Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/August/2/AS31898.roa
File: AS31898.roa (raw, json)
Hash identifier: G7uobFzCpL+yj2uJuk8rBraWUR7HQSq7hqjQ0qKZt5M=
Subject key identifier: D9:C8:DD:EB:7F:60:BA:57:64:87:5A:C7:5D:B8:5C:B2:92:57:CE:8D
Certificate issuer: /CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Certificate serial: 17A91AD657FB71B8C986EEC3BFC96500CC44AFDC
Authority key identifier: 95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
Authority info access: rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject info access: rsync://rpki.co/repo/August/2/AS31898.roa
Signing time: Sun 09 Apr 2023 21:01:59 +0000
ROA not before: Sun 09 Apr 2023 20:56:59 +0000
ROA not after: Sun 07 Apr 2024 21:01:59 +0000
asID: 31898
IP address blocks: 2001:67c:a9c::/48 maxlen: 48
2a12:dd47:8047::/48 maxlen: 48
2a12:dd47:80e4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:a9:1a:d6:57:fb:71:b8:c9:86:ee:c3:bf:c9:65:00:cc:44:af:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9505B9F4CB411DD853C070AC476A01FEDA21C8D2
Validity
Not Before: Apr 9 20:56:59 2023 GMT
Not After : Apr 7 21:01:59 2024 GMT
Subject: CN=D9C8DDEB7F60BA5764875AC75DB85CB29257CE8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:59:b2:cc:50:1e:6a:60:29:29:44:45:e7:a5:
6c:8b:7c:c1:31:80:c1:07:70:fa:4f:a5:16:d7:67:
fe:ac:e4:8b:22:72:97:d0:ba:cb:5b:bb:c9:20:75:
f2:e7:29:93:4e:2b:4e:27:43:d3:42:c0:62:79:36:
db:40:da:6c:69:be:c2:d3:34:9b:a0:61:b3:12:6e:
69:c2:f8:44:7b:ca:4d:4f:79:11:95:70:48:ac:aa:
bb:00:71:47:4c:bb:52:05:f8:5e:dd:a0:47:dc:5e:
dd:90:a0:75:64:2e:54:5e:92:4c:40:f9:d1:24:ed:
d2:85:80:5e:2e:74:84:60:e5:6c:1e:db:31:26:c5:
53:34:50:d5:26:50:3e:eb:73:ee:2a:1a:fb:d5:57:
c3:34:6c:73:1a:c6:28:d1:c6:37:9e:5b:05:0a:3f:
c8:98:00:6e:0f:95:8b:3b:b7:4c:42:81:84:93:67:
91:35:cd:ed:2d:d7:ec:10:8d:01:e5:27:9e:30:67:
f8:a3:6b:85:1a:2a:dc:ab:b4:c9:a0:15:ac:43:2f:
e7:23:b5:87:f3:46:68:84:92:5c:1c:50:0d:19:d2:
fe:4e:a7:7b:89:8b:a2:7c:d2:6a:0f:44:77:17:b7:
27:4f:16:0a:b4:75:d7:d8:08:6f:9b:e7:e9:9a:69:
cf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C8:DD:EB:7F:60:BA:57:64:87:5A:C7:5D:B8:5C:B2:92:57:CE:8D
X509v3 Authority Key Identifier:
keyid:95:05:B9:F4:CB:41:1D:D8:53:C0:70:AC:47:6A:01:FE:DA:21:C8:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/August/2/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/HYSP/6/9505B9F4CB411DD853C070AC476A01FEDA21C8D2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/August/2/AS31898.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a9c::/48
2a12:dd47:8047::/48
2a12:dd47:80e4::/48
Signature Algorithm: sha256WithRSAEncryption
2f:cc:69:ed:d9:d3:39:45:d6:2b:61:a2:c6:96:7e:3d:4b:0f:
4f:aa:b1:aa:05:0e:3e:ea:55:bb:f4:2e:28:8e:e2:a9:29:1c:
dc:ce:29:83:f8:51:76:30:bb:a3:65:25:c7:d3:85:d2:45:c7:
1c:46:42:c4:68:a2:3c:44:cd:f8:89:e3:d1:9c:11:30:8d:be:
3e:9f:6f:02:c9:a1:1d:51:22:85:f2:98:bc:37:a5:e8:e5:f8:
7b:74:8b:87:31:c0:31:a1:a4:3a:fb:99:38:03:b7:c7:ef:0d:
95:fc:81:f8:e1:79:4c:ba:a5:5a:7b:ab:91:5d:5b:3d:b8:08:
a3:a8:b0:e1:c7:5b:5b:cf:67:87:b8:2f:dc:00:ff:62:06:06:
f7:fa:7f:46:da:02:a9:ef:91:18:d3:42:41:11:0e:2b:39:e2:
ba:ad:47:9b:fc:7a:00:8e:d5:c0:fe:86:b3:09:4b:16:84:77:
a8:23:62:87:63:a4:ad:b1:e4:da:62:fc:43:ff:90:5a:6e:94:
c5:05:84:6f:29:2f:7a:1a:a2:09:a9:b5:eb:9b:f9:ca:12:54:
83:d2:0f:23:17:59:78:58:47:fc:f1:d2:ce:ea:14:b4:15:36:
ce:49:ac:c9:1a:d0:11:6a:b7:49:7a:5c:4c:76:dd:08:e9:a0:
81:64:11:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:25 2023 by rpki-client on console-ams.rpki-client.org