Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
File: AS47272.roa (raw, json)
Hash identifier: 6TXQVVXBM/LhuINYTd3ie/pXiYpMWIll2K9n8JLYFZE=
Subject key identifier: 51:F7:4E:55:05:3C:9F:32:4F:81:E6:5A:6D:42:FA:15:CF:C1:5B:08
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 75525399BFEF51A7EDA05348FCFC54B38E34505A
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
Signing time: Sun 26 Jan 2025 11:39:53 +0000
ROA not before: Sun 26 Jan 2025 11:34:53 +0000
ROA not after: Sun 25 Jan 2026 11:39:53 +0000
asID: 47272
IP address blocks: 118.91.184.0/24 maxlen: 32
118.91.185.0/24 maxlen: 32
195.184.247.0/24 maxlen: 32
2a05:dfc2::/32 maxlen: 32
2a06:1281:1000::/36 maxlen: 36
2a06:1284::/32 maxlen: 32
2a09:54c6::/36 maxlen: 36
2a09:54c6:f000::/36 maxlen: 44
2a0a:6041::/32 maxlen: 40
2a0a:6044::/48 maxlen: 48
2a0a:6044:1::/48 maxlen: 48
2a0a:6044:2::/48 maxlen: 48
2a0a:6044:3::/48 maxlen: 48
2a0a:6044:4::/48 maxlen: 48
2a0a:6044:5::/48 maxlen: 48
2a0a:6044:6::/48 maxlen: 48
2a0a:6044:7::/48 maxlen: 48
2a0a:6044:8::/48 maxlen: 48
2a0a:6044:9::/48 maxlen: 48
2a0a:6044:a::/48 maxlen: 48
2a0a:6044:b::/48 maxlen: 48
2a0a:6044:10::/48 maxlen: 48
2a0a:6044:100::/40 maxlen: 48
2a0a:6044:7200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:52:53:99:bf:ef:51:a7:ed:a0:53:48:fc:fc:54:b3:8e:34:50:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Jan 26 11:34:53 2025 GMT
Not After : Jan 25 11:39:53 2026 GMT
Subject: CN=51F74E55053C9F324F81E65A6D42FA15CFC15B08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0e:e9:89:c4:f3:c0:d3:cc:fe:7c:25:6c:1c:
2b:8a:70:3b:8c:d2:76:b3:eb:83:75:30:44:d3:7a:
67:24:b6:a3:b1:b9:2b:61:db:66:3d:79:33:8e:81:
4e:a3:e3:47:9e:42:d1:da:a2:30:60:de:e3:43:4d:
69:b1:b0:dd:71:71:f3:7e:65:34:78:41:c7:75:cf:
fb:18:ad:6a:c5:3f:d7:94:32:72:c5:8a:e1:05:7c:
94:74:5d:19:38:32:1e:54:c1:bd:58:58:d2:e3:38:
09:3c:6e:e9:3d:52:a9:7b:29:4b:bf:bb:44:19:39:
36:79:14:20:73:38:0d:5d:16:1f:59:89:85:24:ba:
08:75:f4:d6:e6:45:e4:ac:cf:53:90:e4:fa:c4:4d:
76:a2:53:bf:0d:a2:f2:c8:e8:de:c1:fe:a4:a7:e5:
1c:cf:4f:53:4e:26:0d:d1:d0:32:3e:aa:6c:c0:3a:
71:21:e5:17:2b:af:6a:01:00:4e:f6:2f:ef:bf:79:
ff:13:73:1c:33:e1:69:9e:cc:65:4b:ce:e5:8a:44:
49:61:18:e1:10:ed:51:cc:8d:f2:7b:18:36:e3:bc:
79:a0:00:e5:97:fa:cb:54:3f:cf:5b:17:5c:64:fb:
a2:93:a9:e4:bc:61:c9:1e:25:e4:b5:7e:46:fd:a9:
c6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F7:4E:55:05:3C:9F:32:4F:81:E6:5A:6D:42:FA:15:CF:C1:5B:08
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS47272.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.91.184.0/23
195.184.247.0/24
IPv6:
2a05:dfc2::/32
2a06:1281:1000::/36
2a06:1284::/32
2a09:54c6::/36
2a09:54c6:f000::/36
2a0a:6041::/32
2a0a:6044::-2a0a:6044:b:ffff:ffff:ffff:ffff:ffff
2a0a:6044:10::/48
2a0a:6044:100::/40
2a0a:6044:7200::/40
Signature Algorithm: sha256WithRSAEncryption
3d:18:ea:81:60:a5:b0:8c:dd:0e:72:8b:12:da:d3:7a:fb:7b:
e1:5d:66:20:63:06:0c:6a:99:7e:f0:d6:30:ff:2f:6c:64:74:
bc:c3:3a:1f:17:7c:34:3b:48:59:ed:01:18:60:7c:ca:46:65:
b2:07:ce:ea:ac:5e:54:c3:7b:b0:c9:7d:f6:fb:2b:ee:a7:07:
27:cd:66:46:ff:43:60:e9:47:93:00:f0:38:45:f1:6f:48:a6:
15:50:24:45:58:52:3e:33:ec:79:5f:1e:71:fd:d5:df:59:a8:
61:68:0d:19:18:cc:54:53:5c:c0:b3:61:7f:a5:61:7c:9b:80:
d6:8a:35:82:4e:cb:ef:4c:41:ef:a2:7d:7c:07:90:e7:55:09:
c4:da:e0:35:f8:29:58:fe:3b:d4:43:cb:aa:c6:4f:fe:fc:be:
eb:75:f4:f3:88:56:e2:21:0f:5c:18:26:cc:bc:e4:ff:f4:c8:
0f:7b:ab:21:c7:25:f0:a2:76:fc:59:c8:cb:2e:78:14:5d:23:
b8:18:6c:52:92:34:79:12:de:8c:7a:08:8b:99:de:0d:45:9f:
26:c1:26:ba:bd:32:8c:d1:b3:ac:fb:8c:ec:33:45:84:36:45:
3d:71:2d:ca:c7:b9:f3:c6:a6:53:bb:50:dc:3c:92:f0:a8:80:
2e:d6:9a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:42:03 2025 by rpki-client