Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa
File: 323430373a623963303a3a2f33322d3438203d3e20393137.roa (raw, json)
Hash identifier: 8i2Uhg35vt+EQ6r1FdnJelDCfkdVacT4X7Ea+iyOf2k=
Subject key identifier: 5C:12:29:49:62:5D:F7:22:23:D9:9E:D4:16:A8:3C:04:8A:06:22:70
Certificate issuer: /CN=A9121C330000/serialNumber=9CF05E7024D4A487E0B79E2F57525BF345DB53EC
Certificate serial: 3131B34E6B62069E411285C90BFB7E0D550E6BFF
Authority key identifier: 9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa
Signing time: Sun 03 Nov 2024 22:30:26 +0000
ROA not before: Sun 03 Nov 2024 22:25:26 +0000
ROA not after: Sun 02 Nov 2025 22:30:26 +0000
asID: 917
IP address blocks: 2407:b9c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:31:b3:4e:6b:62:06:9e:41:12:85:c9:0b:fb:7e:0d:55:0e:6b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9121C330000
Validity
Not Before: Nov 3 22:25:26 2024 GMT
Not After : Nov 2 22:30:26 2025 GMT
Subject: CN=5C122949625DF72223D99ED416A83C048A062270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a3:83:43:14:07:32:97:7c:a3:1d:60:cb:90:
fc:99:14:94:70:3b:44:a1:d9:00:e1:11:d7:a3:a3:
2e:61:6a:9e:df:02:30:f8:a1:63:ce:bf:9c:7c:ec:
92:18:ea:09:d4:8a:a8:ea:8a:2c:47:da:45:82:93:
fe:09:bd:b7:71:32:4d:2b:fb:88:12:9d:65:a4:13:
de:1b:38:8d:ac:6a:8d:bc:80:5f:1e:40:42:95:18:
4d:b3:cc:45:06:6e:e9:e1:6c:3a:09:24:1e:81:35:
b0:ed:4f:4b:94:71:9d:55:f8:dc:15:87:f7:f6:79:
79:65:1e:9f:8a:a7:5c:7b:c5:ac:7d:dc:1a:13:aa:
9e:7c:d8:3a:1b:41:78:bc:43:4a:73:56:32:d7:64:
3e:4d:30:48:11:fe:a4:d1:8b:74:68:cf:ce:3f:f8:
50:39:49:2f:a6:19:10:b3:36:b7:b4:9b:bb:36:24:
f0:8c:12:af:dd:19:fa:21:71:28:d5:5f:05:7c:e6:
1e:09:30:b7:31:46:cb:15:46:bc:8f:b3:b1:56:ee:
01:b3:54:c1:a1:64:2f:68:7f:0c:bf:1b:41:b0:82:
f4:82:e6:a1:bd:23:90:e3:cd:48:14:15:c9:a0:eb:
fd:b8:52:51:45:28:bf:9c:08:ab:79:84:36:96:2e:
e8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:12:29:49:62:5D:F7:22:23:D9:9E:D4:16:A8:3C:04:8A:06:22:70
X509v3 Authority Key Identifier:
keyid:9C:F0:5E:70:24:D4:A4:87:E0:B7:9E:2F:57:52:5B:F3:45:DB:53:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/0/9CF05E7024D4A487E0B79E2F57525BF345DB53EC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPBecCTUpIfgt54vV1Jb80XbU-w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/0/323430373a623963303a3a2f33322d3438203d3e20393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:b9c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:d9:fd:a8:5f:a2:26:b1:30:cf:b3:ae:29:82:1f:6f:0c:54:
3d:a9:42:dd:87:62:b4:c9:1f:3e:59:5e:04:3d:06:f7:b0:51:
04:dc:f7:b8:02:15:f9:5d:51:52:f4:69:1f:56:f1:4e:cb:d6:
ea:4e:e3:d7:6d:ed:8b:e8:e3:9c:7c:d7:0e:dc:52:21:c3:f9:
7b:a8:ad:f3:b1:1c:b6:08:2c:45:8b:0c:2d:d6:5c:cb:7e:d4:
d6:5b:4e:e2:19:9b:7c:76:3b:96:7b:52:82:be:7b:ce:5e:dc:
e4:30:c1:e6:0f:10:9c:05:a4:7d:22:a8:83:a3:e4:5b:f3:43:
62:0d:33:c8:4f:91:ba:01:6b:bc:d8:f2:5a:1c:f4:f6:9b:1d:
d4:46:e4:cf:67:e1:1e:03:8c:98:e0:be:68:01:a7:fb:99:e3:
41:a3:eb:21:f2:21:5f:f1:a3:79:ae:35:5c:b8:64:7d:a1:a8:
ac:67:a6:c8:d4:9d:22:d8:ee:c5:93:00:76:e2:20:42:6c:46:
d1:cb:4f:76:ab:67:f9:78:f2:e2:8f:ce:8f:36:e4:c8:7a:e5:
e1:fa:6c:5e:fa:10:ea:f5:03:f2:f7:df:c1:3e:37:0f:7e:2e:
6e:26:53:05:ba:89:83:94:52:ff:8a:ae:3e:0f:84:d8:a9:22:
7e:db:86:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:01:22 2025 by rpki-client