Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa
File: AS202828.roa (raw, json)
Hash identifier: zqqEyx5Y2z1JeAUIshQV+AUcJVQXYeMtia2M2kP8Tig=
Subject key identifier: 48:9C:F1:A9:62:13:E7:0B:CA:BA:D2:8C:FB:9B:5B:A5:85:69:B7:2E
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 0783CB1EEEC209F723F4181EA8150F7AF2F9F809
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa
Signing time: Tue 20 Aug 2024 02:31:57 +0000
ROA not before: Tue 20 Aug 2024 02:26:57 +0000
ROA not after: Tue 19 Aug 2025 02:31:57 +0000
asID: 202828
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:83:cb:1e:ee:c2:09:f7:23:f4:18:1e:a8:15:0f:7a:f2:f9:f8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:57 2024 GMT
Not After : Aug 19 02:31:57 2025 GMT
Subject: CN=489CF1A96213E70BCABAD28CFB9B5BA58569B72E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:da:a1:0c:3b:01:27:09:02:19:9e:b5:f6:
ef:02:e2:8a:78:1d:c6:7f:0b:bf:51:8d:86:57:56:
52:60:b3:2f:a8:d5:29:ac:13:10:38:ba:da:f3:3a:
11:d2:b9:2b:af:30:66:57:30:1c:91:b4:cd:0a:1a:
ff:44:cb:90:2d:51:13:40:4e:05:0c:c8:9b:67:cb:
28:60:9f:10:fe:59:54:03:5b:62:e1:6a:1d:e0:f3:
66:ee:40:e4:bf:44:79:7a:ed:af:71:f0:28:58:5f:
71:8c:3c:08:f4:6d:2e:49:d9:df:83:36:50:4c:1b:
be:dd:82:fd:11:46:a0:19:bc:30:d6:c2:5a:60:42:
53:2f:2c:f2:60:f7:11:7a:c6:0e:59:b7:03:4a:a1:
8c:87:27:e1:a6:d6:d0:d9:48:dc:52:7d:fd:57:b5:
8b:e1:83:09:d1:7d:01:35:a7:7b:b2:21:69:fa:f9:
93:94:ec:5c:93:a6:4f:9c:a8:4e:bc:f2:49:35:c2:
af:b8:bc:b8:85:ae:4e:60:9e:fb:54:84:d4:e1:ac:
ca:20:5c:c6:49:35:69:0f:70:ee:57:61:ff:5c:4b:
eb:6c:3e:91:99:55:30:0c:91:91:63:24:06:0f:53:
b6:e3:eb:4f:15:d3:85:45:38:35:bf:5d:24:04:cd:
51:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9C:F1:A9:62:13:E7:0B:CA:BA:D2:8C:FB:9B:5B:A5:85:69:B7:2E
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
3a:8a:7e:cf:1d:0d:f0:15:34:c4:bb:22:9e:49:38:d8:03:da:
af:b7:72:28:d1:c1:c7:ff:3b:7c:f7:72:7f:f5:ed:fe:72:15:
48:7e:45:52:b9:a8:7d:ce:89:d5:6c:95:d4:44:e1:46:a5:ec:
fa:fc:e8:28:f3:af:65:fb:64:df:d5:34:11:fc:8f:cd:11:7e:
e8:6c:b5:be:48:d6:89:89:a0:2a:a1:14:d5:f5:d1:22:80:cd:
90:1f:f8:5f:d2:8e:89:d8:19:d9:74:e8:52:8d:8a:b4:9e:90:
d9:96:2e:fb:ec:88:75:0e:15:77:8e:2d:3b:9f:d2:d4:cd:12:
5c:cb:eb:46:52:f3:ee:b2:d4:0f:0a:e4:c8:ea:15:14:55:30:
60:27:f0:7a:f1:ea:32:d6:31:39:da:c5:5d:66:25:c0:86:24:
15:17:4b:e5:cb:58:ba:61:60:ae:26:ec:3d:d2:68:5a:a2:99:
22:8a:1a:02:a2:ad:52:90:d8:3a:e1:48:1e:fa:d2:f0:db:19:
3e:32:06:07:af:15:6b:2d:1b:86:b9:9d:52:09:e6:43:42:4c:
c8:e2:19:79:07:de:19:e1:2f:89:49:b0:cb:ce:90:99:24:b3:
1a:22:9c:a4:47:0e:b2:91:33:25:45:e3:7f:61:b3:f1:06:d1:
ac:2c:15:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:05:58 2025 by rpki-client