Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/August/10/323630323a666332333a3131613a3a2f34382d3438203d3e20323133303435.roa
File: 323630323a666332333a3131613a3a2f34382d3438203d3e20323133303435.roa (raw, json)
Hash identifier: 3iBAX6EhwpjY+pkioZWjyQ1ccUPXzB/mlaEer/3CxZo=
Subject key identifier: 75:09:E6:97:B8:16:20:50:09:E0:BB:C5:70:1B:D5:80:4E:4F:1D:30
Certificate issuer: /CN=BC69AB64D4D3EF18BDE6926C0E50605F91877A2F
Certificate serial: 5811FE2A7097DB303510801C7E8A379572E016E3
Authority key identifier: BC:69:AB:64:D4:D3:EF:18:BD:E6:92:6C:0E:50:60:5F:91:87:7A:2F
Authority info access: rsync://rpki.co/repo/HYSP/0/BC69AB64D4D3EF18BDE6926C0E50605F91877A2F.cer
Subject info access: rsync://rpki.co/repo/August/10/323630323a666332333a3131613a3a2f34382d3438203d3e20323133303435.roa
Signing time: Sat 08 Apr 2023 09:21:59 +0000
ROA not before: Sat 08 Apr 2023 09:16:59 +0000
ROA not after: Sat 06 Apr 2024 09:21:59 +0000
asID: 213045
IP address blocks: 2602:fc23:11a::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:11:fe:2a:70:97:db:30:35:10:80:1c:7e:8a:37:95:72:e0:16:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BC69AB64D4D3EF18BDE6926C0E50605F91877A2F
Validity
Not Before: Apr 8 09:16:59 2023 GMT
Not After : Apr 6 09:21:59 2024 GMT
Subject: CN=7509E697B816205009E0BBC5701BD5804E4F1D30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:d9:ca:7d:42:d8:6c:b8:f0:2f:0e:ee:65:
5f:f9:2e:85:c8:43:be:cf:ce:69:17:b8:44:7f:9c:
2c:1c:84:fe:d7:ba:94:f8:ec:96:08:e4:11:74:ff:
d0:12:5f:c1:3e:ff:b5:56:67:11:b5:4d:81:9e:36:
4a:07:d9:be:dd:cd:36:d8:53:ef:8a:a0:75:8f:33:
61:71:55:3e:36:3c:86:2c:db:d5:22:e7:14:0c:3a:
5e:76:20:36:6a:08:5d:1a:3d:1a:3f:a9:1c:e0:6c:
16:73:3c:37:43:59:2c:0d:b9:9d:bb:c1:e5:68:0f:
7b:54:d0:86:1a:5c:6f:c0:40:7a:4c:fa:47:4a:17:
90:0b:2d:ab:7f:8a:02:19:0b:de:f2:63:cd:2b:d1:
19:7e:a2:71:2b:e3:ae:da:2f:26:b5:ba:a4:92:af:
ce:2e:9d:39:8e:b2:b2:22:62:af:6b:ce:4e:89:5e:
b2:b9:53:c5:c4:21:53:a9:fa:a7:76:61:ed:ee:c1:
3a:10:fc:ec:80:00:74:26:33:4a:45:2a:ec:1b:66:
8f:84:8a:14:83:3b:8e:3c:ba:9c:f8:86:f5:52:95:
10:f2:fa:4f:a2:a2:21:c6:a6:82:77:22:9c:6f:2a:
fd:82:72:89:08:62:04:ff:75:55:87:e2:95:78:20:
7b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:09:E6:97:B8:16:20:50:09:E0:BB:C5:70:1B:D5:80:4E:4F:1D:30
X509v3 Authority Key Identifier:
keyid:BC:69:AB:64:D4:D3:EF:18:BD:E6:92:6C:0E:50:60:5F:91:87:7A:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/August/10/BC69AB64D4D3EF18BDE6926C0E50605F91877A2F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/HYSP/0/BC69AB64D4D3EF18BDE6926C0E50605F91877A2F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/August/10/323630323a666332333a3131613a3a2f34382d3438203d3e20323133303435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:fc23:11a::/48
Signature Algorithm: sha256WithRSAEncryption
21:64:5f:20:c1:f8:11:5d:3b:22:c3:c2:8f:8a:be:53:09:9e:
40:21:7c:33:95:75:5f:d6:3f:b9:33:e7:cc:b3:01:fe:2c:d6:
56:b9:9d:c5:64:86:28:27:31:14:84:c3:bc:1b:41:6b:47:57:
86:57:06:89:34:2d:0b:ca:02:3a:7d:37:2b:f0:91:26:f1:e5:
78:13:7d:2a:a1:3c:10:21:87:09:d9:fe:34:a7:b3:c7:8f:35:
7f:d1:e0:30:b7:5c:75:24:f8:37:f3:33:71:9e:dc:0b:a4:6b:
c6:db:76:28:48:d3:36:42:28:30:c3:3e:0c:9b:59:bd:90:51:
48:c5:26:97:40:1f:c9:a5:32:54:2e:97:f1:e6:02:e3:b7:8f:
90:99:c8:c6:cb:53:3c:75:28:ab:7c:0f:55:c0:05:f9:c4:e0:
1b:89:97:56:ee:46:31:cd:ea:c8:74:46:6d:5d:d5:bd:a6:0c:
6f:f5:c9:96:c4:45:16:ac:e4:ff:80:94:3c:bc:f3:bd:80:cf:
15:2e:43:f9:33:1c:83:e0:b7:74:e1:82:e1:95:0e:79:35:10:
8e:a0:f6:87:b5:61:db:e3:05:29:a1:71:59:cd:8b:1b:1a:68:
8c:07:c6:cb:f2:fc:33:2a:81:35:a4:4b:7e:a3:ae:18:3b:e5:
4b:8e:60:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:13 2025 by rpki-client