Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e203331383938.roa
File: 326131323a646434373a383034373a3a2f34382d3438203d3e203331383938.roa (raw, json)
Hash identifier: pbzoAL6bSjwb4gc+PZnFjXPuJZVzdqTCKfAwtckveWc=
Subject key identifier: 02:35:C0:38:56:50:D8:CE:B8:91:A3:29:12:89:6C:EE:58:9E:5F:E6
Certificate issuer: /CN=CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE
Certificate serial: 6ED44975814DD2FAE87465D309A863C7D8E6A892
Authority key identifier: CD:67:25:68:ED:AF:D0:43:AC:C9:C2:B6:93:C6:F2:BF:9D:F6:42:FE
Authority info access: rsync://rpki.co/repo/AS945/1/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.cer
Subject info access: rsync://rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e203331383938.roa
Signing time: Wed 20 Mar 2024 13:14:29 +0000
ROA not before: Wed 20 Mar 2024 13:09:29 +0000
ROA not after: Wed 19 Mar 2025 13:14:29 +0000
asID: 31898
IP address blocks: 2a12:dd47:8047::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:d4:49:75:81:4d:d2:fa:e8:74:65:d3:09:a8:63:c7:d8:e6:a8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE
Validity
Not Before: Mar 20 13:09:29 2024 GMT
Not After : Mar 19 13:14:29 2025 GMT
Subject: CN=0235C0385650D8CEB891A32912896CEE589E5FE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:57:15:9c:41:94:7b:d9:c2:b4:2f:bf:d1:a0:
48:9c:8e:87:01:41:d3:fb:8a:e8:5d:83:c2:c5:a3:
bc:b5:0e:da:7b:e2:38:4a:35:1c:83:77:60:67:3c:
27:40:d0:e2:f0:38:fa:79:6d:ae:de:e1:6a:6f:68:
eb:48:d1:49:ea:d4:29:0f:3c:c5:3e:3f:c4:d6:5b:
81:e2:e6:77:ee:db:8e:23:a5:34:1f:c1:22:ef:e5:
34:f8:e9:f2:fb:ef:8c:c0:d9:32:a7:cb:f1:ee:66:
89:7e:68:45:3a:cf:99:d1:a2:56:36:aa:fc:78:22:
ed:d0:e3:0a:34:dd:bb:c1:3e:fa:0e:0e:ac:a1:80:
c0:70:70:4d:67:f6:e8:64:8a:65:18:5e:65:67:12:
74:8c:d1:8c:71:ec:bc:f3:b6:ac:7a:76:b9:ff:5e:
26:b0:4d:3e:f5:02:9a:be:50:8d:28:f6:56:19:e3:
95:53:ad:81:9c:57:f3:51:b0:7b:3d:34:d2:7e:76:
84:6a:99:42:6a:b6:c1:d5:e3:92:1a:6f:94:57:57:
fb:29:48:3c:2b:ec:0f:a4:37:be:b1:24:ec:48:86:
57:d2:10:e5:c4:e7:01:cc:3a:03:6b:7b:c6:50:5e:
b3:c0:92:cb:5f:26:0e:bf:3e:6a:66:51:b6:9a:8b:
64:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:35:C0:38:56:50:D8:CE:B8:91:A3:29:12:89:6C:EE:58:9E:5F:E6
X509v3 Authority Key Identifier:
keyid:CD:67:25:68:ED:AF:D0:43:AC:C9:C2:B6:93:C6:F2:BF:9D:F6:42:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS203843/0/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e203331383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8047::/48
Signature Algorithm: sha256WithRSAEncryption
6c:bd:fe:14:57:a1:c0:df:22:f6:c3:6d:bf:3e:42:da:46:23:
a7:67:15:70:5f:67:9d:5c:a5:fa:ae:a4:05:0d:55:ef:cc:6e:
62:48:cc:10:ac:be:47:60:20:1e:3b:23:7d:af:9f:6b:32:23:
9c:0d:42:2e:20:87:3e:24:33:4f:82:bf:a7:54:4b:3c:c8:e8:
bf:9f:d3:db:5e:1b:78:fc:d5:c2:32:0a:73:72:3d:be:aa:50:
f0:8c:d4:31:94:d6:6b:76:8d:e9:f3:be:68:38:63:4c:3c:58:
d6:16:b9:35:a6:db:6d:c7:84:f2:d6:2a:60:96:8f:6e:d6:b5:
8d:aa:a5:e0:8a:4e:f8:f1:f8:18:84:01:57:b9:af:5d:0d:56:
67:37:73:5a:44:b6:bd:1b:15:9b:47:61:37:3a:77:52:f7:d8:
bf:e1:8d:6d:ef:c6:f5:02:4a:89:9a:bd:ff:9a:6b:68:84:9d:
22:aa:e4:34:23:3a:bc:a8:99:9b:0a:bc:9c:12:60:5f:79:7c:
48:1a:b0:73:5d:16:0a:ef:21:2e:18:e9:4e:98:9f:50:f4:a6:
c5:ed:d6:f3:0b:0f:1b:40:ea:65:c6:b0:7a:95:72:5f:94:f1:
ca:5e:ea:2f:dd:b8:85:d7:93:f2:b0:25:14:65:d3:18:d4:19:
c9:05:a1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:28:34 2024 by rpki-client on console-ams.rpki-client.org