Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/14/326130353a646663363a383030303a3a2f33362d3438203d3e20323030383237.roa
File: 326130353a646663363a383030303a3a2f33362d3438203d3e20323030383237.roa (raw, json)
Hash identifier: uZVFB3+zTqdZc4EPqHaqP5wxmokaSb23HcKhL16JbPA=
Subject key identifier: 71:37:82:5D:10:86:14:7E:90:E4:BE:9E:58:02:06:DA:5E:AD:71:64
Certificate issuer: /CN=3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9
Certificate serial: 3A7810F29B95DE6882386FE13E057F433E707375
Authority key identifier: 3E:38:23:CF:F4:D4:1C:2C:6F:6B:3A:20:CC:DD:59:F6:EB:BE:AD:E9
Authority info access: rsync://rpki.co/repo/August/13/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.cer
Subject info access: rsync://rpki.co/repo/AS945/14/326130353a646663363a383030303a3a2f33362d3438203d3e20323030383237.roa
Signing time: Thu 18 May 2023 08:59:19 +0000
ROA not before: Thu 18 May 2023 08:54:19 +0000
ROA not after: Thu 16 May 2024 08:59:19 +0000
asID: 200827
IP address blocks: 2a05:dfc6:8000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:78:10:f2:9b:95:de:68:82:38:6f:e1:3e:05:7f:43:3e:70:73:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9
Validity
Not Before: May 18 08:54:19 2023 GMT
Not After : May 16 08:59:19 2024 GMT
Subject: CN=7137825D1086147E90E4BE9E580206DA5EAD7164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:57:0c:f5:c5:99:19:c7:0a:45:9a:0a:77:
09:a5:0a:6f:85:92:87:7f:7d:10:d7:03:63:90:a3:
b5:77:b9:ce:ae:99:83:83:73:7b:1f:4f:c1:18:3f:
19:01:16:05:06:b3:2e:ba:dd:76:ab:7d:63:e6:21:
ee:c4:6e:6e:b7:b4:30:0e:1a:53:66:a8:bc:c8:fe:
85:7a:1a:9b:4e:73:74:f7:1a:a7:8e:00:f8:49:13:
32:45:bd:39:7f:eb:f0:fd:ac:1a:5a:b7:63:aa:61:
2b:26:37:6c:ae:66:fe:21:e6:e3:fc:fc:68:ac:f0:
ca:b1:36:2b:ac:30:e0:f5:57:a0:5f:19:1d:57:0a:
9f:a6:e8:1d:b8:63:7b:54:51:19:0d:2e:8b:6d:0c:
42:b8:27:d9:03:1a:29:1e:5c:15:54:fe:57:e1:fd:
b7:3c:be:d1:34:2c:7b:c0:bc:c9:d7:bb:2c:06:b0:
25:13:64:c3:b8:e1:b8:30:ab:4a:5d:48:fa:52:ac:
32:78:b4:fa:30:eb:b4:57:ac:1c:99:39:da:95:78:
d7:a4:e1:9f:c5:59:37:7b:e8:e0:85:ab:6c:e1:6f:
a9:d8:74:d5:ff:83:1e:3a:fc:4a:89:0c:2b:93:6d:
81:cc:0f:3f:34:ee:e6:12:fc:10:8b:8f:fb:ff:92:
02:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:37:82:5D:10:86:14:7E:90:E4:BE:9E:58:02:06:DA:5E:AD:71:64
X509v3 Authority Key Identifier:
keyid:3E:38:23:CF:F4:D4:1C:2C:6F:6B:3A:20:CC:DD:59:F6:EB:BE:AD:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/14/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/August/13/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/14/326130353a646663363a383030303a3a2f33362d3438203d3e20323030383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc6:8000::/36
Signature Algorithm: sha256WithRSAEncryption
97:4e:f6:54:0c:bc:18:87:3f:19:9b:97:4a:7a:b0:7a:77:05:
11:a0:9e:42:4d:dd:bb:f6:fc:74:1d:47:c3:de:37:3c:83:06:
56:a5:1d:93:84:4d:f6:08:c1:04:3d:74:ae:48:18:d2:02:a4:
de:4a:64:6a:21:9c:e5:98:90:71:09:b4:69:56:36:03:27:d0:
ff:af:a0:53:7f:b6:2c:0f:5e:75:19:e7:ac:06:87:d1:36:7c:
d3:f0:ce:f2:e5:7d:aa:8f:b1:fc:28:9c:76:1c:ef:34:cf:f6:
a7:83:ea:3b:ae:a5:e5:bb:83:9b:fd:0c:77:27:c6:c7:f3:e6:
5d:58:0d:1a:29:17:d6:8c:bc:ed:37:d9:85:a2:da:03:1f:ca:
4c:6d:be:31:ba:45:f5:0a:d2:ea:81:aa:3f:e5:4e:91:11:79:
5a:49:86:4f:40:e4:09:34:55:fa:53:5c:c5:1e:50:71:ee:c5:
6b:1a:05:be:a9:00:32:e1:8f:37:d8:8a:55:78:a6:3d:fa:10:
d0:a1:db:bf:a8:38:32:74:54:dc:26:28:5f:1d:36:dd:a1:92:
67:f5:08:25:7e:03:02:2b:4b:42:b9:bf:e0:0d:99:62:c3:01:
c8:75:7f:25:a8:5e:d3:05:53:8e:2e:2e:ab:7f:d0:d4:52:81:
b1:47:20:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 17 16:43:40 2023 by rpki-client on console-fra.rpki-client.org