Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa
File: AS203619.roa (raw, json)
Hash identifier: 5Bey2M2b78rJEIomXVbruEMNI6Juuf4AcqGkcRp8Wv8=
Subject key identifier: 77:66:99:93:0A:4B:73:82:BA:C9:8A:1D:85:26:9D:EA:86:05:02:E4
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 679DA97AA627359A211AA32E6675BB85B0471576
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa
Signing time: Tue 20 Aug 2024 02:31:52 +0000
ROA not before: Tue 20 Aug 2024 02:26:52 +0000
ROA not after: Tue 19 Aug 2025 02:31:52 +0000
asID: 203619
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:9d:a9:7a:a6:27:35:9a:21:1a:a3:2e:66:75:bb:85:b0:47:15:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:52 2024 GMT
Not After : Aug 19 02:31:52 2025 GMT
Subject: CN=776699930A4B7382BAC98A1D85269DEA860502E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fc:0e:0a:da:d9:d5:39:bf:6b:45:d5:30:37:
84:83:c6:a6:55:93:1f:eb:f7:7b:bb:5d:5f:51:b0:
f5:9e:40:e6:06:88:9e:c2:da:63:77:6f:27:f4:4b:
12:68:8c:71:95:9f:f2:ba:5d:3a:fa:c9:79:0f:03:
fc:a7:fb:0e:42:08:a2:e5:38:a5:f1:60:99:f1:09:
53:9d:1f:fe:03:3d:5c:f0:02:b1:53:af:65:99:4d:
0d:d2:a2:4a:01:7f:fd:2b:d7:6a:13:b7:11:c5:41:
4c:b3:22:43:ce:23:a7:a8:03:d8:0c:96:c1:b9:23:
c6:c7:c2:03:ad:cc:a2:0c:7e:46:66:39:81:dc:6c:
f8:77:dc:61:82:57:a6:7c:2c:ca:8d:7c:d3:ab:cb:
34:7c:52:63:81:70:44:86:cf:a7:e3:1f:e0:4c:0c:
14:8f:0e:0f:76:f6:88:46:76:d8:69:d2:d1:a6:c5:
54:a6:9d:e4:34:83:12:1a:b6:74:21:04:f6:56:bb:
5d:a9:83:37:37:cf:49:36:ff:7a:a5:a4:19:0a:63:
7c:c2:24:9a:61:c5:10:31:b3:f2:83:01:dd:f5:ed:
d9:32:78:46:0c:7d:72:a3:6f:f2:31:fa:60:01:ed:
66:a3:40:a9:64:18:00:13:f0:a7:3c:40:52:0f:c5:
89:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:66:99:93:0A:4B:73:82:BA:C9:8A:1D:85:26:9D:EA:86:05:02:E4
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
39:ba:8b:35:c2:52:67:ad:0a:19:eb:ff:cd:a1:69:ed:ed:71:
14:60:ef:ae:70:08:d5:e6:2d:ec:af:a7:03:2a:c7:15:cd:d2:
04:d5:02:d4:f6:f4:1c:c4:4e:3b:0e:96:e9:b3:2e:7c:ff:15:
a9:de:54:7f:d0:5c:71:1a:22:f3:e1:5e:a2:e4:ff:65:5b:85:
ea:ea:86:de:3b:6b:65:32:70:92:81:fc:5d:bf:b9:cd:c9:d0:
d3:ec:54:6f:e9:d8:39:3a:f4:43:a9:a6:28:77:bc:7c:5b:db:
0c:62:31:83:52:5e:41:8b:3f:af:b4:62:cf:a9:51:3e:23:b1:
e6:f6:42:93:3f:9c:14:47:86:87:9f:db:32:d5:61:d5:08:e9:
d4:71:07:49:51:14:d4:a3:bb:00:e9:f9:41:05:db:e0:9e:86:
ca:7f:98:72:0a:28:42:38:ff:08:df:d3:3a:18:19:2c:2e:c2:
c4:18:ae:06:ff:49:6e:1c:ef:1b:b5:39:5c:37:82:36:37:a0:
a0:fd:3f:3c:6b:4f:86:dc:8b:69:13:93:e5:a8:48:f0:c4:25:
70:af:3d:b7:3d:59:ad:9e:1d:a7:83:59:cb:23:75:7a:54:fc:
42:d2:19:2c:6a:a0:a5:f1:ba:a2:12:d6:0d:37:07:ce:aa:b2:
c1:23:d5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:05:54 2025 by rpki-client