Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216079.roa
File: AS216079.roa (raw, json)
Hash identifier: hv9NLCI9eaGgDi7G2OIAABYq5A712q4uMWqgwxP7c1E=
Subject key identifier: 8F:89:1C:09:5F:6C:8B:71:7D:F0:0C:2D:16:B1:D4:05:66:B0:5A:8C
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 49BDCD8FC9C73AD2531C0B19C71B9BFBFD749984
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216079.roa
Signing time: Thu 29 Aug 2024 03:41:14 +0000
ROA not before: Thu 29 Aug 2024 03:36:14 +0000
ROA not after: Thu 28 Aug 2025 03:41:14 +0000
asID: 216079
IP address blocks: 2a0a:6044:ac30::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:bd:cd:8f:c9:c7:3a:d2:53:1c:0b:19:c7:1b:9b:fb:fd:74:99:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:14 2024 GMT
Not After : Aug 28 03:41:14 2025 GMT
Subject: CN=8F891C095F6C8B717DF00C2D16B1D40566B05A8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4a:89:c0:aa:cc:8b:79:cd:98:e9:bb:50:86:
56:f3:a1:39:ca:71:ac:fe:3a:71:03:e0:57:b6:81:
b8:b3:ea:d1:e8:ef:7a:46:fe:a1:37:41:86:14:c8:
01:01:67:0e:96:12:8b:a2:a6:a3:75:5c:8f:04:ba:
48:91:3c:06:82:6b:62:41:af:d5:31:7a:9c:91:c9:
04:0a:8c:38:21:51:10:1e:cc:dc:04:8f:7a:24:4c:
44:cf:3e:13:c9:76:0f:46:b0:e8:f5:08:4a:51:13:
e9:e0:bd:cd:b6:a1:60:ef:a6:a2:55:f8:57:32:38:
a1:b7:d3:28:9b:91:89:d7:09:24:ef:77:64:d0:64:
0a:2c:ca:f2:30:1d:52:f6:fd:50:1d:ee:97:0a:ef:
58:25:71:39:69:b0:3b:80:97:2b:21:c8:2a:0c:da:
05:f6:4f:a1:c1:4c:42:79:f9:10:ef:9c:61:40:5c:
ed:f2:95:4b:bb:c2:fd:46:52:7d:94:6f:a6:d4:aa:
0f:c9:6d:0d:dc:a3:26:38:7b:bd:4e:f4:fa:cd:d4:
8e:41:70:6d:e9:f9:d6:15:2b:c6:46:22:02:95:19:
27:f4:59:1f:7d:82:22:86:30:d8:c3:0c:83:b4:4b:
ef:73:bb:d2:72:7d:26:d9:ab:c0:ff:b3:24:64:4b:
16:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:89:1C:09:5F:6C:8B:71:7D:F0:0C:2D:16:B1:D4:05:66:B0:5A:8C
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216079.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:ac30::/44
Signature Algorithm: sha256WithRSAEncryption
a9:ac:78:2f:67:49:28:eb:16:80:bb:7e:13:2d:56:c8:82:90:
a2:bf:d0:f1:17:e4:14:c2:87:63:2c:1a:40:58:47:3f:12:b3:
84:c0:c6:ab:c0:00:ae:10:0e:dd:c0:44:bd:89:19:4b:16:f8:
5c:0d:e3:c8:33:ab:9a:92:4b:23:04:9b:eb:17:e8:28:e4:fb:
31:4f:3a:50:a0:71:01:7a:cf:15:b8:de:b5:e1:33:8e:8d:7c:
85:e2:ba:85:0a:15:00:30:f5:3d:c1:0f:31:31:ba:e9:fa:50:
ea:08:9d:42:2d:1c:21:89:b2:07:39:fe:ec:2c:5a:b0:e3:9a:
b2:77:d2:c4:29:20:b8:a8:95:91:09:64:62:a4:cd:2b:00:e3:
8d:a2:46:8d:35:5d:50:63:38:89:15:6a:f2:55:d1:18:b2:a7:
6c:51:f1:64:39:69:97:37:d8:0b:21:21:f7:4d:bc:9e:99:9d:
c3:ae:f8:3b:f7:ce:c7:3a:64:b8:ea:b8:fb:a6:3c:e5:f8:c7:
50:4e:25:73:8e:f8:69:10:84:8b:fb:20:7f:f6:71:38:64:5d:
70:f6:e5:35:01:80:f9:5c:49:e6:9d:83:1b:bb:01:dd:2d:21:
f7:04:58:d9:21:24:38:0d:7f:5d:70:ef:88:9b:e1:26:5d:da:
5e:71:ef:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:41:45 2025 by rpki-client