Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa
File: AS215575.roa (raw, json)
Hash identifier: Xiz2EAclzuj9FLLQp9SDxOBIalQfRAd2dA+n+OLNT2M=
Subject key identifier: 17:EB:92:B3:78:27:A2:41:11:18:47:8D:7F:C3:D8:AE:FD:5D:33:D0
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 1F5494E8DBEBBE190FB1E1F13681C79AF3C41E7E
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa
Signing time: Mon 11 Nov 2024 02:40:09 +0000
ROA not before: Mon 11 Nov 2024 02:35:09 +0000
ROA not after: Mon 10 Nov 2025 02:40:09 +0000
asID: 215575
IP address blocks: 2a0a:6044:6800::/40 maxlen: 48
2a0a:6044:ac80::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:54:94:e8:db:eb:be:19:0f:b1:e1:f1:36:81:c7:9a:f3:c4:1e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Nov 11 02:35:09 2024 GMT
Not After : Nov 10 02:40:09 2025 GMT
Subject: CN=17EB92B37827A2411118478D7FC3D8AEFD5D33D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:42:ec:7b:52:ae:b6:33:fb:e1:03:a4:0d:ea:
27:d7:bd:b1:30:8a:70:09:59:4e:3f:7b:79:54:04:
85:4f:e1:41:48:84:57:68:8d:63:c2:27:3f:16:08:
07:d9:10:0c:f0:12:ef:9f:a6:e5:59:8c:62:21:3a:
2c:bb:be:ab:f9:46:c5:1c:23:bd:12:3a:7f:2b:78:
4d:76:a5:88:83:8c:6a:02:ec:22:4f:b2:22:91:b9:
3a:58:0b:e0:da:14:8c:f2:0c:f4:8e:b2:c2:ae:05:
2e:e8:0b:5e:0f:06:4f:96:62:6b:a2:27:ca:bf:84:
48:81:59:45:4b:0c:54:08:ba:9d:9d:fa:41:8b:36:
75:b4:9b:50:b0:4b:86:8c:26:56:de:ef:61:bd:c4:
9b:f5:35:58:56:0e:89:f6:7f:bb:b8:56:d9:36:38:
e1:8e:6c:79:ca:f4:6f:cb:14:93:4b:53:f3:ab:a4:
f6:08:d0:cc:3e:f7:bc:b3:24:ce:dd:30:30:da:d7:
44:2b:fc:5d:00:f4:b7:6d:fb:83:e2:4b:77:d1:ba:
b7:30:c9:f7:33:15:17:a3:cb:8b:59:de:59:9a:9f:
24:46:b3:c7:51:75:4d:f3:f9:72:71:7f:36:70:53:
6e:61:1d:d9:79:61:f7:e0:6a:cb:9d:11:bc:26:c4:
62:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:EB:92:B3:78:27:A2:41:11:18:47:8D:7F:C3:D8:AE:FD:5D:33:D0
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6800::/40
2a0a:6044:ac80::/44
Signature Algorithm: sha256WithRSAEncryption
9f:50:03:b6:d7:ce:ad:2a:d2:dd:b1:af:9d:13:1d:9e:0c:11:
49:29:5e:4d:cd:e0:76:98:e9:90:0f:cc:24:30:e7:89:a2:9a:
94:6c:00:64:b5:a3:2a:b0:37:59:04:b8:73:11:1d:63:6c:0d:
3d:55:8a:62:bb:84:5d:9d:7d:e2:3f:a3:2e:b4:df:c7:d2:1b:
73:55:0b:9b:11:34:49:2b:eb:f4:9c:e8:cd:3f:bd:4c:28:f8:
87:8d:f0:92:19:ab:18:46:b1:68:e9:0c:15:41:6b:d9:16:86:
0e:44:44:39:49:38:92:d9:60:1b:98:b1:20:49:bb:ba:72:60:
6b:4b:ad:fa:98:9a:8a:0a:02:b5:70:b6:b6:a5:86:4b:10:92:
f9:2e:b7:5a:04:98:8e:82:42:34:4f:a1:8e:79:70:2e:3c:1b:
05:ca:68:98:07:b8:98:87:b2:ca:fb:1b:b0:68:fe:03:a1:48:
91:74:7f:58:b7:41:1f:30:cd:9e:24:d5:27:40:ad:7f:9f:41:
6c:f4:8e:13:27:03:ca:22:32:c4:27:c8:7b:0d:c2:e3:02:62:
02:45:5a:01:4d:35:54:c5:7a:3d:79:10:79:93:ad:07:6d:59:
ab:42:a7:4d:e7:6a:a7:2d:af:15:30:7d:19:6f:02:ee:82:64:
b2:0a:a6:2c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:13:57 2025 by rpki-client