Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50580.roa
File: AS50580.roa (raw, json)
Hash identifier: 3t6D0gqwSMVEyyeXLgal1FqvAjKusmp+ERsgaV6crVI=
Subject key identifier: D1:84:A7:31:AE:7F:7A:62:B0:4E:83:61:D9:63:6C:D1:44:94:91:13
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 6C402469B7729D0BC5A947A3E9506339E08221D1
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50580.roa
Signing time: Tue 20 Aug 2024 02:31:53 +0000
ROA not before: Tue 20 Aug 2024 02:26:53 +0000
ROA not after: Tue 19 Aug 2025 02:31:53 +0000
asID: 50580
IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:40:24:69:b7:72:9d:0b:c5:a9:47:a3:e9:50:63:39:e0:82:21:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Aug 20 02:26:53 2024 GMT
Not After : Aug 19 02:31:53 2025 GMT
Subject: CN=D184A731AE7F7A62B04E8361D9636CD144949113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e6:eb:86:26:c6:05:2d:0d:39:0f:b3:e6:9e:
d2:52:70:5d:86:93:ca:2b:cf:1b:14:88:5f:ae:98:
77:2c:f0:80:c5:81:d6:61:9e:fb:5d:a5:dd:e0:1e:
df:7e:e7:8d:e7:f4:80:55:1c:04:ef:f2:ca:5d:7a:
41:ad:61:0a:11:72:dd:d1:86:e3:db:07:5e:3e:4b:
97:a9:7f:bf:07:f9:38:80:9d:de:20:a1:8d:f4:47:
58:3f:a9:4c:78:a8:6d:79:c9:a6:e3:42:c9:0d:db:
fb:c2:d3:19:4e:e0:39:ff:20:2e:6c:65:64:f2:98:
7a:3e:2f:aa:45:62:6b:c6:56:df:f1:ad:a7:98:a6:
cc:c7:ec:0e:38:45:de:8f:4d:33:f2:36:5b:7b:6e:
37:fd:2a:4b:5e:c0:3e:3d:e9:76:3e:94:c0:3e:44:
8f:6d:f8:2a:65:9a:f6:31:79:fc:34:fa:6b:82:24:
1f:a7:47:a4:c1:5e:20:1d:81:a5:25:86:3c:9a:1b:
ea:77:fc:1c:b7:09:86:94:f2:aa:46:04:c4:37:0a:
85:48:23:79:aa:23:f4:6e:2e:d8:36:27:81:3e:c1:
90:01:04:18:c0:9d:b2:05:f1:91:eb:df:32:55:34:
43:65:60:14:d0:12:af:62:90:c1:54:a1:19:bb:ce:
d3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:84:A7:31:AE:7F:7A:62:B0:4E:83:61:D9:63:6C:D1:44:94:91:13
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50580.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:54c2:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
9c:47:bc:ad:2b:bf:d1:8f:05:6a:08:95:84:51:a3:11:fa:7f:
10:7f:43:08:a3:8d:5e:8c:b6:bc:8f:c0:f3:95:63:36:be:69:
44:30:75:5f:b8:9e:98:e3:17:be:c4:1f:56:a0:76:65:fc:33:
bb:e3:1c:a8:ce:7f:48:63:34:c1:50:d4:f4:b2:6f:31:c9:2f:
65:70:29:38:05:fd:dc:77:68:db:02:de:b5:61:97:2e:8c:32:
f3:15:91:85:96:53:1a:e0:9d:6b:62:da:3c:d3:ae:5b:65:ee:
b8:f0:20:13:dc:e3:a6:30:aa:ec:02:05:7d:03:b7:4a:4b:5f:
2f:0d:c6:96:69:32:36:06:eb:01:1a:ff:a7:43:fb:16:ac:bb:
c4:40:3a:ff:5c:b4:30:59:54:7f:08:0f:28:4e:47:28:6f:69:
06:8c:0e:c5:f4:47:3d:48:2b:9f:fe:c5:b3:c0:42:0d:e1:2c:
81:d8:08:e5:40:e8:b5:9b:9b:4e:b4:e4:6f:39:3c:4a:20:ae:
8a:6b:59:eb:6e:54:b7:e8:57:9d:cb:f3:73:b2:f8:a2:55:c2:
12:9c:0d:e9:48:19:19:60:d8:a6:14:e7:99:65:03:0a:2a:3f:
da:9f:34:21:2b:7d:b6:09:f2:23:a0:78:46:83:22:d1:18:a6:
85:ea:9d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:05:58 2025 by rpki-client