Route Origin Authorization
$ rpki-client -vvf rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e203338313336.roa
File: 323430373a636463303a3a2f33322d3438203d3e203338313336.roa (raw, json)
Hash identifier: gTsXAZ5m9gyfemlj8WLQtRO0L7mvUGbacLYNxePDXW0=
Subject key identifier: E6:A9:AC:1E:E2:36:47:5E:9E:32:D5:72:6F:57:CF:C8:C1:7B:6B:F9
Certificate issuer: /CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Certificate serial: 584655A28ED647CD8E9B7267B29EEB2CADE9D1E6
Authority key identifier: 90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject info access: rsync://rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e203338313336.roa
Signing time: Tue 18 Jun 2024 16:25:11 +0000
ROA not before: Tue 18 Jun 2024 16:20:11 +0000
ROA not after: Tue 17 Jun 2025 16:25:11 +0000
asID: 38136
IP address blocks: 2407:cdc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:46:55:a2:8e:d6:47:cd:8e:9b:72:67:b2:9e:eb:2c:ad:e9:d1:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000/serialNumber=90884A3F57AC46FA63A71BD993E4E8AD788187AF
Validity
Not Before: Jun 18 16:20:11 2024 GMT
Not After : Jun 17 16:25:11 2025 GMT
Subject: CN=E6A9AC1EE236475E9E32D5726F57CFC8C17B6BF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:76:ad:9e:21:d1:62:3c:39:50:19:13:d4:
c1:33:07:24:56:93:bb:d2:1e:ad:cb:85:28:89:bc:
1b:6c:99:3c:3d:53:d5:b7:0a:07:02:ca:95:58:6a:
91:c2:1a:db:75:3f:fa:7a:f0:c4:06:00:78:a1:10:
e6:c8:ae:ba:91:37:13:7f:6b:e1:30:cf:d1:01:f4:
06:4a:4d:c3:29:1e:9f:da:4b:2e:2c:a5:db:3a:00:
01:82:31:30:66:f0:af:a8:d0:35:f8:d1:fe:a8:10:
af:23:db:30:83:de:4d:98:a7:44:4f:f3:ae:f9:f1:
48:34:f5:f7:64:10:65:ae:8f:5f:cb:48:e1:f8:31:
52:ef:71:70:b8:94:ec:91:cb:8a:c9:17:b5:09:fe:
82:a5:8c:46:8c:05:3f:98:20:67:18:12:fc:77:9a:
6f:eb:44:45:0a:f4:7e:c7:ed:96:f2:88:b8:c2:b1:
55:a0:72:33:63:58:2c:c8:a3:8d:2e:51:a5:61:3d:
0e:97:1d:80:60:89:4e:20:b8:66:8b:df:d8:05:bc:
3b:8b:2d:88:57:ac:55:92:2e:42:e3:4d:98:7e:53:
db:9a:df:3d:db:b9:5e:04:06:99:47:26:ff:44:d8:
77:f7:35:e0:4e:47:3a:eb:24:a0:bf:34:21:1e:45:
8b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A9:AC:1E:E2:36:47:5E:9E:32:D5:72:6F:57:CF:C8:C1:7B:6B:F9
X509v3 Authority Key Identifier:
keyid:90:88:4A:3F:57:AC:46:FA:63:A7:1B:D9:93:E4:E8:AD:78:81:87:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.akrn.net/repo/AKRN/0/90884A3F57AC46FA63A71BD993E4E8AD788187AF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIhKP1esRvpjpxvZk-TorXiBh68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.akrn.net/repo/AKRN/0/323430373a636463303a3a2f33322d3438203d3e203338313336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
6f:74:42:d6:d1:04:67:14:42:35:a7:14:bd:87:68:3c:56:9e:
a2:bf:01:b4:db:d3:84:8f:3c:3f:35:1d:d4:ba:88:a3:24:3f:
27:1e:d7:1c:34:5f:b6:4d:de:f8:ab:bd:d0:51:f8:58:4b:61:
26:f8:28:54:d8:ee:90:cb:31:ef:8b:b8:36:ca:0f:0e:8e:4a:
1a:ff:74:64:22:17:08:88:ae:b4:86:d8:72:9c:ae:42:32:8f:
0d:51:81:17:29:60:1b:b8:16:ba:3b:86:1b:9a:21:0c:1a:d2:
00:72:cd:86:29:66:1a:c6:57:ee:ab:63:55:36:14:e6:81:42:
c8:d8:9c:48:ab:7d:ed:2a:65:15:01:c4:10:c9:b1:09:df:65:
67:eb:a0:fa:b3:54:d8:63:bd:b5:59:cc:27:8b:f2:50:4d:8a:
c7:f6:5c:d3:ae:89:f2:db:39:50:3a:5d:97:fd:5d:d9:bd:e3:
c2:63:1d:47:ed:52:0a:69:01:b2:04:c4:f8:1e:76:4a:e4:aa:
4e:42:75:19:b6:6f:d7:cb:d0:69:c6:be:dc:13:f5:06:ea:13:
ca:64:72:6a:c7:be:17:61:d2:80:a5:a0:b6:23:ee:31:f4:d1:
07:72:84:7c:a8:81:8d:35:cf:33:28:b1:b6:d0:f2:ce:9a:86:
db:b1:a9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 16:25:57 2024 by rpki-client on console-ams.rpki-client.org