Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa
File: AS51019.roa (raw, json)
Hash identifier: 9X9IZcWGaECRsk6SDfVKuvkyn9Kdbps1lNlMmwzsae8=
Subject key identifier: 22:27:6C:DC:A4:BB:0A:75:DC:0D:A2:3A:CC:06:DF:B4:B3:40:F9:81
Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Certificate serial: 3E9EEE3166DBBB4B01412780F2A50F95E1A19B30
Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa
Signing time: Thu 03 Oct 2024 03:00:03 +0000
ROA not before: Thu 03 Oct 2024 02:55:03 +0000
ROA not after: Thu 02 Oct 2025 03:00:03 +0000
asID: 51019
IP address blocks: 160.202.134.0/24 maxlen: 24
2a07:54c4:121a::/48 maxlen: 48
2a07:54c4:175c::/48 maxlen: 48
2a07:54c4:175d::/48 maxlen: 48
2a07:54c4:175e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:9e:ee:31:66:db:bb:4b:01:41:27:80:f2:a5:0f:95:e1:a1:9b:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Validity
Not Before: Oct 3 02:55:03 2024 GMT
Not After : Oct 2 03:00:03 2025 GMT
Subject: CN=22276CDCA4BB0A75DC0DA23ACC06DFB4B340F981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d0:13:f8:82:fd:48:a1:cc:9d:ec:a4:49:d9:
f9:b6:ed:70:5b:e3:1d:89:64:6b:5e:ba:eb:87:80:
ad:41:70:de:6f:f4:e4:0a:f0:c2:7b:20:1d:0c:5b:
ec:f6:f0:68:bd:78:53:a7:46:d2:c1:79:63:30:42:
cf:3c:fe:ff:26:1d:bf:9e:14:a7:44:f1:d6:da:57:
af:26:64:79:88:da:9e:c3:1b:3e:4c:60:b3:37:81:
f6:25:22:7b:2d:72:18:95:fc:f3:2b:6a:1a:81:bd:
ce:d3:f4:6e:0e:a0:2e:b1:29:a0:c2:69:7c:d5:f2:
71:06:5b:b0:ed:4c:ca:1a:a3:71:c6:6a:4f:4f:6f:
f4:55:56:df:48:86:a8:f1:83:b9:b0:fa:68:55:16:
1b:46:36:14:ab:aa:32:61:fd:84:33:33:d0:e3:bd:
89:64:62:41:5b:28:06:1e:49:26:31:1a:13:b4:00:
85:7e:f8:91:68:6a:00:b2:6e:71:1a:66:37:18:d4:
3b:a9:ff:34:c3:c8:88:d4:c7:88:d1:a4:bc:67:72:
01:74:dd:b9:0d:da:33:98:78:d6:2c:f2:f6:67:17:
9b:5d:26:6d:b9:d2:63:77:d9:e0:e8:4d:eb:82:09:
b8:6c:23:7a:1c:97:4e:4b:ef:54:3e:ba:b2:6e:5f:
36:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:27:6C:DC:A4:BB:0A:75:DC:0D:A2:3A:CC:06:DF:B4:B3:40:F9:81
X509v3 Authority Key Identifier:
keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.134.0/24
IPv6:
2a07:54c4:121a::/48
2a07:54c4:175c::-2a07:54c4:175e:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1f:c8:82:24:fb:79:16:17:b1:26:7f:0d:b1:5a:de:38:ae:2f:
39:dc:1d:dc:ec:b3:bf:0c:b2:2e:75:42:51:d9:62:26:86:72:
75:65:5a:79:99:98:ce:a6:e2:c5:0e:ff:4d:bc:a0:2d:83:2e:
bc:22:52:7e:4f:3c:e0:f5:be:b1:26:41:01:8c:90:99:82:5d:
b3:4d:81:69:72:49:b4:12:ca:d1:2a:3d:a3:dd:bb:7a:c4:b3:
71:70:85:d8:89:e7:58:c1:bb:ed:1c:2a:00:29:47:62:ef:19:
a3:85:33:c6:31:6e:d0:2e:bc:64:46:7a:e3:5a:dd:7a:68:c0:
c7:6d:fc:2c:54:87:d6:04:3e:67:7a:62:1e:ad:4b:24:5b:61:
d6:f0:ea:04:4f:c4:52:1e:84:4f:86:f9:9a:c0:a1:6f:40:9c:
05:88:16:8b:80:1b:4d:57:d2:6b:6b:3b:27:24:35:1a:e8:77:
54:64:14:14:95:ff:9b:bf:0b:3e:29:2f:de:67:73:78:14:5f:
b9:75:e3:a5:c8:b5:75:08:68:1a:ee:30:9a:c8:b4:48:af:ea:
72:c2:81:51:0c:80:76:e8:4f:a2:eb:23:e8:b7:07:5c:f0:af:
dc:93:4b:f2:e3:47:75:8b:cc:35:0e:51:cd:d0:00:a4:24:51:
13:86:3d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:05:26 2025 by rpki-client