Route Origin Authorization
$ rpki-client -vvf krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e203136353039.roa
File: 326130353a646663313a383930313a3a2f34382d3438203d3e203136353039.roa (raw, json)
Hash identifier: fPF7N2jeRKJnTcZMZFKDQXCVgiaFNDI0Grk9ISzSyBg=
Subject key identifier: 2A:8B:87:EE:BC:74:98:72:E2:64:8D:AD:7F:40:57:8F:E5:38:BF:73
Certificate issuer: /CN=635C29FF238CC286AC1625A68EFCC04E2E460171
Certificate serial: 64067734CD65B79C44A73F53DC6A64450167CEB5
Authority key identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer
Subject info access: rsync://krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e203136353039.roa
Signing time: Fri 16 Feb 2024 15:44:55 +0000
ROA not before: Fri 16 Feb 2024 15:39:55 +0000
ROA not after: Fri 14 Feb 2025 15:44:55 +0000
asID: 16509
IP address blocks: 2a05:dfc1:8901::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:06:77:34:cd:65:b7:9c:44:a7:3f:53:dc:6a:64:45:01:67:ce:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=635C29FF238CC286AC1625A68EFCC04E2E460171
Validity
Not Before: Feb 16 15:39:55 2024 GMT
Not After : Feb 14 15:44:55 2025 GMT
Subject: CN=2A8B87EEBC749872E2648DAD7F40578FE538BF73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4e:f5:92:ac:30:5c:80:84:2f:0e:6d:33:b6:
eb:d2:ae:e3:76:37:ef:77:a5:f9:73:ac:f1:7c:1e:
fe:a3:52:58:f8:03:06:83:fe:87:75:a3:10:58:be:
15:88:af:75:4f:3b:fd:30:fc:1f:a0:88:84:d8:d4:
45:01:38:62:2d:7e:e0:08:14:99:c3:48:85:99:01:
f4:a0:89:9f:c7:fe:0d:89:ba:fa:e6:db:2a:7e:14:
53:74:53:28:3b:95:b4:f9:d2:b5:e4:3b:b2:74:b3:
1d:ae:52:9d:33:0c:75:1d:14:29:d8:70:8c:e3:50:
30:29:9e:c1:c8:33:38:fb:87:60:3c:02:6c:95:3f:
ef:47:4e:d5:7f:40:99:e3:8d:6b:a1:02:9e:83:62:
82:15:8f:aa:e2:e3:b8:9b:6f:ec:4a:b6:3f:2f:09:
2c:62:dc:b6:af:da:44:ab:c0:45:f3:6f:97:5f:9e:
68:3f:e6:3b:9c:63:c7:23:9a:65:4c:d9:04:1b:99:
2d:8b:03:b6:0c:39:1f:4a:11:4f:80:85:a4:be:67:
a6:31:73:70:da:e7:1b:ff:3e:5c:4f:d7:61:c2:eb:
9a:34:ca:9a:d7:df:b4:24:7d:a6:b3:40:e1:c3:c3:
2e:0f:fe:cc:65:e6:c2:07:a6:fa:d9:4a:2f:e6:a1:
3a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8B:87:EE:BC:74:98:72:E2:64:8D:AD:7F:40:57:8F:E5:38:BF:73
X509v3 Authority Key Identifier:
keyid:63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer
Subject Information Access:
Signed Object - URI:rsync://krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8901::/48
Signature Algorithm: sha256WithRSAEncryption
4d:27:f1:77:4f:83:dd:f7:c2:33:b4:bc:c1:e5:a7:c1:f8:b2:
45:70:76:98:88:98:d8:d0:32:04:ed:72:31:ab:25:e1:8c:35:
55:ff:8f:98:82:63:0e:94:62:b0:42:a8:aa:55:92:7d:cb:a8:
ce:7b:10:7c:0a:5b:83:1f:5d:30:dd:37:0d:55:6b:b2:c8:4f:
dd:5b:10:c9:78:92:58:97:44:7a:a9:20:61:4e:1e:35:ad:33:
a6:11:0a:d8:c8:77:60:ec:1b:4a:ac:0b:23:89:ff:4c:ed:3d:
3b:e9:92:77:9f:1b:03:a8:1a:69:17:11:20:2e:f8:5d:b8:40:
a4:e9:39:2e:74:f2:1b:1d:eb:19:45:49:19:44:a3:66:1a:b5:
49:6d:b7:33:c7:0e:da:ce:92:77:9e:b7:45:47:44:5c:56:bb:
85:10:62:bc:71:be:1c:b5:2d:a7:64:9a:bd:86:25:65:27:65:
00:c2:5a:43:03:c8:c9:41:af:92:3a:04:70:13:62:ea:02:be:
d8:c2:ef:e1:84:f7:1f:b2:9f:0d:78:12:78:01:55:b9:31:42:
0e:95:29:1b:62:0d:9f:ec:28:1a:c1:3b:0d:f5:7b:8f:f4:cd:
c8:ff:da:b3:90:cd:46:46:e4:68:ca:5e:1f:8f:8a:1b:1f:e6:
b3:32:fa:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 17 19:29:15 2024 by rpki-client on console-ams.rpki-client.org