Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/August/2/AS201217.roa
File: AS201217.roa (raw, json)
Hash identifier: rtsNsfCzSklzQtLmtzoChXtFu/yz4+TdXWqSD96UvcM=
Subject key identifier: 0F:88:03:A0:8B:B4:1C:33:27:DE:40:DB:E8:AA:AB:32:26:C0:D0:2E
Certificate issuer: /CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Certificate serial: 23085D96E0BA3BF6338ACB84C224CB0C59C588FA
Authority key identifier: 95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
Authority info access: rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject info access: rsync://rpki.co/repo/August/2/AS201217.roa
Signing time: Sat 08 Apr 2023 09:22:28 +0000
ROA not before: Sat 08 Apr 2023 09:17:28 +0000
ROA not after: Sat 06 Apr 2024 09:22:28 +0000
asID: 201217
IP address blocks: 2a12:dd47:8e70::/44 maxlen: 48
2a12:dd47:f000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:08:5d:96:e0:ba:3b:f6:33:8a:cb:84:c2:24:cb:0c:59:c5:88:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Validity
Not Before: Apr 8 09:17:28 2023 GMT
Not After : Apr 6 09:22:28 2024 GMT
Subject: CN=0F8803A08BB41C3327DE40DBE8AAAB3226C0D02E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:83:1c:d3:bb:97:28:fc:ca:fb:40:7c:d4:b4:
6e:3e:ca:da:28:8a:a4:92:b1:40:a8:12:0d:4f:59:
66:ef:ff:bc:54:26:8f:f9:ca:ab:a9:43:d2:46:b7:
25:46:86:be:d8:8d:28:41:fd:a8:50:90:ad:6d:8e:
f0:98:c4:27:e7:0b:67:f9:41:2b:56:f4:13:d1:93:
ca:54:a5:8e:f1:f9:5e:c7:30:2b:a6:10:b6:70:5a:
00:ec:16:d2:28:05:0b:93:8f:ff:d1:bc:b3:3f:29:
0e:fd:08:fb:fb:53:c2:7c:a5:8a:32:77:ee:3c:3e:
9e:4c:4d:ce:44:5f:9b:24:5f:36:3f:06:e7:d2:23:
78:ff:0f:24:a8:8b:e1:d0:6a:c7:d1:03:05:e9:78:
b9:cf:c5:9b:15:bd:db:0f:32:c6:6c:af:26:ba:52:
72:b0:79:09:26:37:b7:fb:b9:ad:46:2c:36:8c:bb:
56:80:f0:3c:8e:2c:36:c3:0c:b5:58:86:34:c8:e1:
6c:70:7f:b5:36:06:ef:dd:be:96:cb:ce:ea:1c:3f:
5d:ba:15:1b:ff:40:49:c7:0b:cb:f5:41:b1:b7:0d:
89:09:bc:81:e1:f4:0c:cb:ac:ef:9a:4f:af:0b:f2:
8b:f0:d3:2e:5b:6d:f0:75:30:91:93:b2:58:10:48:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:88:03:A0:8B:B4:1C:33:27:DE:40:DB:E8:AA:AB:32:26:C0:D0:2E
X509v3 Authority Key Identifier:
keyid:95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/August/2/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/August/2/AS201217.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8e70::/44
2a12:dd47:f000::/40
Signature Algorithm: sha256WithRSAEncryption
0b:b9:16:0a:22:d9:c4:cf:c5:20:c9:e9:4e:92:52:6a:99:8d:
73:bf:d7:79:9d:ff:dd:78:b1:a5:71:3e:64:e8:dc:ec:42:4a:
cf:21:ca:d6:ee:d7:d2:d4:92:d7:df:d7:e8:aa:1c:85:a5:18:
80:60:94:cd:84:e8:4b:90:47:71:04:5a:73:92:6f:d5:54:80:
cd:08:2d:35:f5:47:ed:6e:1c:33:f7:15:af:49:53:eb:91:5b:
71:5e:d0:71:2a:5d:06:8f:90:d0:64:eb:eb:cc:00:81:22:99:
95:63:ea:bb:68:cd:93:98:45:b7:90:4d:6e:9e:54:1d:ce:e0:
3c:8a:a9:a0:48:45:b8:c1:cd:dc:07:97:4f:3d:9f:1f:4c:da:
39:8a:a1:f7:82:5c:20:4b:78:19:7f:ea:53:25:78:d2:84:60:
56:20:a4:f5:5f:ac:01:ab:fb:59:a0:1a:a0:a7:79:ba:ce:05:
74:18:6f:cf:44:d4:23:b5:da:70:be:20:ad:c6:e5:69:da:32:
c6:84:bb:63:dd:09:0c:6e:23:12:0e:12:43:24:d5:30:55:66:
4b:3c:46:46:af:f6:51:5f:01:6e:8b:4a:7e:5e:e2:0b:af:3f:
68:4b:60:1b:f8:5f:ca:46:cd:8d:15:6a:98:73:d8:89:7b:7a:
f4:82:f0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-ams.rpki-client.org