Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa
File: AS197532.roa (raw, json)
Hash identifier: t+e00EM4B3Fo3W5dnLrM7uQm0j/JMfaCnLgOlvbaS/s=
Subject key identifier: 73:BF:FA:BF:AE:02:A7:B8:68:EC:AA:7D:1F:9B:BF:1B:E8:1E:4E:91
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 592D48487905C9BA0947EAF363BD4D3A90BC7F37
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa
Signing time: Tue 20 Aug 2024 02:31:56 +0000
ROA not before: Tue 20 Aug 2024 02:26:56 +0000
ROA not after: Tue 19 Aug 2025 02:31:56 +0000
asID: 197532
IP address blocks: 2a07:54c1:3600::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:2d:48:48:79:05:c9:ba:09:47:ea:f3:63:bd:4d:3a:90:bc:7f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:56 2024 GMT
Not After : Aug 19 02:31:56 2025 GMT
Subject: CN=73BFFABFAE02A7B868ECAA7D1F9BBF1BE81E4E91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:3a:60:ad:e2:9c:09:67:c3:1b:d9:5a:70:
a9:0e:bd:b8:42:7e:6c:e7:87:9b:37:b1:59:be:88:
19:4f:b6:c1:34:15:cc:6b:14:7c:b6:8a:f5:68:7b:
a2:49:fe:1b:c3:0b:d7:b3:b5:a7:d4:3c:25:6a:71:
cf:73:06:28:59:9c:72:bf:99:68:02:39:e5:91:5f:
6c:0e:b4:d0:6c:3e:d7:45:d7:be:d2:e5:4b:54:a2:
45:3e:9d:6b:0c:6e:91:10:be:2f:f4:e2:28:6c:e2:
97:77:4a:e4:e8:36:65:88:f4:bd:96:a0:ce:25:bc:
18:b6:48:36:85:d4:f9:b4:83:bc:26:73:fe:95:03:
7b:57:01:1a:5b:c3:4e:65:c8:b6:fb:35:af:0e:ec:
92:bf:df:9f:40:1e:8d:97:1a:f0:95:e8:b6:7d:f1:
3a:62:94:e7:93:c7:6b:12:f5:27:27:9f:a5:1d:47:
0d:e5:49:87:de:54:c7:46:89:c9:87:d7:1f:55:0c:
bc:9a:5f:5c:3d:78:88:ee:0c:81:11:43:aa:42:99:
92:4b:28:b7:6f:d6:4e:2e:b1:94:56:7e:14:f8:08:
0b:2a:0f:05:fa:d6:fe:eb:ce:99:e4:b5:1c:6a:b0:
93:c1:c5:49:96:17:ab:98:c8:16:ce:b2:d2:37:ec:
7e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BF:FA:BF:AE:02:A7:B8:68:EC:AA:7D:1F:9B:BF:1B:E8:1E:4E:91
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3600::/40
Signature Algorithm: sha256WithRSAEncryption
6b:e2:1b:d3:82:49:6f:49:c3:c7:b4:06:71:7c:b3:c6:8d:76:
e9:89:37:94:d5:ef:63:52:52:c6:87:04:c5:f2:97:a8:35:0b:
25:cf:b6:6a:21:36:a7:2a:a3:4f:46:85:0b:3a:5d:e2:02:81:
66:99:26:50:69:3d:0f:47:eb:20:b3:6f:10:dc:f8:f3:17:82:
58:a6:d8:a1:04:64:f5:dc:70:4b:04:67:f8:5e:1c:e0:37:cd:
d1:7b:25:2c:de:77:5c:87:09:72:e1:ed:07:35:2f:26:48:2a:
18:b2:2c:70:d2:92:19:85:b6:7d:89:1a:65:f1:2c:39:68:1b:
61:51:26:f3:bc:a2:33:d8:a8:b6:04:b9:a3:9d:63:ae:fb:91:
e1:9b:66:3e:f7:0b:0f:e3:b4:88:4d:69:7c:d9:44:d1:53:dd:
3c:fe:cf:e5:b7:be:63:fe:91:67:96:20:4e:e8:a1:60:86:c5:
0c:3c:72:c9:34:bb:e9:bc:f8:b3:a0:4c:92:cb:fb:aa:6c:ed:
93:9b:68:99:82:c6:6e:e1:d3:fd:4c:e9:cc:73:8d:84:13:5b:
54:28:08:15:2b:c2:27:b2:6c:b7:1b:a4:69:28:3b:f3:20:d4:
7c:de:f3:f5:c9:37:5f:7d:75:8f:d1:14:cf:3d:0c:48:df:3a:
eb:cb:5a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:05:53 2025 by rpki-client