Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34372d3437203d3e20323131363034.roa
File: 326131323a646434373a383037653a3a2f34372d3437203d3e20323131363034.roa (raw, json)
Hash identifier: 1+P6frfTJ6WAT8Idvt6Yjq1+Z/JJv81IAaC8OC6ZwHM=
Subject key identifier: 91:FA:29:84:B9:44:FB:8A:64:E5:3A:F0:63:7C:0A:6D:30:19:E9:13
Certificate issuer: /CN=05A730CA8351369FC3828D0DC297856AE74E8C11
Certificate serial: 39089394DC1E42EC34AE9A3D2ABAB5198F28CAF7
Authority key identifier: 05:A7:30:CA:83:51:36:9F:C3:82:8D:0D:C2:97:85:6A:E7:4E:8C:11
Authority info access: rsync://rpki.co/repo/AS945/1/05A730CA8351369FC3828D0DC297856AE74E8C11.cer
Subject info access: rsync://rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34372d3437203d3e20323131363034.roa
Signing time: Thu 14 Mar 2024 21:14:11 +0000
ROA not before: Thu 14 Mar 2024 21:09:11 +0000
ROA not after: Thu 13 Mar 2025 21:14:11 +0000
asID: 211604
IP address blocks: 2a12:dd47:807e::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:08:93:94:dc:1e:42:ec:34:ae:9a:3d:2a:ba:b5:19:8f:28:ca:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05A730CA8351369FC3828D0DC297856AE74E8C11
Validity
Not Before: Mar 14 21:09:11 2024 GMT
Not After : Mar 13 21:14:11 2025 GMT
Subject: CN=91FA2984B944FB8A64E53AF0637C0A6D3019E913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1f:54:70:25:b1:17:39:86:c2:30:96:62:b0:
77:3f:94:c6:8d:10:6f:af:ac:4a:48:12:e4:e8:91:
2c:d9:00:3f:28:f7:ed:dc:bd:19:86:0b:6d:32:dc:
7f:93:81:e9:ce:52:28:4b:ac:19:55:7e:c7:25:ac:
7e:bc:ba:65:93:87:ed:f2:83:6b:4a:f8:98:ca:06:
4d:2a:38:d8:1d:b5:ec:06:e0:1e:78:13:20:96:2b:
9c:74:bb:c5:14:e2:46:41:b7:2d:f9:16:9f:a7:16:
b3:7b:a5:32:94:20:68:f8:fc:7c:6a:24:8e:44:bf:
fb:9b:c7:6e:00:7e:12:e7:39:5e:e2:ce:81:f3:44:
12:c4:65:c1:a6:ef:29:ed:b8:59:dd:c8:f1:be:b1:
8b:3f:58:43:51:89:d4:f5:08:31:d5:bc:68:03:ed:
95:72:0e:25:45:43:76:ae:e1:61:54:e0:a7:ab:e7:
18:d0:7f:83:a9:c0:d0:20:f4:63:1e:cc:40:11:31:
24:f7:94:63:d8:1d:a2:a1:80:27:df:23:f5:34:a6:
c4:4c:84:96:5b:04:46:06:74:65:12:c6:bb:ff:1a:
9a:b5:71:38:45:18:6f:a4:22:a1:60:4d:d4:79:cb:
79:fb:23:c3:2f:11:d6:92:ee:3f:2d:02:7e:b6:1c:
55:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FA:29:84:B9:44:FB:8A:64:E5:3A:F0:63:7C:0A:6D:30:19:E9:13
X509v3 Authority Key Identifier:
keyid:05:A7:30:CA:83:51:36:9F:C3:82:8D:0D:C2:97:85:6A:E7:4E:8C:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS211604/1/05A730CA8351369FC3828D0DC297856AE74E8C11.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/05A730CA8351369FC3828D0DC297856AE74E8C11.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34372d3437203d3e20323131363034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:807e::/47
Signature Algorithm: sha256WithRSAEncryption
be:cc:34:0a:8e:76:5a:8b:6b:52:11:e6:38:8f:af:58:4c:24:
56:1b:26:82:cf:4e:8f:e9:9f:4c:88:84:3c:59:62:52:9b:25:
0d:60:34:04:36:94:fb:30:4e:ad:c4:f7:b8:dd:9a:40:38:f4:
90:81:17:3b:e0:df:89:4a:53:04:a9:8d:92:8d:47:62:94:94:
21:64:77:bd:c4:3e:c0:ee:98:7e:2c:b3:2e:69:3d:94:9f:ae:
b1:ba:66:f4:69:04:4b:fd:f0:30:9e:cf:35:89:f1:8f:f4:8c:
ab:a7:d5:b8:72:a4:b8:3e:ce:f8:cd:67:e7:03:7c:6a:b8:38:
43:88:46:96:53:75:76:f9:81:c9:4b:e3:6b:55:24:4d:10:9f:
d8:e2:37:c6:be:e2:cd:29:82:35:1c:bb:d6:14:12:8a:78:94:
f9:da:9b:bb:a0:22:e9:30:c4:01:82:ab:d7:b7:cd:6f:e8:c6:
52:a6:36:05:4f:cb:c8:7c:83:18:eb:bc:1f:51:3d:8e:5a:31:
d1:68:dc:60:fc:84:3c:fe:e3:1a:e3:ee:43:7c:8d:52:dc:b9:
93:61:f6:bf:b4:33:de:8d:15:a3:d3:ca:c4:9a:fc:a9:51:1b:
b3:85:e2:e6:d5:79:f6:25:69:fa:8d:70:87:62:9c:0e:89:5c:
3e:4f:0c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:50:48 2024 by rpki-client on console-fra.rpki-client.org