Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214477.roa
File: AS214477.roa (raw, json)
Hash identifier: FcHAgcxdQibmKhKDjPvWrQg7SQxCX2ZXQDlWXSXCmDY=
Subject key identifier: A8:F0:F5:66:B9:AB:E9:A3:A2:A7:A2:FE:1E:EF:70:4A:5A:4F:5D:EE
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 4BADDACE71913EE895F6E1089E2A07E95F275122
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214477.roa
Signing time: Tue 04 Feb 2025 00:17:08 +0000
ROA not before: Tue 04 Feb 2025 00:12:08 +0000
ROA not after: Tue 03 Feb 2026 00:17:08 +0000
asID: 214477
IP address blocks: 2a14:7581:fe0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ad:da:ce:71:91:3e:e8:95:f6:e1:08:9e:2a:07:e9:5f:27:51:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Feb 4 00:12:08 2025 GMT
Not After : Feb 3 00:17:08 2026 GMT
Subject: CN=A8F0F566B9ABE9A3A2A7A2FE1EEF704A5A4F5DEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:ff:72:41:6c:0f:72:65:e3:78:81:82:3b:
53:dd:93:22:7b:66:9a:14:d7:7d:7a:ac:9e:c4:ae:
70:d9:18:0c:bc:82:e0:97:f8:eb:d9:07:f3:c5:ff:
8b:91:f7:7a:ed:a4:7d:9e:53:87:f5:a5:44:f5:4c:
23:7e:90:de:4f:27:0e:f5:0b:9b:13:8c:df:0f:b2:
61:04:a9:2a:f2:df:63:30:2b:d1:e1:47:b9:fb:bf:
55:af:26:68:a0:e5:ce:b4:82:b8:06:35:d8:a9:a1:
24:10:09:7f:b0:77:76:b3:af:4b:da:02:65:b8:9e:
4d:80:aa:fc:05:9e:47:fa:11:ae:9c:d7:e0:93:1f:
bd:58:55:20:e4:e9:ba:95:0e:10:5b:84:6f:b9:d7:
4b:37:64:d8:37:14:96:6b:af:9c:24:4e:e1:b5:16:
73:fa:de:92:8f:b5:81:fd:83:98:0c:a4:d9:5b:ac:
d7:07:b5:b2:ad:01:e9:4b:de:30:f3:6c:05:af:ce:
a7:39:dd:a3:59:c8:d3:83:82:9f:ee:f5:f6:c6:8c:
dd:6c:4f:0d:37:77:66:59:76:99:4f:b8:76:67:b3:
21:f5:3d:d6:d3:ca:f1:d8:1c:62:d0:06:25:78:55:
dd:24:a7:c4:4e:d3:eb:a1:c4:71:98:c3:02:ae:99:
cf:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F0:F5:66:B9:AB:E9:A3:A2:A7:A2:FE:1E:EF:70:4A:5A:4F:5D:EE
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS214477.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:fe0::/48
Signature Algorithm: sha256WithRSAEncryption
62:01:62:98:bb:57:36:86:3a:f2:0f:cd:49:d1:98:21:ab:fa:
d3:8e:6c:23:7a:f4:5e:e0:73:a3:57:3f:bd:9a:a4:a1:f5:4f:
17:2b:5e:f6:5c:e8:88:8e:e9:13:29:16:3c:56:30:95:5a:4c:
46:ca:d5:6d:60:ac:cb:e9:7c:19:01:99:67:3b:83:e7:08:8c:
f2:2f:e5:08:e2:22:16:54:19:88:71:d7:f9:3d:b7:4c:e7:4b:
37:69:35:1b:65:4a:7e:1b:1d:4c:7a:c4:66:9b:ae:f3:6a:b2:
cf:87:f6:07:87:26:11:51:23:a0:2c:c1:71:d9:26:97:23:e5:
fe:fd:ef:7f:14:ad:6f:e3:73:77:4a:cb:47:b3:f3:8e:8c:cb:
ca:c6:e4:93:1a:ee:03:50:43:2f:41:79:4a:5d:d4:1e:03:f8:
c3:f8:d0:ed:1c:37:d7:18:24:3e:39:1d:a5:45:7b:94:9a:e9:
25:6b:7f:43:1e:f8:85:bf:52:8b:27:f0:1a:0d:cc:b2:15:f7:
73:1c:00:2d:30:29:dc:8c:fa:af:c4:cc:3e:34:cb:22:d0:ea:
04:41:c9:7e:cb:bf:fa:97:53:f7:0b:9b:d3:76:01:ad:67:ec:
3c:14:c1:eb:c7:e2:e0:d4:30:9b:3e:1b:9b:82:22:99:e9:a5:
c8:b6:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:13:59 2025 by rpki-client