Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/August/2/AS200827.roa
File: AS200827.roa (raw, json)
Hash identifier: QeUyZCiEp73hUc6FRgNN4YDiDo5Wu/NeHuVEU7/W/zU=
Subject key identifier: 51:70:B1:97:2B:34:02:5B:B4:CD:6A:A8:FF:7A:1C:3D:E1:11:1E:C2
Certificate issuer: /CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Certificate serial: 3C7BD3FD6A67ADC6AD1A443A11C42E19CFBD0B73
Authority key identifier: 95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
Authority info access: rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject info access: rsync://rpki.co/repo/August/2/AS200827.roa
Signing time: Sat 08 Apr 2023 09:22:10 +0000
ROA not before: Sat 08 Apr 2023 09:17:10 +0000
ROA not after: Sat 06 Apr 2024 09:22:10 +0000
asID: 200827
IP address blocks: 2a12:dd47:3200::/40 maxlen: 40
2a12:dd47:3400::/38 maxlen: 38
2a12:dd47:f900::/40 maxlen: 48
2a12:dd47:fc00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:7b:d3:fd:6a:67:ad:c6:ad:1a:44:3a:11:c4:2e:19:cf:bd:0b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Validity
Not Before: Apr 8 09:17:10 2023 GMT
Not After : Apr 6 09:22:10 2024 GMT
Subject: CN=5170B1972B34025BB4CD6AA8FF7A1C3DE1111EC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:ee:c9:54:dd:82:d3:b3:49:f6:c4:82:02:
88:73:d6:81:1b:a6:3c:ca:44:01:68:73:88:d7:3d:
1c:5a:00:5f:de:ba:fa:95:99:06:8f:e2:c0:d7:ea:
ad:b2:02:88:ee:0a:e3:a7:da:f0:a9:af:c1:f4:eb:
80:7a:6c:81:40:4e:1a:62:eb:01:3e:3e:44:8e:00:
d4:39:88:1a:18:15:52:ad:1b:11:4c:e1:2d:93:6c:
a5:12:f6:80:ee:1f:23:4c:bf:2c:30:be:ab:11:92:
80:63:d3:af:dd:bc:c3:b5:96:f2:73:a0:a3:80:e5:
ed:0b:e7:6f:c6:1c:91:4f:b8:7d:88:6b:24:dc:4f:
6d:b7:9a:07:00:82:3a:b7:a1:fc:ef:8d:3f:12:b2:
c8:0b:ad:d4:e0:68:86:18:96:6e:b3:59:85:7e:b2:
7d:e3:e8:12:40:23:7b:b3:e2:c7:0d:86:b7:81:30:
2e:1f:31:0d:52:5d:1a:e7:b4:3e:5d:ec:6d:59:f2:
a0:2c:ee:ec:6e:74:39:27:ab:50:c6:d6:2f:f9:7b:
90:7e:79:83:b9:d3:af:5d:5c:d2:75:9e:73:eb:49:
bd:68:d6:25:8b:84:d2:98:b2:14:7f:7a:76:11:4f:
53:71:92:82:0a:80:c7:b3:a8:ed:65:aa:c0:80:77:
91:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:70:B1:97:2B:34:02:5B:B4:CD:6A:A8:FF:7A:1C:3D:E1:11:1E:C2
X509v3 Authority Key Identifier:
keyid:95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/August/2/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/August/2/AS200827.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:3200::/40
2a12:dd47:3400::/38
2a12:dd47:f900::/40
2a12:dd47:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
95:59:cb:e3:49:1f:5d:81:02:bb:c9:84:26:11:6c:34:47:00:
b3:21:76:d0:33:fd:5a:2d:21:ad:62:24:07:1f:6c:fd:69:6d:
18:06:71:48:0d:9c:f9:5d:6d:9e:e4:05:e7:74:26:53:8d:4b:
3a:9f:10:fe:1c:f1:78:4a:14:0d:95:e3:fc:ce:2e:b2:2c:77:
6c:84:69:5d:a1:21:43:03:72:91:3d:f4:8a:48:28:43:fa:21:
4e:a6:66:cd:b0:5a:ef:51:5f:05:4d:ce:5d:92:00:66:98:04:
ef:66:77:2a:19:0b:0a:e4:59:98:ae:8e:b9:54:4c:0c:2d:9b:
90:21:96:7b:3b:02:fc:df:ae:b5:c8:c3:60:5d:6b:09:ed:97:
fe:83:61:73:43:61:27:23:76:92:3d:f1:e3:01:00:35:de:58:
88:eb:ef:4f:7d:7e:13:1f:f5:9a:2b:69:5d:fb:01:60:29:15:
6a:33:6e:db:0f:c9:ca:b9:7a:e3:92:d5:fb:ee:5d:b3:11:b0:
81:a4:f1:e6:d4:5b:5e:73:a5:3f:5f:e6:ba:48:9e:c6:7f:3e:
67:2b:e6:71:27:c0:69:09:8f:58:93:e2:bc:4c:3d:16:35:8e:
9b:af:a9:e5:54:e4:8e:f2:40:f1:79:b3:fc:c8:65:61:a6:cb:
0d:09:78:56
-----BEGIN CERTIFICATE-----
MIIEqjCCA5KgAwIBAgIUPHvT/WpnrcatGkQ6EcQuGc+9C3MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTUwNUI5RjRDQjQxMUREODUzQzA3MEFDNDc2QTAxRkVE
QTIxQzhEMjAeFw0yMzA0MDgwOTE3MTBaFw0yNDA0MDYwOTIyMTBaMDMxMTAvBgNV
BAMTKDUxNzBCMTk3MkIzNDAyNUJCNENENkFBOEZGN0ExQzNERTExMTFFQzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx/e7JVN2C07NJ9sSCAohz1oEb
pjzKRAFoc4jXPRxaAF/euvqVmQaP4sDX6q2yAojuCuOn2vCpr8H064B6bIFAThpi
6wE+PkSOANQ5iBoYFVKtGxFM4S2TbKUS9oDuHyNMvywwvqsRkoBj06/dvMO1lvJz
oKOA5e0L52/GHJFPuH2IayTcT223mgcAgjq3ofzvjT8SssgLrdTgaIYYlm6zWYV+
sn3j6BJAI3uz4scNhreBMC4fMQ1SXRrntD5d7G1Z8qAs7uxudDknq1DG1i/5e5B+
eYO5069dXNJ1nnPrSb1o1iWLhNKYshR/enYRT1NxkoIKgMezqO1lqsCAd5FtAgMB
AAGjggG0MIIBsDAdBgNVHQ4EFgQUUXCxlys0Alu0zWqo/3ocPeERHsIwHwYDVR0j
BBgwFoAUlQW59MtBHdhTwHCsR2oB/tohyNIwDgYDVR0PAQH/BAQDAgeAMFsGA1Ud
HwRUMFIwUKBOoEyGSnJzeW5jOi8vcnBraS5jby9yZXBvL0F1Z3VzdC8yLzk1MDVC
OUY0Q0I0MTFERDg1M0MwNzBBQzQ3NkEwMUZFREEyMUM4RDIuY3JsMGQGCCsGAQUF
BwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmNvL3JlcG8vSFlTUC82
Lzk1MDVCOUY0Q0I0MTFERDg1M0MwNzBBQzQ3NkEwMUZFREEyMUM4RDIuY2VyMEYG
CCsGAQUFBwELBDowODA2BggrBgEFBQcwC4YqcnN5bmM6Ly9ycGtpLmNvL3JlcG8v
QXVndXN0LzIvQVMyMDA4Mjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
OQYIKwYBBQUHAQcBAf8EKjAoMCYEAgACMCADBgAqEt1HMgMGAioS3Uc0AwYAKhLd
R/kDBgIqEt1H/DANBgkqhkiG9w0BAQsFAAOCAQEAlVnL40kfXYECu8mEJhFsNEcA
syF20DP9Wi0hrWIkBx9s/WltGAZxSA2c+V1tnuQF53QmU41LOp8Q/hzxeEoUDZXj
/M4usix3bIRpXaEhQwNykT30ikgoQ/ohTqZmzbBa71FfBU3OXZIAZpgE72Z3KhkL
CuRZmK6OuVRMDC2bkCGWezsC/N+utcjDYF1rCe2X/oNhc0NhJyN2kj3x4wEANd5Y
iOvvT31+Ex/1mitpXfsBYCkVajNu2w/Jyrl645LV++5dsxGwgaTx5tRbXnOlP1/m
ukiexn8+ZyvmcSfAaQmPWJPivEw9FjWOm6+p5VTkjvJA8Xmz/MhlYabLDQl4Vg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:29 2023 by rpki-client on console-fra.rpki-client.org