Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa
File: AS215541.roa (raw, json)
Hash identifier: hiNmnQ8U02aP8W2g2hwrUThUZJ1/Q91ZpwN5hNnB+9Q=
Subject key identifier: C4:12:0C:B2:97:66:95:E4:2A:3E:87:96:A0:AC:73:C0:4C:05:E0:94
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 129753A67AFACF992DED388F00CCBDB62EA46E2D
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa
Signing time: Fri 13 Dec 2024 15:58:11 +0000
ROA not before: Fri 13 Dec 2024 15:53:11 +0000
ROA not after: Fri 12 Dec 2025 15:58:11 +0000
asID: 215541
IP address blocks: 2a0a:6044:5000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:97:53:a6:7a:fa:cf:99:2d:ed:38:8f:00:cc:bd:b6:2e:a4:6e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Dec 13 15:53:11 2024 GMT
Not After : Dec 12 15:58:11 2025 GMT
Subject: CN=C4120CB2976695E42A3E8796A0AC73C04C05E094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3c:2e:c0:82:79:38:8a:fd:04:ea:16:06:c8:
b3:27:60:e7:1e:07:02:04:a1:67:0e:f9:68:c7:ea:
d8:9c:3d:08:14:e6:fd:7c:14:e7:50:f6:23:06:b6:
60:7c:c7:f8:ae:d5:a9:db:6c:f8:a2:9a:d6:55:85:
36:c6:68:15:d0:8a:ed:d0:4f:8f:af:e3:29:1e:40:
77:f6:d7:78:11:35:86:ec:84:07:ca:91:5d:94:9f:
01:31:35:11:ec:23:d0:08:ea:b7:44:bb:06:5f:8b:
ad:e0:8b:e5:6c:4b:a3:a4:8e:56:fb:19:47:c6:4d:
97:e5:dc:85:25:99:3b:b4:11:19:4c:7c:29:ab:d4:
ae:b6:82:2e:12:f4:97:91:00:47:6c:87:68:53:0f:
d6:cc:ea:63:f3:6f:d1:f0:62:47:6a:6b:e7:c2:9f:
c3:41:27:c0:3c:34:be:87:5f:72:e8:4e:78:82:da:
a2:68:54:9f:d8:2b:eb:40:9a:00:4b:dc:83:74:3b:
31:85:75:2f:6f:9d:1f:0c:2c:ca:1c:3f:b8:86:8b:
ec:7a:ab:59:56:dc:7e:27:91:ae:8d:72:51:2f:d7:
51:71:55:c7:55:d0:a5:b8:ea:81:ae:70:56:2c:5a:
66:c6:6a:94:e3:d2:cf:f2:a1:98:a0:9e:b5:50:0c:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:12:0C:B2:97:66:95:E4:2A:3E:87:96:A0:AC:73:C0:4C:05:E0:94
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:5000::/36
Signature Algorithm: sha256WithRSAEncryption
62:19:5f:d8:dd:04:93:57:63:18:58:d8:30:b6:4c:3f:6d:27:
0f:ca:7f:e5:36:7c:e2:53:b5:79:d3:0f:bf:9f:23:f0:59:74:
37:d7:2f:8b:ac:e3:ab:6d:d2:4c:dc:2d:c8:42:aa:7f:bb:6f:
92:49:ec:a5:65:53:f7:cd:00:d4:30:10:9c:07:10:5f:ec:15:
7e:76:5c:84:7d:3f:71:a4:85:ff:d7:3a:7d:41:ac:b6:25:f1:
b2:84:fa:22:d6:4a:05:6f:b9:85:f7:bb:14:3d:c9:92:52:dd:
78:d0:35:26:4c:6b:9e:42:b3:65:ac:6f:48:71:17:8b:f4:6a:
4b:88:e0:ab:b5:67:c2:d3:2b:1d:02:99:67:60:d2:dd:71:e3:
ad:30:6b:fd:ba:17:f2:b4:d1:53:57:14:e1:7f:73:b5:f1:71:
68:ab:75:53:df:c4:44:df:ed:61:a8:7c:91:7c:dd:75:8b:c0:
e0:d9:4e:27:aa:6b:4c:29:4b:a2:52:9e:18:b5:09:29:63:4c:
e0:5a:11:f4:41:b6:a1:af:62:7e:db:43:6d:51:a6:61:1b:7b:
cc:9a:30:12:e7:21:6d:64:1f:a2:e9:c4:b7:f9:0c:6e:e0:39:
f1:e9:92:d6:e5:bf:b6:62:20:fc:db:85:f4:95:6a:28:52:7d:
af:ea:0d:ac
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUEpdTpnr6z5kt7TiPAMy9ti6kbi0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDEyMTMxNTUzMTFaFw0yNTEyMTIxNTU4MTFaMDMxMTAvBgNV
BAMTKEM0MTIwQ0IyOTc2Njk1RTQyQTNFODc5NkEwQUM3M0MwNEMwNUUwOTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8PC7Agnk4iv0E6hYGyLMnYOce
BwIEoWcO+WjH6ticPQgU5v18FOdQ9iMGtmB8x/iu1anbbPiimtZVhTbGaBXQiu3Q
T4+v4ykeQHf213gRNYbshAfKkV2UnwExNRHsI9AI6rdEuwZfi63gi+VsS6Okjlb7
GUfGTZfl3IUlmTu0ERlMfCmr1K62gi4S9JeRAEdsh2hTD9bM6mPzb9HwYkdqa+fC
n8NBJ8A8NL6HX3LoTniC2qJoVJ/YK+tAmgBL3IN0OzGFdS9vnR8MLMocP7iGi+x6
q1lW3H4nka6NclEv11FxVcdV0KW46oGucFYsWmbGapTj0s/yoZignrVQDBBXAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUxBIMspdmleQqPoeWoKxzwEwF4JQwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1NTQxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgpg
RFAwDQYJKoZIhvcNAQELBQADggEBAGIZX9jdBJNXYxhY2DC2TD9tJw/Kf+U2fOJT
tXnTD7+fI/BZdDfXL4us46tt0kzcLchCqn+7b5JJ7KVlU/fNANQwEJwHEF/sFX52
XIR9P3Gkhf/XOn1BrLYl8bKE+iLWSgVvuYX3uxQ9yZJS3XjQNSZMa55Cs2Wsb0hx
F4v0akuI4Ku1Z8LTKx0CmWdg0t1x460wa/26F/K00VNXFOF/c7XxcWirdVPfxETf
7WGofJF83XWLwODZTieqa0wpS6JSnhi1CSljTOBaEfRBtqGvYn7bQ21RpmEbe8ya
MBLnIW1kH6LpxLf5DG7gOfHpktblv7ZiIPzbhfSVaihSfa/qDaw=
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:13:51 2025 by rpki-client