Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34382d3438203d3e20323131363034.roa
File: 326131323a646434373a383037653a3a2f34382d3438203d3e20323131363034.roa (raw, json)
Hash identifier: fvIJgyg329Ulgth6fD3uCxES1sqIPytv54X2lD/M1Nw=
Subject key identifier: 98:88:94:24:5E:91:9C:64:35:C9:35:A0:3F:6F:6D:21:0B:44:ED:19
Certificate issuer: /CN=05A730CA8351369FC3828D0DC297856AE74E8C11
Certificate serial: 496D09B2BE17D61CC1A61690CF0FD02B60BBAA6C
Authority key identifier: 05:A7:30:CA:83:51:36:9F:C3:82:8D:0D:C2:97:85:6A:E7:4E:8C:11
Authority info access: rsync://rpki.co/repo/AS945/1/05A730CA8351369FC3828D0DC297856AE74E8C11.cer
Subject info access: rsync://rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34382d3438203d3e20323131363034.roa
Signing time: Thu 14 Mar 2024 14:14:09 +0000
ROA not before: Thu 14 Mar 2024 14:09:09 +0000
ROA not after: Thu 13 Mar 2025 14:14:09 +0000
asID: 211604
IP address blocks: 2a12:dd47:807e::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:6d:09:b2:be:17:d6:1c:c1:a6:16:90:cf:0f:d0:2b:60:bb:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05A730CA8351369FC3828D0DC297856AE74E8C11
Validity
Not Before: Mar 14 14:09:09 2024 GMT
Not After : Mar 13 14:14:09 2025 GMT
Subject: CN=988894245E919C6435C935A03F6F6D210B44ED19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:78:8a:73:df:0b:60:11:7c:28:b0:02:16:
39:c7:40:fd:43:95:fd:6a:92:5c:c5:a8:77:ad:74:
cc:c6:0c:6c:e8:53:81:c0:48:dc:cc:87:64:f2:eb:
ce:54:79:b7:10:6b:63:73:05:93:79:05:6f:b6:46:
e4:39:f2:15:a8:b5:b1:3d:1a:42:cb:c4:84:9b:97:
16:78:0c:11:52:21:93:ed:7f:5e:d9:33:ba:8b:3e:
96:14:8c:0d:76:67:7c:fb:85:4c:77:8c:0a:d8:24:
c2:06:10:e7:0a:b2:07:63:ed:b8:0f:7f:d7:a7:72:
55:8a:93:27:37:dc:31:c7:f9:ef:34:fe:3b:04:bb:
60:df:9e:8e:02:8f:90:16:a1:68:a0:73:8c:54:4c:
b5:ce:b7:04:08:6c:52:5d:f5:f1:44:a6:61:0c:63:
98:13:32:80:69:e2:bc:86:a5:8a:d6:61:70:cf:ea:
59:6f:30:20:7d:97:b1:d6:27:b2:8a:20:e3:c2:9a:
5c:f8:ec:19:ee:4c:e9:33:d0:06:7a:32:99:d2:2f:
74:c4:04:89:23:a3:b0:b4:be:26:db:40:60:56:32:
f2:c4:f9:22:38:60:ea:f2:c3:57:fe:e3:af:86:01:
d1:03:0b:50:a0:1f:a0:9b:ec:73:39:93:85:c1:3b:
de:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:88:94:24:5E:91:9C:64:35:C9:35:A0:3F:6F:6D:21:0B:44:ED:19
X509v3 Authority Key Identifier:
keyid:05:A7:30:CA:83:51:36:9F:C3:82:8D:0D:C2:97:85:6A:E7:4E:8C:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS211604/1/05A730CA8351369FC3828D0DC297856AE74E8C11.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/05A730CA8351369FC3828D0DC297856AE74E8C11.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS211604/1/326131323a646434373a383037653a3a2f34382d3438203d3e20323131363034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:807e::/48
Signature Algorithm: sha256WithRSAEncryption
6f:7e:d8:7f:57:48:e1:a2:50:86:5e:ba:af:4b:13:bd:38:e0:
dd:3d:7f:66:bc:bf:2a:c0:6f:a9:90:31:a4:6f:99:2e:da:4e:
95:ad:f0:8b:f0:70:29:ae:f1:5f:80:39:c3:ab:8c:98:66:c9:
4f:c6:ed:dc:80:2e:17:cc:21:d4:6c:c9:7c:09:4e:ac:db:0a:
a7:53:e0:97:6c:0f:1e:6e:ab:22:76:1d:76:7e:2b:97:8c:b5:
d6:23:4a:3b:12:37:9f:80:75:05:fb:e0:c1:42:85:b4:2f:d6:
a9:0a:ad:91:cc:ec:52:76:5a:a6:4a:68:db:c9:a9:1d:99:17:
e7:84:26:81:0f:29:0c:bd:c2:ec:10:41:c7:ca:32:9b:84:3d:
24:27:76:8d:64:b4:4a:25:e6:50:9b:d8:da:20:5c:20:f8:e7:
be:e1:16:1d:5b:ff:31:c3:13:d8:f8:a6:c4:26:cc:06:46:1b:
17:56:ee:5d:2a:2d:00:fb:76:4c:00:2f:3d:4b:85:46:22:75:
f2:5d:a2:4c:03:a1:cf:0a:97:56:c3:94:37:72:f7:9f:11:ce:
bd:5d:52:e1:d6:b4:0f:ae:e8:15:3e:37:a6:e4:75:9d:64:98:
76:ae:30:3d:52:de:d5:3b:8a:4f:36:a7:95:41:e4:88:52:54:
76:ea:d9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:50:48 2024 by rpki-client on console-fra.rpki-client.org