Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa
File: AS202262.roa (raw, json)
Hash identifier: /ILenq2045waKRTlTy6sULY7KoXE5ucQEZLN3yHVdms=
Subject key identifier: 4F:CE:90:0D:BE:C5:AD:41:48:3D:37:A0:98:33:34:C4:D1:B8:96:E3
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 2862A717AEB4D1D7652DCD85EA4B51AD2690CF1D
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa
Signing time: Tue 20 Aug 2024 02:31:57 +0000
ROA not before: Tue 20 Aug 2024 02:26:57 +0000
ROA not after: Tue 19 Aug 2025 02:31:57 +0000
asID: 202262
IP address blocks: 2a07:54c1:3000::/40 maxlen: 48
2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:62:a7:17:ae:b4:d1:d7:65:2d:cd:85:ea:4b:51:ad:26:90:cf:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:57 2024 GMT
Not After : Aug 19 02:31:57 2025 GMT
Subject: CN=4FCE900DBEC5AD41483D37A0983334C4D1B896E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1e:76:b1:a3:36:87:89:7e:32:27:c4:46:2d:
8e:2e:44:c9:b8:c7:f4:fd:75:b0:fe:f6:bc:98:8f:
99:ee:f7:4d:dc:ef:ef:ba:a4:39:f9:24:db:c9:d9:
cb:f8:89:63:7c:16:fe:af:de:b7:1f:84:81:f1:c8:
23:97:65:b5:a3:df:c9:f7:69:af:50:c7:d9:50:91:
ce:9c:1f:5d:2f:04:8b:d3:82:72:b3:5b:09:53:bf:
4a:6b:e0:2b:3b:4f:57:08:24:8b:ce:0d:b5:c4:f8:
71:e2:d7:11:12:e6:7b:ed:40:8d:3c:45:c5:ba:d3:
b2:c9:dd:5e:03:a6:1b:ff:e0:18:94:4e:79:d7:4a:
50:f4:42:7a:a0:7f:27:6c:ec:18:6b:1c:ea:fd:5f:
b5:46:41:39:46:74:6a:a5:bc:cb:48:de:20:13:6b:
77:db:89:65:cc:77:92:fa:38:04:a7:a1:d6:76:75:
4a:95:08:fb:0a:61:d3:33:33:21:6f:07:18:14:d9:
91:96:9c:a1:96:16:3a:d3:e3:2d:38:6d:83:2a:44:
4b:fb:b9:97:31:3c:f0:2f:c3:33:8e:f0:58:2e:a9:
ab:24:91:62:26:62:26:54:d7:4f:bc:05:60:db:bf:
9d:97:4d:fd:e0:38:ed:4d:82:05:d7:07:0a:f7:d0:
c2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CE:90:0D:BE:C5:AD:41:48:3D:37:A0:98:33:34:C4:D1:B8:96:E3
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3000::/40
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
51:f0:6a:0d:0f:a0:66:ef:f6:9f:f5:26:cb:46:cc:c2:3d:dd:
48:b5:e6:a5:92:40:75:7d:f9:77:93:ae:94:c9:57:65:e7:6b:
fe:14:e6:99:b7:14:0c:c9:cd:46:14:3a:3f:51:73:86:0b:61:
1a:4b:ff:79:1f:fb:04:f8:eb:38:db:67:98:34:17:0d:56:a4:
17:4d:5c:d0:e1:25:d2:aa:0c:12:e0:e8:f9:f7:ce:a6:c1:16:
b9:fe:39:1b:76:c7:78:fd:db:0c:68:4c:d0:5b:2a:ae:21:3f:
a6:85:72:18:35:cd:f9:55:de:d9:6e:b9:bc:8e:24:f6:ef:80:
58:c2:83:f4:61:10:8f:bd:79:cc:d2:db:a5:15:61:32:d8:d0:
7e:b4:d1:72:86:7d:fc:5f:73:7b:0c:fb:90:60:96:6a:6f:2f:
e7:35:89:84:77:bc:9a:e0:b5:57:81:b3:60:23:5c:61:b6:cc:
34:56:55:46:bc:7b:57:34:a1:3b:d5:01:8f:a1:41:18:b2:9f:
44:70:a9:9f:8d:93:dc:35:84:ed:be:42:6f:7d:7c:a4:0f:72:
b3:6f:e8:ec:4b:87:fb:f6:e4:3a:fd:8f:ee:6c:c8:0c:31:1d:
e2:63:6b:8a:c4:75:c1:2e:0a:2e:a0:2d:14:4b:07:bd:05:93:
0a:cf:86:02
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 17:04:47 2025 by rpki-client