mN6MRyRWU7VHSIPH4NKXmxtCC14Lr8F+3/ys9n5znOZFNCEAIjsERU
8mMV4f2fop4Jc9k7Gikc7VFYQc0fyF9Jus0wdYwQmrBMByyrVJm4Lbi8d+IOrHvN
n9kXGoKu01RWsFv1RiYGXPZnwQ83ec1EFUfeUmd4k23f43yF/7ekbU6mH19itteG
5fMkLle7+21QmXJ4jgtrn7KfIICOMKkykY3MCnGg+tfJQr0LBIM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:57 2025 by rpki-client