Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa
File: AS207598.roa (raw, json)
Hash identifier: 7U79g3DrLQe1KQQZiSsSyNf0Ymgu7zjmWYseG18tvO0=
Subject key identifier: 74:18:2F:D5:D5:B9:B2:A4:F2:62:7B:50:B7:87:B9:7F:3E:6E:EC:51
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 092FAF1215131660866B75F7E09C954C92448439
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa
Signing time: Wed 28 May 2025 18:20:52 +0000
ROA not before: Wed 28 May 2025 18:15:52 +0000
ROA not after: Wed 27 May 2026 18:20:52 +0000
asID: 207598
IP address blocks: 2a07:54c4:73d1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:2f:af:12:15:13:16:60:86:6b:75:f7:e0:9c:95:4c:92:44:84:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: May 28 18:15:52 2025 GMT
Not After : May 27 18:20:52 2026 GMT
Subject: CN=74182FD5D5B9B2A4F2627B50B787B97F3E6EEC51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:69:ff:cc:c4:85:b2:9d:2c:04:17:5b:21:
74:79:8b:37:cf:41:bf:cc:34:ba:ac:f9:7f:11:cb:
36:97:80:06:ce:60:b0:51:63:bd:77:eb:9f:0c:81:
a4:f5:92:a6:71:ca:c2:8f:d1:8a:9b:d9:b2:c4:cd:
6a:9b:59:45:58:fd:0e:c3:1e:ef:4f:f2:f8:1a:c3:
18:50:e6:30:36:e0:e6:d9:f7:f1:3b:da:e7:2f:61:
36:73:7f:1a:65:2e:54:b5:3f:82:5f:86:41:5e:a2:
17:fb:41:6e:8f:33:8e:fc:a7:79:90:e9:69:a7:08:
30:23:9a:20:f6:f3:8f:cb:46:53:cb:5f:92:0b:db:
29:c1:bc:b0:4d:e4:d9:b3:98:ff:b5:ae:85:10:92:
bc:e0:ef:00:94:35:5c:6f:cb:73:df:d5:bf:81:12:
43:f7:49:1e:8a:60:83:15:ea:bb:97:b7:c3:7f:b2:
04:e1:e3:8b:50:bd:3e:18:5e:2f:88:d5:a8:69:67:
22:d0:3a:3c:4f:1f:26:8f:8b:1e:aa:7a:53:39:7f:
3e:14:05:85:bd:67:c6:11:4c:9f:5f:56:f9:bd:97:
c9:1c:20:bb:24:9f:e7:a0:6d:85:42:b9:3e:c7:c6:
36:8b:f8:f5:8b:f6:8b:3e:82:61:91:e6:aa:64:bc:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:18:2F:D5:D5:B9:B2:A4:F2:62:7B:50:B7:87:B9:7F:3E:6E:EC:51
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c4:73d1::/48
Signature Algorithm: sha256WithRSAEncryption
07:7d:25:97:82:92:9c:ea:03:0d:f5:07:c8:b1:f2:ac:e7:f9:
70:fb:51:77:6f:dc:6f:0d:f1:ea:82:61:9d:13:3a:a3:81:f0:
ac:e1:1a:a8:ae:e8:f9:9a:62:56:b4:89:d1:e6:57:03:db:8b:
aa:17:77:d6:af:c7:fc:43:d3:61:b3:8a:78:d8:59:7c:be:f7:
c5:56:3c:a9:d5:a1:3f:24:d0:fb:92:e9:0c:c1:09:73:88:e5:
5c:12:c1:e3:86:87:95:60:a1:8b:85:41:5d:76:2a:65:0a:af:
be:a2:d2:69:66:df:1a:d7:62:68:c3:af:1a:0e:ca:6c:82:12:
42:5c:a6:f4:89:03:e7:df:06:33:9f:a4:e1:4d:61:9d:3d:47:
23:c6:d6:7b:35:11:f6:eb:0f:0b:97:5c:b1:fe:c4:38:03:74:
32:7e:a5:62:64:b4:ad:a7:d5:5f:ef:d0:df:66:50:44:d4:d4:
c4:9a:9f:b7:56:df:f7:c2:8b:b8:f8:bc:32:29:af:8f:13:6a:
a4:b2:3a:5f:7a:de:5e:37:62:24:85:98:d0:33:b2:de:b4:fe:
cd:0d:12:a9:c1:2e:c2:e9:92:8e:44:61:59:ab:96:eb:60:bd:
a7:f6:88:f8:35:e5:6f:77:59:73:3c:75:4d:43:58:f9:c4:87:
d9:a0:46:ca
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUCS+vEhUTFmCGa3X34JyVTJJEhDkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw
RTFFMkY4RTAeFw0yNTA1MjgxODE1NTJaFw0yNjA1MjcxODIwNTJaMDMxMTAvBgNV
BAMTKDc0MTgyRkQ1RDVCOUIyQTRGMjYyN0I1MEI3ODdCOTdGM0U2RUVDNTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyi2n/zMSFsp0sBBdbIXR5izfP
Qb/MNLqs+X8RyzaXgAbOYLBRY713658MgaT1kqZxysKP0Yqb2bLEzWqbWUVY/Q7D
Hu9P8vgawxhQ5jA24ObZ9/E72ucvYTZzfxplLlS1P4JfhkFeohf7QW6PM478p3mQ
6WmnCDAjmiD284/LRlPLX5IL2ynBvLBN5NmzmP+1roUQkrzg7wCUNVxvy3Pf1b+B
EkP3SR6KYIMV6ruXt8N/sgTh44tQvT4YXi+I1ahpZyLQOjxPHyaPix6qelM5fz4U
BYW9Z8YRTJ9fVvm9l8kcILskn+egbYVCuT7HxjaL+PWL9os+gmGR5qpkvAV/AgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUdBgv1dW5sqTyYntQt4e5fz5u7FEwHwYDVR0j
BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh
ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF
MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt
NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3NTk4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU
xHPRMA0GCSqGSIb3DQEBCwUAA4IBAQAHfSWXgpKc6gMN9QfIsfKs5/lw+1F3b9xv
DfHqgmGdEzqjgfCs4Rqoruj5mmJWtInR5lcD24uqF3fWr8f8Q9Nhs4p42Fl8vvfF
Vjyp1aE/JND7kukMwQlziOVcEsHjhoeVYKGLhUFddiplCq++otJpZt8a12Jow68a
DspsghJCXKb0iQPn3wYzn6ThTWGdPUcjxtZ7NRH26w8Ll1yx/sQ4A3QyfqViZLSt
p9Vf79DfZlBE1NTEmp+3Vt/3wou4+LwyKa+PE2qksjpfet5eN2IkhZjQM7LetP7N
DRKpwS7C6ZKORGFZq5brYL2n9oj4NeVvd1lzPHVNQ1j5xIfZoEbK
-----END CERTIFICATE-----
Generated at Sun Aug 31 01:24:51 2025 by rpki-client