Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS199203/1/326131333a633030373a383032303a3a2f34342d3438203d3e20313939323033.roa
File: 326131333a633030373a383032303a3a2f34342d3438203d3e20313939323033.roa (raw, json)
Hash identifier: c/+evxwmn9UtALrUwB4V/8izDrR8gzyGMMI165BsUCw=
Subject key identifier: 67:7A:90:0A:5A:49:B2:02:C8:A3:C2:27:74:EC:CF:8E:9D:2E:45:97
Certificate issuer: /CN=B05B9A671551176C23DA01A5FA4056943F58AA56
Certificate serial: 3652F0DD4BF42EA6E91873AA541960AC17E3A41C
Authority key identifier: B0:5B:9A:67:15:51:17:6C:23:DA:01:A5:FA:40:56:94:3F:58:AA:56
Authority info access: rsync://rpki.co/repo/AS945/5/B05B9A671551176C23DA01A5FA4056943F58AA56.cer
Subject info access: rsync://rpki.co/repo/AS199203/1/326131333a633030373a383032303a3a2f34342d3438203d3e20313939323033.roa
Signing time: Wed 14 Feb 2024 03:54:33 +0000
ROA not before: Wed 14 Feb 2024 03:49:33 +0000
ROA not after: Wed 12 Feb 2025 03:54:33 +0000
asID: 199203
IP address blocks: 2a13:c007:8020::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:52:f0:dd:4b:f4:2e:a6:e9:18:73:aa:54:19:60:ac:17:e3:a4:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B05B9A671551176C23DA01A5FA4056943F58AA56
Validity
Not Before: Feb 14 03:49:33 2024 GMT
Not After : Feb 12 03:54:33 2025 GMT
Subject: CN=677A900A5A49B202C8A3C22774ECCF8E9D2E4597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:15:fc:a1:12:b1:d0:34:5c:ca:5e:4f:d0:
2f:14:e0:69:b0:45:d2:4e:e9:05:1f:4c:e0:aa:65:
8e:bc:04:2a:22:26:9f:39:7b:17:14:89:84:a7:aa:
a5:94:14:c7:fa:2b:99:2b:d8:72:ff:d4:2d:5a:c0:
73:56:62:2b:74:22:81:cf:61:00:9e:97:64:af:9d:
23:a7:8e:22:c0:79:50:23:21:25:fb:ed:b8:d2:4b:
0d:89:c1:9f:5d:22:96:6d:4e:14:3b:fb:cf:9e:c9:
c9:17:7c:d5:09:07:c7:19:42:e7:8d:a3:f0:66:24:
52:2f:08:dc:b8:01:a4:f1:71:20:7d:b5:af:fd:6f:
1a:9d:60:70:9e:64:06:20:36:14:6c:76:e9:3e:2a:
fe:2e:9d:3a:43:fa:33:7b:5d:af:a5:d9:3c:4b:17:
e2:6a:c5:7e:41:79:90:3d:d6:2d:e7:4d:d4:f7:cf:
7b:73:10:dd:1f:ed:2c:ec:0a:96:74:8c:e6:36:dc:
71:57:29:26:ff:96:b5:d8:cd:30:a4:f2:9a:bd:57:
c4:28:ef:30:3e:7b:e1:8c:9e:98:ea:06:0d:6d:52:
b3:2b:ca:09:8d:91:8c:4a:c0:39:43:dd:aa:64:d9:
70:2c:18:d6:f6:41:5f:34:31:8d:39:66:d4:5e:4b:
82:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7A:90:0A:5A:49:B2:02:C8:A3:C2:27:74:EC:CF:8E:9D:2E:45:97
X509v3 Authority Key Identifier:
keyid:B0:5B:9A:67:15:51:17:6C:23:DA:01:A5:FA:40:56:94:3F:58:AA:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS199203/1/B05B9A671551176C23DA01A5FA4056943F58AA56.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/5/B05B9A671551176C23DA01A5FA4056943F58AA56.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS199203/1/326131333a633030373a383032303a3a2f34342d3438203d3e20313939323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8020::/44
Signature Algorithm: sha256WithRSAEncryption
3c:d1:ed:ad:85:87:cb:9d:f9:43:9c:82:ab:62:ce:ba:92:e6:
09:96:b5:78:bb:52:10:5b:02:c8:2f:71:ca:0b:ca:2a:d0:7e:
1b:14:84:a5:e6:9e:b0:e8:58:d5:29:b9:17:ef:47:74:4f:6d:
24:75:75:1f:12:96:ba:63:2a:ca:a5:b7:1c:23:f0:79:fe:90:
8b:56:b9:d2:29:fc:f1:77:b2:26:eb:7f:84:4d:08:b5:08:39:
2f:22:5b:32:bd:30:2d:e4:48:94:89:16:40:40:1b:ee:62:83:
9d:81:8b:a8:d1:a9:87:39:d9:c6:0d:a8:5c:28:0c:a5:23:17:
40:8e:71:21:15:6a:c0:6b:88:f1:e9:27:76:37:76:54:ea:08:
ce:7c:6c:20:3b:41:82:f0:73:2a:d2:06:f8:5d:85:08:a9:97:
cb:40:8f:c9:4b:c1:e1:c1:0c:16:b4:b1:b4:30:ba:b4:74:c7:
f7:75:24:37:93:00:ca:36:04:03:dd:10:f4:0c:23:45:49:cc:
02:d9:ac:d9:34:9a:ea:dc:3b:38:9c:5e:06:18:80:3c:6b:84:
6f:7e:03:17:b9:00:f7:06:5e:a5:56:2a:f2:41:a8:58:25:53:
4d:f8:23:73:13:15:4e:3f:31:9d:ee:f6:ae:c4:13:23:74:48:
37:b7:98:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:36:51 2024 by rpki-client on console-ams.rpki-client.org