Route Origin Authorization
$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630323a3a2f34382d3438203d3e203530353535.roa
File: 326131323a646434373a383630323a3a2f34382d3438203d3e203530353535.roa (raw, json)
Hash identifier: HoZAYr0ETH2ygTyVLT/TWLTc95YKlgYR4RlonB/RlJc=
Subject key identifier: 4A:F1:72:26:2B:B3:2D:E2:7C:BD:91:63:BF:0D:F4:6E:70:43:B9:9D
Certificate issuer: /CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3
Certificate serial: 26B10C49CB15E6FB9881712086BF3605E4B558E6
Authority key identifier: 02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3
Authority info access: rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer
Subject info access: rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630323a3a2f34382d3438203d3e203530353535.roa
Signing time: Mon 11 Mar 2024 07:12:24 +0000
ROA not before: Mon 11 Mar 2024 07:07:24 +0000
ROA not after: Mon 10 Mar 2025 07:12:24 +0000
asID: 50555
IP address blocks: 2a12:dd47:8602::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:b1:0c:49:cb:15:e6:fb:98:81:71:20:86:bf:36:05:e4:b5:58:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3
Validity
Not Before: Mar 11 07:07:24 2024 GMT
Not After : Mar 10 07:12:24 2025 GMT
Subject: CN=4AF172262BB32DE27CBD9163BF0DF46E7043B99D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9e:60:bc:64:02:b8:3b:80:6e:2c:b4:79:09:
ab:de:b5:1e:b9:df:a3:7b:95:e3:7a:fe:89:ee:34:
81:51:e5:15:1f:6d:bd:a9:15:d5:21:67:b8:21:30:
22:46:bf:05:4a:af:aa:a1:e0:bc:eb:b3:27:9b:7f:
db:8a:88:08:28:9a:1f:b9:cd:6b:9e:3b:31:14:1b:
35:8e:92:5d:d7:40:06:47:b1:df:82:31:fb:6c:63:
68:e8:e3:df:1e:26:f9:60:73:a6:0a:72:6e:9f:d6:
62:d2:c7:9f:e1:27:fc:de:3e:12:0d:86:01:32:d4:
ac:92:06:f5:08:46:bf:47:bf:18:4a:05:ac:f9:20:
96:d7:7b:8f:78:6d:ff:44:cc:15:a9:8a:2f:43:76:
d2:a3:a1:cd:5f:bb:b6:64:df:ad:12:f6:04:72:c2:
1f:b9:5a:47:aa:e2:09:22:c2:f6:92:9a:3b:2d:f5:
95:68:46:ac:ea:73:f8:70:89:6f:f0:13:28:ea:f5:
9d:d5:19:c1:97:31:4b:46:db:47:b1:2c:b6:40:11:
7f:bb:71:85:f3:bc:5b:3e:16:b9:c9:b7:6d:7c:a2:
09:cb:78:1c:a1:88:13:40:2d:af:27:a2:d7:d9:d8:
41:09:b0:da:71:23:bc:9d:e2:79:a3:56:52:82:b2:
71:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F1:72:26:2B:B3:2D:E2:7C:BD:91:63:BF:0D:F4:6E:70:43:B9:9D
X509v3 Authority Key Identifier:
keyid:02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer
Subject Information Access:
Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/326131323a646434373a383630323a3a2f34382d3438203d3e203530353535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8602::/48
Signature Algorithm: sha256WithRSAEncryption
39:7e:5f:08:d4:90:21:ba:01:9a:d1:94:de:74:7d:8b:f5:d2:
18:06:e1:9c:4b:64:9a:bb:9f:f2:22:73:c7:3e:3d:8d:49:31:
ad:f6:4a:84:d4:d9:07:de:4d:ee:dd:b0:dd:f1:5b:a9:25:9d:
ba:f3:be:fb:0b:4c:e6:8a:5d:be:7e:2d:87:d1:49:fb:24:a1:
89:f6:0a:e7:59:bc:25:73:7f:e0:f7:ac:92:73:df:72:60:78:
49:c5:70:cf:19:9d:e5:84:d9:82:c3:bb:21:ba:b7:56:1d:c7:
3a:70:39:f7:e8:63:be:77:3d:f4:10:c1:3f:8d:ff:8b:00:a3:
72:35:d8:d9:0e:9a:2b:85:65:b2:88:3d:5d:44:5f:9d:83:3a:
f7:9e:88:1e:a7:3d:cc:77:06:0e:46:ea:f2:c0:18:71:cf:bb:
de:af:14:25:1e:17:79:ad:5d:44:24:b1:b1:51:c2:cf:2b:46:
92:76:ec:b9:fe:f2:80:e7:a6:9b:1f:ef:13:9d:a0:2f:50:01:
1a:89:0d:ca:19:8b:a7:f3:be:84:fb:ff:cc:ed:86:e4:dd:89:
82:31:76:d3:27:23:0d:9a:39:2e:f2:88:cc:c3:d1:a2:d4:5e:
13:20:3c:7b:ae:bb:63:bd:6a:54:b0:86:da:a0:be:79:a1:9a:
38:5f:a0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:36:09 2024 by rpki-client on console-fra.rpki-client.org