Route Origin Authorization
$ rpki-client -vvf krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e20313939373636.roa
File: 326130353a646663313a383930313a3a2f34382d3438203d3e20313939373636.roa (raw, json)
Hash identifier: GpUpkTMkavqbDpt0upSWmR/4RjpnKi888tIpKOqlbE4=
Subject key identifier: FF:68:9C:46:E7:BD:51:7A:F5:E2:59:75:2B:65:B2:B4:55:7E:D5:8E
Certificate issuer: /CN=635C29FF238CC286AC1625A68EFCC04E2E460171
Certificate serial: 117701A94F2D788CDD7021172E630525E72FA53D
Authority key identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer
Subject info access: rsync://krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e20313939373636.roa
Signing time: Fri 16 Feb 2024 14:46:15 +0000
ROA not before: Fri 16 Feb 2024 14:41:15 +0000
ROA not after: Fri 14 Feb 2025 14:46:15 +0000
asID: 199766
IP address blocks: 2a05:dfc1:8901::/48 maxlen: 48
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:77:01:a9:4f:2d:78:8c:dd:70:21:17:2e:63:05:25:e7:2f:a5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=635C29FF238CC286AC1625A68EFCC04E2E460171
Validity
Not Before: Feb 16 14:41:15 2024 GMT
Not After : Feb 14 14:46:15 2025 GMT
Subject: CN=FF689C46E7BD517AF5E259752B65B2B4557ED58E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f3:a4:d0:e2:8d:d6:9b:c6:e9:aa:42:51:f6:
46:7d:06:75:bc:da:33:7c:09:f6:15:7c:3f:54:ca:
c7:b4:d9:4b:ca:31:33:d9:73:33:30:fb:f9:82:a4:
f2:bf:66:96:b7:4a:0f:80:32:2e:40:c5:40:f8:de:
87:1d:1d:cb:22:4c:31:bb:ae:51:45:03:43:c7:80:
4d:ec:39:65:2e:2d:87:87:36:56:ee:9b:9d:d4:9f:
70:bf:b3:36:52:e9:32:f4:94:49:da:3d:4a:1d:d8:
1e:80:6f:d1:95:1d:6c:bc:e9:6a:d1:be:f0:ff:a8:
23:de:11:68:f7:64:d8:b9:bb:6c:1a:90:46:27:b4:
9f:fa:ab:f1:ec:51:7a:9f:3a:e3:f2:15:52:ae:43:
af:18:7f:22:11:2a:ae:ba:dc:fb:8c:35:07:e3:09:
f9:46:3c:44:4a:57:0e:78:f5:37:9d:26:de:22:fd:
74:16:3e:49:eb:43:b6:d0:36:21:d7:da:e0:3d:40:
bf:67:7d:22:a4:2b:c6:2a:1c:58:55:59:05:1f:fe:
53:dc:96:3b:da:9c:24:e5:37:5c:58:6f:38:fc:dc:
69:bc:ca:3c:2b:ab:72:14:7e:04:61:e2:2e:03:39:
00:6c:fa:c7:04:32:90:38:ea:fc:d6:17:8a:57:4a:
96:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:68:9C:46:E7:BD:51:7A:F5:E2:59:75:2B:65:B2:B4:55:7E:D5:8E
X509v3 Authority Key Identifier:
keyid:63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer
Subject Information Access:
Signed Object - URI:rsync://krill.stonham.info/repo/Stonham/1/326130353a646663313a383930313a3a2f34382d3438203d3e20313939373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8901::/48
Signature Algorithm: sha256WithRSAEncryption
3a:f4:c3:d5:90:1f:09:34:f7:49:ab:81:df:dd:82:9d:4e:15:
69:f4:ba:ac:ff:3a:73:4d:c7:e5:42:6a:f4:89:88:90:d9:e5:
d0:2a:8e:af:d2:ea:46:10:26:58:97:56:f1:38:ac:22:58:2b:
89:c8:6f:f8:17:f8:35:82:09:02:45:ec:fa:ff:51:8e:f5:b0:
f4:bb:a9:1f:84:05:c8:bb:ef:91:c9:9a:0f:b5:5f:72:cb:09:
65:8e:e9:15:d4:d1:8c:32:a4:12:99:22:d8:51:0b:3e:bd:25:
70:8b:50:0a:df:ff:a5:5c:14:65:bc:18:cc:0f:5f:fd:c7:05:
81:98:d4:8c:ec:ef:ac:80:46:5c:f4:82:e0:a2:23:9d:78:c2:
7e:88:82:65:b5:72:79:17:a8:a8:4a:2b:02:26:28:36:e5:05:
32:8a:bd:3c:7d:6c:00:cd:d9:b3:ef:76:df:c8:c8:68:2a:f3:
9a:78:fa:ba:f0:92:f3:98:fb:85:87:2a:e7:26:3a:3f:35:81:
67:cf:f6:ff:4a:d7:a5:b6:48:db:b7:fe:ef:b6:2b:fc:00:37:
5b:c5:b5:fc:eb:78:09:45:8b:4a:76:9d:be:de:3b:52:6d:40:
0f:06:83:85:34:5b:12:82:49:a1:9e:44:bc:80:9d:06:d2:15:
22:e8:fb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:57 2024 by rpki-client on console-fra.rpki-client.org