Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa
File: AS50224.roa (raw, json)
Hash identifier: aYtN06I2sXwamhoCBKsNtrBzhPxmX7JSATMvqHna7tU=
Subject key identifier: 1A:1F:ED:6B:EC:E5:1A:43:5A:08:47:C9:28:63:08:65:CA:22:C0:9D
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 289F1E3F06BCE7E78191DE4BCE9CA0484757DA19
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa
Signing time: Tue 20 Aug 2024 02:31:54 +0000
ROA not before: Tue 20 Aug 2024 02:26:54 +0000
ROA not after: Tue 19 Aug 2025 02:31:54 +0000
asID: 50224
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:9f:1e:3f:06:bc:e7:e7:81:91:de:4b:ce:9c:a0:48:47:57:da:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:54 2024 GMT
Not After : Aug 19 02:31:54 2025 GMT
Subject: CN=1A1FED6BECE51A435A0847C928630865CA22C09D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:35:68:de:15:a8:31:a2:31:52:ca:93:5c:72:
b9:da:b4:aa:ef:39:c8:7c:3b:e1:50:70:d9:29:c6:
69:9e:0d:75:2d:68:96:1b:5d:5c:c8:eb:e0:dd:60:
af:5e:3e:e0:0e:ca:8e:17:2b:fb:bd:bf:c0:c0:6c:
87:cf:17:e5:ec:c4:26:0e:d9:aa:35:e6:79:19:dd:
3f:84:46:ef:f8:74:5e:f1:61:e7:16:8d:58:d2:c0:
d9:22:6e:f0:14:f4:f5:19:6e:74:fb:c9:09:e0:7c:
f1:14:99:13:f8:f9:ca:0e:cc:b2:76:52:74:84:8e:
69:f2:24:ad:63:94:39:f5:12:e3:85:8d:21:6c:4c:
23:44:cb:c4:2d:ec:07:d4:15:67:64:f5:e7:f6:e5:
70:0a:47:7d:1e:26:ad:a0:cb:74:ff:ef:dd:51:90:
0a:e5:9a:ca:45:93:e1:a5:23:36:79:9b:cd:1f:c7:
1d:1b:d0:e9:fa:85:59:c5:03:31:2f:d2:9e:fa:c4:
26:d6:48:c4:4b:cc:eb:f4:ae:61:8b:74:3d:f7:e8:
31:07:be:4c:e5:30:7e:b6:86:41:f0:7a:8c:c0:32:
af:91:b8:bf:51:a6:9d:a6:30:46:a4:97:01:4e:1f:
e9:59:8b:b4:1a:d4:cb:11:46:6d:46:6c:43:1e:93:
a8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1F:ED:6B:EC:E5:1A:43:5A:08:47:C9:28:63:08:65:CA:22:C0:9D
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
57:d2:f7:89:cd:93:ea:89:51:43:18:75:0c:19:8c:53:db:32:
a1:89:f9:35:e9:16:0a:1b:01:d8:35:c6:39:82:3c:0a:f2:e5:
8d:9c:8d:b9:ee:ac:fa:e5:67:02:7b:cd:ef:1c:a7:d4:06:dd:
80:db:d9:85:c6:eb:d4:c6:eb:7e:d2:7b:d8:f7:d4:b4:a3:68:
0f:af:13:96:85:ef:62:8f:0b:42:35:c8:7b:aa:28:b7:6a:63:
b4:9a:44:b2:d9:4b:5c:12:5d:22:15:96:76:91:18:ab:82:1e:
75:53:ea:99:d5:cc:5d:5d:7c:9d:bb:fa:48:0f:98:05:f6:d8:
4b:42:05:ce:9f:7e:ab:fc:94:49:30:b6:7e:10:56:46:f7:93:
3d:89:b4:33:7f:0c:a3:bf:61:0e:09:95:c4:b9:9b:1a:1e:64:
1c:ef:b7:17:29:c4:ec:3f:c8:38:6b:aa:36:6a:71:23:fd:2d:
cb:a5:19:0b:af:24:a7:a2:39:1d:ef:a0:d2:9c:93:7e:15:76:
e7:bc:08:f2:30:e8:8b:8e:3a:70:78:5e:b0:b2:8d:cc:4d:95:
c9:16:83:75:7b:1e:53:63:1f:bc:75:68:a1:13:19:0b:ee:e5:
b9:9d:24:2b:22:a2:ba:20:18:74:a9:87:57:44:3e:bb:55:d1:
d6:ba:79:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:31:31 2025 by rpki-client