Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/yuki/0/326130363a313238373a353630333a3a2f34382d3438203d3e20313531333439.roa
File: 326130363a313238373a353630333a3a2f34382d3438203d3e20313531333439.roa (raw, json)
Hash identifier: mWUKx6mO1KDvTHxKA8L3+4RIDBdUE4rDfIGl3e1A4P4=
Subject key identifier: 97:07:E1:17:1D:B5:18:A8:17:14:1F:E0:AB:38:C7:24:DA:0F:29:CB
Certificate issuer: /CN=C30BBD635E1B8B7AD5EAD604798AC08EAF77D6C5
Certificate serial: 437BE19ECA03661EEBDEBF589F62CAF4A0AD1741
Authority key identifier: C3:0B:BD:63:5E:1B:8B:7A:D5:EA:D6:04:79:8A:C0:8E:AF:77:D6:C5
Authority info access: rsync://rpki.co/repo/AS205432/0/C30BBD635E1B8B7AD5EAD604798AC08EAF77D6C5.cer
Subject info access: rsync://rpki.co/repo/yuki/0/326130363a313238373a353630333a3a2f34382d3438203d3e20313531333439.roa
Signing time: Wed 13 Sep 2023 06:46:13 +0000
ROA not before: Wed 13 Sep 2023 06:41:13 +0000
ROA not after: Wed 11 Sep 2024 06:46:13 +0000
asID: 151349
IP address blocks: 2a06:1287:5603::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:7b:e1:9e:ca:03:66:1e:eb:de:bf:58:9f:62:ca:f4:a0:ad:17:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C30BBD635E1B8B7AD5EAD604798AC08EAF77D6C5
Validity
Not Before: Sep 13 06:41:13 2023 GMT
Not After : Sep 11 06:46:13 2024 GMT
Subject: CN=9707E1171DB518A817141FE0AB38C724DA0F29CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:52:62:fe:ef:c4:8c:18:b0:34:b6:6a:52:73:
dc:35:9c:b5:20:19:7b:96:b8:e4:10:9f:5d:b2:4b:
e1:8e:b6:d4:5a:3c:2d:e1:c5:05:da:23:35:e4:75:
cc:6c:2e:e2:96:b0:10:2f:e6:9b:3c:9f:77:e1:46:
65:ff:17:e4:25:28:aa:8a:26:00:64:9e:dc:80:73:
e8:06:06:ce:01:ff:c0:f8:59:d6:1d:93:95:f0:77:
5f:1f:bf:de:0c:9b:17:ad:06:07:f0:e5:e1:67:7b:
ea:fe:24:b2:77:46:76:af:7d:14:58:11:b2:ab:a2:
28:8a:50:21:ac:d9:4d:0e:79:7a:6f:a1:df:13:d2:
cb:be:8e:5f:be:b4:6a:10:ef:d6:3c:c3:27:ab:a7:
3c:a8:0e:56:45:4a:23:7b:a3:d8:fc:9f:02:40:22:
67:b7:9a:ce:e3:95:3c:fb:7b:29:ce:50:6a:e6:b9:
b9:c6:76:8a:19:5f:34:8f:06:56:29:bc:4a:84:b2:
b1:94:a8:bd:72:bf:97:64:aa:4d:f3:24:0b:7a:2e:
cb:5a:26:69:dd:46:8b:c1:67:78:7e:93:11:ef:92:
87:a8:de:c4:3e:54:cb:97:2d:18:48:d7:39:6c:cb:
27:6f:e9:8f:6b:72:8c:52:b0:dd:b4:2a:ab:43:a7:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:07:E1:17:1D:B5:18:A8:17:14:1F:E0:AB:38:C7:24:DA:0F:29:CB
X509v3 Authority Key Identifier:
keyid:C3:0B:BD:63:5E:1B:8B:7A:D5:EA:D6:04:79:8A:C0:8E:AF:77:D6:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/yuki/0/C30BBD635E1B8B7AD5EAD604798AC08EAF77D6C5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS205432/0/C30BBD635E1B8B7AD5EAD604798AC08EAF77D6C5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/yuki/0/326130363a313238373a353630333a3a2f34382d3438203d3e20313531333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1287:5603::/48
Signature Algorithm: sha256WithRSAEncryption
32:8d:a2:ff:ee:22:5c:be:3e:c4:e7:14:77:78:dc:5a:69:65:
27:bf:93:27:83:f8:5c:e8:35:e3:66:a8:fa:8e:9f:5e:1b:75:
07:74:a7:89:9a:95:5b:db:8a:57:1a:86:03:3c:97:47:0e:1a:
89:9a:6a:34:6d:c2:a9:5f:53:a7:8c:95:fb:c1:7b:df:ec:0d:
38:ab:57:9d:4c:95:a3:4b:e7:eb:69:dc:8a:fc:10:ca:1f:17:
99:34:4e:2d:1c:fe:b6:2a:1c:67:eb:72:27:78:92:2c:dc:94:
8a:47:48:45:76:91:87:d0:3d:23:24:d0:64:11:b2:29:1c:8d:
06:8e:57:e3:5c:67:40:83:9c:8b:0b:70:7f:e8:64:e1:b8:07:
1f:f7:1f:8e:e0:7e:db:cc:d1:c7:7f:43:05:94:2a:5b:fb:96:
31:af:18:ac:ab:6e:d6:0f:bd:8f:22:dc:4e:14:df:8a:ff:57:
b2:be:4a:07:74:c5:f2:8b:b4:2e:41:f8:41:66:cd:40:75:e0:
7c:da:dc:a5:86:31:6c:bc:59:3b:2c:d7:00:14:0c:8b:46:86:
be:cb:9f:39:bb:ed:43:4c:b7:47:bf:db:a1:af:8d:74:15:1d:
25:da:4e:9d:0d:0a:f3:0c:d1:df:d8:26:59:7e:32:fa:06:e0:
5b:4e:94:c0
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgIUQ3vhnsoDZh7r3r9Yn2LK9KCtF0EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzMwQkJENjM1RTFCOEI3QUQ1RUFENjA0Nzk4QUMwOEVB
Rjc3RDZDNTAeFw0yMzA5MTMwNjQxMTNaFw0yNDA5MTEwNjQ2MTNaMDMxMTAvBgNV
BAMTKDk3MDdFMTE3MURCNTE4QTgxNzE0MUZFMEFCMzhDNzI0REEwRjI5Q0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUmL+78SMGLA0tmpSc9w1nLUg
GXuWuOQQn12yS+GOttRaPC3hxQXaIzXkdcxsLuKWsBAv5ps8n3fhRmX/F+QlKKqK
JgBkntyAc+gGBs4B/8D4WdYdk5Xwd18fv94MmxetBgfw5eFne+r+JLJ3RnavfRRY
EbKroiiKUCGs2U0OeXpvod8T0su+jl++tGoQ79Y8wyerpzyoDlZFSiN7o9j8nwJA
Ime3ms7jlTz7eynOUGrmubnGdooZXzSPBlYpvEqEsrGUqL1yv5dkqk3zJAt6Lsta
JmndRovBZ3h+kxHvkoeo3sQ+VMuXLRhI1zlsyydv6Y9rcoxSsN20KqtDpxnlAgMB
AAGjggHVMIIB0TAdBgNVHQ4EFgQUlwfhFx21GKgXFB/gqzjHJNoPKcswHwYDVR0j
BBgwFoAUwwu9Y14bi3rV6tYEeYrAjq931sUwDgYDVR0PAQH/BAQDAgeAMFkGA1Ud
HwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5jby9yZXBvL3l1a2kvMC9DMzBCQkQ2
MzVFMUI4QjdBRDVFQUQ2MDQ3OThBQzA4RUFGNzdENkM1LmNybDBoBggrBgEFBQcB
AQRcMFowWAYIKwYBBQUHMAKGTHJzeW5jOi8vcnBraS5jby9yZXBvL0FTMjA1NDMy
LzAvQzMwQkJENjM1RTFCOEI3QUQ1RUFENjA0Nzk4QUMwOEVBRjc3RDZDNS5jZXIw
fAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kuY28vcmVw
by95dWtpLzAvMzI2MTMwMzYzYTMxMzIzODM3M2EzNTM2MzAzMzNhM2EyZjM0Mzgy
ZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoGEodWAzANBgkq
hkiG9w0BAQsFAAOCAQEAMo2i/+4iXL4+xOcUd3jcWmllJ7+TJ4P4XOg142ao+o6f
Xht1B3SniZqVW9uKVxqGAzyXRw4aiZpqNG3CqV9Tp4yV+8F73+wNOKtXnUyVo0vn
62ncivwQyh8XmTROLRz+tiocZ+tyJ3iSLNyUikdIRXaRh9A9IyTQZBGyKRyNBo5X
41xnQIOciwtwf+hk4bgHH/cfjuB+28zRx39DBZQqW/uWMa8YrKtu1g+9jyLcThTf
iv9Xsr5KB3TF8ou0LkH4QWbNQHXgfNrcpYYxbLxZOyzXABQMi0aGvsufObvtQ0y3
R7/boa+NdBUdJdpOnQ0K8wzR39gmWX4y+gbgW06UwA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:45:07 2025 by rpki-client