Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/August/2/AS203868.roa
File: AS203868.roa (raw, json)
Hash identifier: kuK57fupauhP70DV5RZREDZ1DQl1E4B0dgFJAj8YTag=
Subject key identifier: 2A:DC:DF:2C:7B:5D:83:5E:E5:C6:27:2C:05:47:A0:AD:36:F0:42:84
Certificate issuer: /CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Certificate serial: 1360D4439E9769907D79B63D8C633330BAA2F42B
Authority key identifier: 95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
Authority info access: rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject info access: rsync://rpki.co/repo/August/2/AS203868.roa
Signing time: Sat 08 Apr 2023 09:22:15 +0000
ROA not before: Sat 08 Apr 2023 09:17:15 +0000
ROA not after: Sat 06 Apr 2024 09:22:15 +0000
asID: 203868
IP address blocks: 2a12:dd47:8046::/48 maxlen: 48
2a12:dd47:8700::/40 maxlen: 40
2a12:dd47:d000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:60:d4:43:9e:97:69:90:7d:79:b6:3d:8c:63:33:30:ba:a2:f4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Validity
Not Before: Apr 8 09:17:15 2023 GMT
Not After : Apr 6 09:22:15 2024 GMT
Subject: CN=2ADCDF2C7B5D835EE5C6272C0547A0AD36F04284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:55:c1:96:5d:48:ff:93:fc:7d:9e:1d:30:b6:
13:98:2f:14:a8:41:21:1b:31:a3:f8:db:7c:33:9b:
5b:c1:19:db:21:f1:52:d9:c3:ae:16:50:8d:ad:43:
de:8d:2f:a6:69:56:41:f4:34:15:4a:6e:1a:d3:83:
e9:dd:aa:d8:af:81:b3:18:99:2e:fc:32:b1:f2:c4:
69:e7:98:68:c0:18:9a:3b:c9:cf:c3:96:75:b5:ab:
68:da:35:0e:b3:b7:b9:87:20:53:a2:da:b1:ba:da:
0f:19:4c:80:c8:45:33:d1:21:c5:f2:35:50:f7:93:
49:e8:84:be:7a:4b:30:40:59:dd:29:4f:72:ef:5f:
60:d6:3b:c1:45:9a:ee:9c:15:16:e8:11:a2:7a:f2:
b3:cf:48:b8:c3:de:e4:79:cb:1a:68:5c:95:20:14:
2e:eb:5b:f5:ad:0b:af:e7:ce:ac:11:f6:3b:61:5d:
93:eb:7e:f4:1d:fc:92:95:c5:e0:b1:a2:23:4e:e6:
dd:01:b6:a7:22:45:ed:a0:10:79:88:b4:ab:e7:09:
fe:fd:5b:14:e8:37:7a:84:45:c3:8b:19:7d:c7:37:
70:c9:9f:dc:5e:c4:68:c2:c6:44:09:63:db:2d:0f:
82:14:6d:90:c5:ee:e1:9a:ac:3b:d7:19:2f:00:44:
dd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DC:DF:2C:7B:5D:83:5E:E5:C6:27:2C:05:47:A0:AD:36:F0:42:84
X509v3 Authority Key Identifier:
keyid:95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/August/2/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/August/2/AS203868.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8046::/48
2a12:dd47:8700::/40
2a12:dd47:d000::/40
Signature Algorithm: sha256WithRSAEncryption
bd:f0:e2:93:09:e8:89:fc:51:73:e0:26:3f:23:cd:2e:2d:04:
bd:ad:b5:c5:8e:40:82:ac:8b:a8:fd:57:31:02:d9:97:95:3e:
8b:7d:d0:71:c9:6b:63:69:8f:5b:ed:4d:c3:f3:17:70:56:d2:
d2:e6:72:a5:34:2a:d2:43:3d:77:35:54:13:dc:67:e3:1f:12:
53:2c:a1:bb:a1:0a:29:c3:3d:3b:31:3d:08:e9:22:c1:60:50:
7c:21:5f:e9:d9:6e:58:5e:7c:fb:d5:e5:1b:23:a8:52:7c:e1:
26:88:c6:fb:97:d1:56:98:09:c1:95:f1:0f:1d:46:1a:b4:3f:
b6:34:11:63:b4:59:cc:68:d2:2a:5a:f1:0d:b1:c2:c8:b5:17:
da:b1:ae:90:d3:5e:14:98:53:bd:55:61:56:eb:70:07:98:c3:
b7:e0:92:25:bb:da:a0:99:f1:0c:50:94:df:22:a3:59:2c:ea:
27:8d:9f:27:59:1a:a4:20:4e:42:e5:98:2e:c1:82:51:2e:1f:
b9:17:ed:59:f1:80:25:36:4a:ec:dc:48:1f:73:56:f0:92:e8:
3a:64:b8:f9:b1:48:18:77:4a:21:bb:94:6e:72:d7:e0:2f:36:
a5:b4:33:8b:d6:bb:30:cf:b8:bc:f3:b7:4e:9f:08:f9:f2:f0:
0b:7c:52:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:24 2023 by rpki-client on console-ams.rpki-client.org