Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa
File: AS44658.roa (raw, json)
Hash identifier: AJ80uTnRjq5UG942upWKG7wxoa7bWj27CKdGtlaXvTw=
Subject key identifier: FF:8B:A3:6E:29:72:65:9F:AF:96:5F:70:81:94:41:3F:F0:44:1D:31
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 2F6C0AA56516F802F59E1B85B6B56CEC7D91B4EF
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa
Signing time: Tue 29 Oct 2024 12:33:33 +0000
ROA not before: Tue 29 Oct 2024 12:28:33 +0000
ROA not after: Tue 28 Oct 2025 12:33:33 +0000
asID: 44658
IP address blocks: 2a07:54c4:1300::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:6c:0a:a5:65:16:f8:02:f5:9e:1b:85:b6:b5:6c:ec:7d:91:b4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Oct 29 12:28:33 2024 GMT
Not After : Oct 28 12:33:33 2025 GMT
Subject: CN=FF8BA36E2972659FAF965F708194413FF0441D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:da:4a:3e:ac:45:90:20:7c:de:d0:ef:f2:93:
27:66:71:48:71:ed:e1:69:88:a4:b2:c0:df:16:f3:
99:3d:96:2a:ac:bb:43:f3:f6:98:bb:dc:b4:bb:1f:
3e:a6:ce:0a:05:bf:99:a1:67:4f:62:ad:c8:45:a6:
cd:7f:c4:5a:bb:5d:3b:27:03:1d:f9:ce:a8:24:aa:
04:ea:80:c5:b6:14:45:c7:4d:df:79:74:73:b6:24:
c4:6a:99:17:a2:fe:9c:49:aa:77:9d:1d:57:ef:a5:
03:83:57:51:90:0d:df:fb:1b:3b:68:86:b0:0b:2e:
ee:f5:76:93:60:26:ac:10:d9:bb:89:d8:ad:56:a1:
bb:b4:fa:1b:5a:02:28:ce:53:b5:60:b4:e1:78:03:
b8:d8:95:3b:08:85:7a:28:2f:16:92:ad:02:59:8c:
5b:72:92:27:14:27:3b:43:a8:45:ab:75:a2:81:6c:
16:7c:92:c4:ac:f5:e3:3f:0f:f5:1e:62:e8:d5:bb:
c2:94:41:0a:07:eb:24:ac:01:dd:86:8b:02:ef:9d:
5d:ec:68:4f:ff:26:fc:59:57:f6:53:97:6c:07:a8:
76:5f:db:e3:94:c7:db:ac:ed:3f:61:f7:d9:d8:25:
21:34:d9:50:b7:a1:bb:17:b3:02:10:f6:ca:e4:f8:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8B:A3:6E:29:72:65:9F:AF:96:5F:70:81:94:41:3F:F0:44:1D:31
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c4:1300::/40
Signature Algorithm: sha256WithRSAEncryption
26:e3:e3:bc:3f:cf:cb:ac:c8:79:e9:dc:3d:d7:9f:36:0b:a8:
01:c8:4f:1f:72:66:9a:67:ad:ee:64:cc:ca:eb:a3:60:34:40:
91:08:6e:33:26:44:8e:f4:c0:30:1a:f6:99:32:b5:ad:6f:6a:
6f:01:48:a5:71:8d:10:43:7d:52:0a:d0:42:6c:7a:46:e5:20:
de:f8:28:2b:e7:d7:4d:c3:8a:16:87:2b:d6:04:9e:8f:bf:5b:
8a:19:56:a4:22:1d:4e:c1:fb:06:f6:0d:7d:0c:88:e2:68:92:
ba:68:07:f9:0d:f9:67:b4:09:4e:fb:03:18:ee:ef:46:bf:e8:
89:8b:80:15:93:45:9a:76:f9:4f:f8:b2:a6:6b:d5:b4:25:ab:
c1:82:40:07:47:69:26:b9:a7:fe:52:b1:d6:3a:36:19:b6:20:
bc:ee:fc:01:84:55:e7:78:95:b5:7e:67:51:55:0a:c6:32:3e:
bb:16:20:2f:c8:0e:75:33:72:9a:5e:e1:e6:21:15:fc:b9:21:
6c:79:b8:8a:6e:ae:82:dc:f1:e9:03:aa:7f:58:0c:d3:6e:f6:
01:55:b0:a4:bd:b6:2d:ce:cd:fe:c8:5f:1b:a0:1e:77:72:7e:
49:71:2c:44:83:77:ae:a0:54:80:47:0b:81:4c:58:e6:b1:ef:
1e:0a:e7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:04:43 2025 by rpki-client