Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa
File: AS210152.roa (raw, json)
Hash identifier: HwmLacfMX0MrQjCn02TxfyYPVnHqRBYX88hWWdJXEus=
Subject key identifier: 71:BE:BE:8C:09:90:81:1D:4F:05:32:3E:52:9D:BC:DB:12:93:C7:95
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 6CF97734A4B4100C4FE288C91D8195069DE97613
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa
Signing time: Tue 20 Aug 2024 02:31:56 +0000
ROA not before: Tue 20 Aug 2024 02:26:56 +0000
ROA not after: Tue 19 Aug 2025 02:31:56 +0000
asID: 210152
IP address blocks: 2a07:54c1:3700::/40 maxlen: 48
2a07:54c2:b00b::/48 maxlen: 48
2a07:54c7::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f9:77:34:a4:b4:10:0c:4f:e2:88:c9:1d:81:95:06:9d:e9:76:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:56 2024 GMT
Not After : Aug 19 02:31:56 2025 GMT
Subject: CN=71BEBE8C0990811D4F05323E529DBCDB1293C795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:23:2b:bd:cb:7b:ed:73:6e:11:e8:45:80:
0d:58:12:80:0e:56:06:4f:8f:bb:b1:7a:55:c2:b6:
32:e7:82:97:51:ab:62:c0:a8:59:fd:e3:69:02:40:
32:20:6e:27:20:0a:b7:04:5c:ed:3b:06:4c:83:83:
1c:93:02:c2:b9:8e:eb:5d:4a:29:01:f5:43:78:ee:
b3:a4:ef:be:60:f6:d5:6e:ae:8c:9e:b3:ab:66:ae:
f0:3e:2c:3a:2e:f7:33:67:29:d2:26:9e:96:81:fe:
63:21:1e:f8:6a:47:18:83:0f:ea:57:d7:63:0c:bd:
53:90:b6:fc:73:30:d0:ae:5f:44:b9:bb:68:36:94:
98:da:df:35:4b:65:3e:0f:42:94:96:ab:61:b7:e7:
5f:7c:a3:36:54:ca:c5:25:b1:65:c6:83:b3:15:d9:
57:57:6d:db:8d:13:18:19:50:4d:ef:f0:34:a6:2b:
d0:8c:4c:85:38:fb:05:98:b0:f8:88:de:25:18:8b:
27:ed:c8:52:9a:e9:6a:d8:af:a4:f8:9f:c3:d8:ee:
8e:60:ac:f5:d3:0c:22:f2:23:c7:21:aa:df:5f:01:
9a:23:3e:3c:2e:18:fe:d1:bc:2a:9a:25:b4:3d:fe:
ea:7b:45:d4:db:ad:00:7a:6f:ff:51:e6:37:d6:53:
4c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BE:BE:8C:09:90:81:1D:4F:05:32:3E:52:9D:BC:DB:12:93:C7:95
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:3700::/40
2a07:54c2:b00b::/48
2a07:54c7::/36
Signature Algorithm: sha256WithRSAEncryption
7e:32:ee:b6:89:c3:a4:86:3a:30:dc:52:84:93:b6:0a:1a:74:
18:1e:03:bd:33:7a:13:29:be:9c:28:98:4f:f8:8c:80:37:60:
6e:73:de:72:54:fa:3c:fd:f9:2e:c9:83:ea:f0:54:ed:b9:0f:
a2:5a:dd:01:df:6d:17:57:28:8e:83:2b:fa:2b:f6:c2:b5:ab:
79:c6:5e:c0:ce:70:e9:d2:93:0e:c9:39:a9:be:5d:9b:cf:61:
54:1d:68:12:78:be:35:46:78:45:b9:5b:17:69:91:33:60:97:
85:8e:ae:30:fd:cb:7f:e1:d5:dc:b0:90:d9:a4:b0:27:02:eb:
b6:6e:e9:71:2b:e7:73:34:c3:c1:e2:e3:e9:17:66:be:16:14:
75:68:2c:00:e5:8b:d4:b7:71:4f:12:9b:df:0f:85:c3:c9:59:
8a:b2:58:79:d8:b7:52:21:d6:28:ed:26:a9:cd:dd:af:52:11:
cb:40:55:9b:19:12:42:09:cd:db:94:05:ae:93:19:fb:cd:b0:
78:3a:51:1b:2f:20:84:00:b3:8e:00:b4:42:53:1d:08:51:08:
df:1f:13:f4:5e:0c:b9:be:c3:a9:f1:dc:27:3a:7b:a0:f6:29:
26:26:88:5c:8a:87:f1:1d:7d:18:12:d0:ae:c0:e3:25:54:b9:
1c:46:b4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:07:12 2025 by rpki-client