Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS36832.roa
File: AS36832.roa (raw, json)
Hash identifier: Zltw5hnjIKe4eT6PWF6AueYtbtaFzECtSb2zVaglow8=
Subject key identifier: 5E:6E:8A:3C:29:4E:13:7D:7C:B0:5A:D5:49:70:76:09:67:54:E2:97
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 350D6FB7F4D1380E3D2C0A99ECDDC8AC31F2F0F9
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS36832.roa
Signing time: Thu 29 Aug 2024 03:41:17 +0000
ROA not before: Thu 29 Aug 2024 03:36:17 +0000
ROA not after: Thu 28 Aug 2025 03:41:17 +0000
asID: 36832
IP address blocks: 2a0a:6044:c000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:0d:6f:b7:f4:d1:38:0e:3d:2c:0a:99:ec:dd:c8:ac:31:f2:f0:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 29 03:36:17 2024 GMT
Not After : Aug 28 03:41:17 2025 GMT
Subject: CN=5E6E8A3C294E137D7CB05AD5497076096754E297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:12:8e:8c:9d:a5:3d:48:9f:d3:d0:a0:b6:f9:
f6:04:9c:ff:58:10:2a:56:cf:ab:28:84:87:be:ec:
ee:de:6a:7b:ec:90:97:20:8b:7f:f0:5f:15:3a:20:
70:65:fb:98:ec:1b:f5:02:fe:62:9e:9e:9f:91:f6:
32:47:58:10:26:f2:70:38:ab:ba:9c:5d:4b:91:c3:
0c:c3:3a:f2:79:24:39:50:cb:eb:c2:d4:71:b7:cb:
b4:26:96:5e:9b:be:be:06:27:84:fd:69:aa:e1:ca:
4b:24:f9:c1:21:f1:ac:f8:21:d2:92:1b:52:52:67:
8a:33:f2:f2:0d:4c:85:47:3d:ad:8b:73:8a:a3:a0:
f6:a5:f7:04:58:1a:a7:8e:4c:1e:d2:d6:4b:01:22:
86:5e:6c:11:db:6c:08:30:df:48:1b:9a:63:ac:8f:
21:82:6c:0e:4b:e3:ce:24:2e:d1:a6:e9:5d:84:20:
b8:48:c0:8d:79:bf:16:d1:fd:63:38:de:03:a7:3d:
d2:d9:67:3e:37:8e:49:d1:ae:03:c8:bc:43:70:b4:
ed:8d:4d:ac:b1:fa:88:c3:d0:5e:1f:f8:f7:c4:5d:
44:79:bb:1a:3c:9a:1f:77:2f:c0:19:7e:47:83:c8:
f2:e2:27:ee:95:75:b4:d3:ce:52:53:20:ac:4d:97:
13:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6E:8A:3C:29:4E:13:7D:7C:B0:5A:D5:49:70:76:09:67:54:E2:97
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS36832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:c000::/40
Signature Algorithm: sha256WithRSAEncryption
8b:50:f4:0f:9e:f8:1b:0a:53:55:7b:15:19:0e:8a:4c:e3:85:
92:d7:91:36:30:ef:7a:74:a8:68:d6:76:fd:a3:68:a2:8c:ee:
7e:03:32:2c:82:58:2b:67:f4:d5:94:9d:ad:ab:24:52:25:fa:
72:ba:fb:a6:85:4e:7d:21:d0:c9:48:ed:b1:8a:2d:92:e3:a3:
82:90:d5:80:48:f7:2a:d1:14:8d:a0:5a:3a:b6:13:77:39:f0:
59:8e:0d:96:38:f0:ae:1c:f2:78:3b:e4:b3:0d:95:11:c8:35:
7a:4f:b4:8c:c4:6f:78:d3:b5:7a:1c:bc:90:e2:a0:17:cd:b3:
af:ae:48:d8:54:c7:21:b2:ff:bf:cf:88:85:67:0b:f7:cd:10:
b1:ca:b5:af:7b:4d:88:dd:19:3e:f3:6a:55:86:8d:1c:8c:bb:
db:d0:91:fa:ad:1d:42:d6:93:2f:27:cb:66:d0:c6:6c:e4:81:
6e:52:30:ea:48:65:95:6f:dd:30:c2:f4:d2:6a:71:12:b3:61:
4f:3b:9a:7f:ca:a9:52:30:f2:19:12:dc:2d:01:7d:a5:95:34:
aa:08:f7:bd:2d:5a:7c:73:32:36:ca:37:ad:f9:1d:39:c0:55:
c2:35:87:5f:af:ab:c9:dd:3a:cd:91:60:ee:d2:eb:d3:f0:f6:
1d:0a:8d:a8
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUNQ1vt/TROA49LAqZ7N3IrDHy8PkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV
BAMTKDVFNkU4QTNDMjk0RTEzN0Q3Q0IwNUFENTQ5NzA3NjA5Njc1NEUyOTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYEo6MnaU9SJ/T0KC2+fYEnP9Y
ECpWz6sohIe+7O7eanvskJcgi3/wXxU6IHBl+5jsG/UC/mKenp+R9jJHWBAm8nA4
q7qcXUuRwwzDOvJ5JDlQy+vC1HG3y7Qmll6bvr4GJ4T9aarhyksk+cEh8az4IdKS
G1JSZ4oz8vINTIVHPa2Lc4qjoPal9wRYGqeOTB7S1ksBIoZebBHbbAgw30gbmmOs
jyGCbA5L484kLtGm6V2EILhIwI15vxbR/WM43gOnPdLZZz43jknRrgPIvENwtO2N
Tayx+ojD0F4f+PfEXUR5uxo8mh93L8AZfkeDyPLiJ+6VdbTTzlJTIKxNlxP/AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUXm6KPClOE318sFrVSXB2CWdU4pcwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMzY4MzIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqCmBE
wDANBgkqhkiG9w0BAQsFAAOCAQEAi1D0D574GwpTVXsVGQ6KTOOFkteRNjDvenSo
aNZ2/aNooozufgMyLIJYK2f01ZSdraskUiX6crr7poVOfSHQyUjtsYotkuOjgpDV
gEj3KtEUjaBaOrYTdznwWY4NljjwrhzyeDvksw2VEcg1ek+0jMRveNO1ehy8kOKg
F82zr65I2FTHIbL/v8+IhWcL980Qscq1r3tNiN0ZPvNqVYaNHIy729CR+q0dQtaT
LyfLZtDGbOSBblIw6khllW/dMML00mpxErNhTzuaf8qpUjDyGRLcLQF9pZU0qgj3
vS1afHMyNso3rfkdOcBVwjWHX6+ryd06zZFg7tLr0/D2HQqNqA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:42:02 2025 by rpki-client