Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa
File: AS215363.roa (raw, json)
Hash identifier: Rz5ixgmmOvMtPKWdcOyX2eJ3uUXvwVOsJt26/8Cyz94=
Subject key identifier: 07:83:20:CD:B1:0F:91:E2:E0:9C:6B:38:8E:E1:D8:C3:53:E2:9D:48
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 62229E018357F7DF85015DD6C65129EA03E86F4E
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa
Signing time: Sat 08 Feb 2025 16:06:18 +0000
ROA not before: Sat 08 Feb 2025 16:01:18 +0000
ROA not after: Sat 07 Feb 2026 16:06:18 +0000
asID: 215363
IP address blocks: 2a07:54c1:2000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:22:9e:01:83:57:f7:df:85:01:5d:d6:c6:51:29:ea:03:e8:6f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Feb 8 16:01:18 2025 GMT
Not After : Feb 7 16:06:18 2026 GMT
Subject: CN=078320CDB10F91E2E09C6B388EE1D8C353E29D48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:05:ac:00:67:f0:21:2d:a5:eb:26:c8:58:
fd:23:71:ff:e0:18:97:02:3d:f4:3c:0b:96:62:aa:
f0:17:b3:96:a8:26:af:b0:7f:18:ba:b7:93:85:66:
27:b4:3b:b0:ba:90:83:8f:6e:2b:5a:7a:77:0c:6f:
ce:51:24:97:20:73:7b:2d:f9:06:b9:e0:6e:97:06:
0b:b2:08:a4:d9:c1:be:02:c7:bc:22:7e:7b:f0:58:
47:9d:c4:9d:2d:46:ad:bd:c7:4a:e8:5b:ce:04:e8:
16:ae:d6:67:95:ea:98:dd:7d:ff:f1:8d:4f:44:0c:
97:e5:4d:3f:3a:89:c0:ff:54:fc:b4:ba:bc:04:c7:
c7:c8:6f:46:2d:2b:74:65:13:02:31:75:3b:ca:da:
e1:b9:99:b4:21:8b:5b:d3:7d:e3:61:c6:ae:44:8a:
3c:c5:c8:78:11:12:be:47:6f:44:dd:2d:b5:c8:de:
fd:6e:3c:2c:62:88:09:31:72:8f:b3:24:23:18:e1:
88:10:2d:84:62:1d:57:47:30:9a:a7:98:b5:d9:ab:
59:c9:ae:f5:ef:61:a2:b3:a5:dc:fb:06:b4:25:59:
6d:4c:6f:77:59:74:eb:54:fb:1c:63:0a:7b:6e:63:
aa:de:94:0a:56:4e:8c:28:bf:b0:ce:70:3d:f9:93:
bf:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:83:20:CD:B1:0F:91:E2:E0:9C:6B:38:8E:E1:D8:C3:53:E2:9D:48
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c1:2000::/40
Signature Algorithm: sha256WithRSAEncryption
3b:08:1a:ba:48:59:e4:6f:f1:f7:a9:57:68:65:78:97:6e:d7:
97:55:b6:b3:b4:7a:ca:ef:58:87:e4:3a:1b:4f:1f:67:e9:e7:
59:1d:b9:0f:2c:a7:58:f4:05:c4:50:6b:2b:1d:11:b8:3e:d6:
e1:2b:3a:12:11:5b:29:16:24:df:7b:72:80:41:cf:8a:18:0f:
41:7d:ce:fd:5d:ac:d2:73:f2:11:c2:fa:22:4a:63:69:dd:16:
98:3d:a8:0b:1f:f4:66:41:1c:84:4d:30:d6:b6:dd:0f:78:e4:
52:69:b8:c4:0f:8e:96:90:4e:45:d7:91:45:e3:ef:dd:be:0e:
04:4d:c1:2a:12:ec:06:1d:03:e6:94:f7:33:28:9f:e9:07:1c:
06:10:25:04:8f:ba:ad:ed:8d:96:b5:94:ce:b3:cf:27:5d:b1:
d5:c5:63:46:7f:8b:82:14:60:d4:97:76:99:42:1b:c8:42:c1:
4a:ef:a9:ae:24:f9:85:54:b9:29:84:14:cb:69:8c:c5:e9:df:
f1:50:c8:8d:ed:a2:02:2f:8f:4c:2d:41:1f:8b:ee:15:19:53:
37:79:b1:ec:b0:ed:a0:01:12:18:6d:9a:4a:2d:28:68:59:27:
b8:3e:22:e3:4a:d9:3a:57:97:93:1c:75:aa:af:2b:97:d6:92:
c7:7b:53:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:04:45 2025 by rpki-client