Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS205432/0/AS41720.roa
File: AS41720.roa (raw, json)
Hash identifier: MCej+XfWYe57gdxyhfQmr3s1kpXyQHhHVWAnPfbJMCk=
Subject key identifier: 72:2A:E9:94:69:EA:41:37:27:5B:50:D7:A8:92:A4:8D:90:DE:1A:A4
Certificate issuer: /CN=C478BDE60E1B92F9755040D6C67C9CFB64C7D355
Certificate serial: 0CD5837CC3426713154CCCC38E7AFD88E1514EF3
Authority key identifier: C4:78:BD:E6:0E:1B:92:F9:75:50:40:D6:C6:7C:9C:FB:64:C7:D3:55
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/C478BDE60E1B92F9755040D6C67C9CFB64C7D355.cer
Subject info access: rsync://rpki.co/repo/AS205432/0/AS41720.roa
Signing time: Mon 14 Aug 2023 12:52:05 +0000
ROA not before: Mon 14 Aug 2023 12:47:05 +0000
ROA not after: Mon 12 Aug 2024 12:52:05 +0000
asID: 41720
IP address blocks: 2a06:1287:5840::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:d5:83:7c:c3:42:67:13:15:4c:cc:c3:8e:7a:fd:88:e1:51:4e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C478BDE60E1B92F9755040D6C67C9CFB64C7D355
Validity
Not Before: Aug 14 12:47:05 2023 GMT
Not After : Aug 12 12:52:05 2024 GMT
Subject: CN=722AE99469EA4137275B50D7A892A48D90DE1AA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b8:15:1e:36:de:39:5d:c5:24:e3:a8:cf:23:
2a:72:1b:f9:8f:29:54:d7:d5:66:72:04:97:5b:4c:
07:f1:bb:0a:0b:82:1f:25:44:cf:e6:cd:50:63:bc:
c5:b1:72:11:7c:35:0a:6a:9e:b3:c9:08:66:46:41:
01:6b:9e:ac:6c:af:5b:83:69:79:7c:39:5d:c4:f6:
e2:96:92:83:f0:59:2d:f2:38:64:f5:8f:1b:fe:a9:
d5:f2:c3:34:ae:d2:27:ae:d0:57:91:fa:96:92:7f:
6a:72:34:39:b7:a7:cf:23:3f:13:26:19:a8:1d:21:
b7:8f:86:dc:40:73:74:3c:d0:f6:4a:44:02:74:3e:
9a:04:6b:fe:e8:7c:fc:2e:0f:ff:b1:f2:17:49:ab:
5e:76:c1:e9:46:6b:4b:fb:bd:0b:99:e6:a9:15:d0:
24:b0:ef:e8:da:db:c3:79:76:57:00:b9:79:9a:b9:
43:e7:28:50:33:01:ee:52:c8:55:ad:b2:85:e8:96:
1c:ab:42:ef:4e:71:e7:5f:b8:e9:b2:e5:c4:c9:ab:
6b:a5:d3:65:4f:3e:3b:82:63:26:91:9a:10:1b:54:
82:4b:2b:bb:9a:3b:52:17:c6:6c:e9:a3:7e:88:a9:
00:52:21:50:04:b5:59:e5:87:97:d2:f1:33:9f:84:
94:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2A:E9:94:69:EA:41:37:27:5B:50:D7:A8:92:A4:8D:90:DE:1A:A4
X509v3 Authority Key Identifier:
keyid:C4:78:BD:E6:0E:1B:92:F9:75:50:40:D6:C6:7C:9C:FB:64:C7:D3:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS205432/0/C478BDE60E1B92F9755040D6C67C9CFB64C7D355.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/C478BDE60E1B92F9755040D6C67C9CFB64C7D355.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS205432/0/AS41720.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1287:5840::/44
Signature Algorithm: sha256WithRSAEncryption
a3:d4:8a:53:64:57:69:bb:61:47:c1:fb:07:74:6d:ef:fe:ae:
f3:d5:f9:4c:2f:e4:7d:bd:34:82:a1:f9:3e:c1:b4:09:d1:c6:
0e:66:60:5c:c1:c4:40:62:81:0b:d8:24:92:ab:6e:c3:de:85:
d8:7f:68:f4:e5:78:84:6e:77:5e:3e:86:c3:53:b1:74:bb:11:
fd:98:a8:58:cc:bd:e7:4e:b9:54:27:62:88:a6:72:21:83:75:
65:2e:17:59:74:78:3d:31:ce:d8:0d:73:37:18:6c:92:7a:b6:
6a:d9:40:35:90:0d:f7:da:c3:e7:db:e8:a8:dd:16:83:83:48:
54:75:7d:b5:a2:4d:0b:a5:67:ab:3d:e2:13:d7:88:6e:ac:a1:
6e:35:27:5e:9f:b6:ce:1f:26:bf:a8:7f:cb:5e:6a:17:af:14:
19:bb:c0:78:0e:ed:86:a9:53:9e:f7:e4:bc:6f:b0:9c:8f:b1:
75:ae:7e:18:88:89:65:c4:bd:14:e8:33:35:54:bc:f7:ab:ce:
20:63:2f:62:25:e4:59:27:31:40:54:7d:ac:7e:eb:16:99:19:
8c:20:a4:80:0b:b7:9d:9a:d9:c3:30:19:93:e3:f2:c2:b1:d4:
81:17:7c:e8:07:3b:3f:98:78:45:94:ab:4e:83:67:c7:11:22:
66:a0:c4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 28 01:15:27 2023 by rpki-client on console-ams.rpki-client.org