Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa
File: 326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa (raw, json)
Hash identifier: Mx4gEtDkz+Jj82Ih+Qzf8gLip+YL0eQ+19sspWT8P/w=
Subject key identifier: B4:11:36:D6:4F:C0:F9:23:69:FC:4E:50:15:EF:55:FD:91:3C:1B:8A
Certificate issuer: /CN=9788ACA0CB104D300847BED012FAF8E3269E8A01
Certificate serial: 1BA59DAAE33D0EEC494EAF69BA22433A54A212A6
Authority key identifier: 97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
Authority info access: rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer
Subject info access: rsync://rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa
Signing time: Sat 23 Mar 2024 15:14:33 +0000
ROA not before: Sat 23 Mar 2024 15:09:33 +0000
ROA not after: Sat 22 Mar 2025 15:14:33 +0000
asID: 199676
IP address blocks: 2a12:dd47:3e01::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:a5:9d:aa:e3:3d:0e:ec:49:4e:af:69:ba:22:43:3a:54:a2:12:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9788ACA0CB104D300847BED012FAF8E3269E8A01
Validity
Not Before: Mar 23 15:09:33 2024 GMT
Not After : Mar 22 15:14:33 2025 GMT
Subject: CN=B41136D64FC0F92369FC4E5015EF55FD913C1B8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:56:14:99:49:c8:d6:c6:2f:d7:f3:21:ac:fd:
3f:e4:be:53:37:dc:cd:33:ad:d2:22:de:5c:a5:7d:
5c:64:37:dd:1f:ba:22:b8:f8:47:78:f9:f8:51:31:
ef:0a:c8:a4:70:02:8f:01:08:40:54:14:ed:d4:7d:
52:63:a0:68:3e:ac:c6:b9:f2:74:17:d4:b4:a4:fa:
0a:16:38:1b:55:c8:cd:d6:29:96:6f:2f:d8:bb:85:
1c:e6:d2:fd:ac:9b:aa:8a:dd:4d:93:d2:9b:60:b0:
24:17:f8:e9:82:90:f9:c2:06:5b:36:29:00:16:5a:
69:5a:1f:a0:93:3c:7f:1f:fe:29:71:c4:b7:76:a4:
f6:82:94:45:ae:56:d7:bd:80:ae:7c:13:e8:a6:68:
cf:d6:de:26:2c:10:76:4d:41:51:11:7c:6c:34:c8:
26:61:6a:91:23:28:7a:8f:9a:84:95:d0:4d:89:5c:
04:ed:eb:56:74:ab:ed:df:0d:02:5f:7e:76:59:f2:
4c:28:bf:f3:a1:a3:9a:1c:d3:1c:d8:6f:50:56:dd:
52:42:fc:e4:75:9e:eb:7d:ba:06:c3:93:93:ce:39:
40:5e:9b:58:a0:72:d0:5e:e9:8c:11:e6:6f:90:46:
f4:23:e1:97:26:d5:4c:c8:7c:c9:e5:f4:6e:a1:80:
96:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:11:36:D6:4F:C0:F9:23:69:FC:4E:50:15:EF:55:FD:91:3C:1B:8A
X509v3 Authority Key Identifier:
keyid:97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/John/1/326131323a646434373a336530313a3a2f34382d3438203d3e20313939363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:3e01::/48
Signature Algorithm: sha256WithRSAEncryption
0a:07:bc:4c:52:ac:48:c0:94:12:33:6d:f6:e4:d3:e2:0e:8d:
58:8c:63:c7:ee:34:13:c0:1a:f6:76:3b:3b:4a:eb:86:02:d6:
6b:4e:7b:e7:93:78:6e:b8:fd:81:27:2c:04:1f:4d:95:14:37:
a8:31:db:34:1b:ba:63:23:fe:9e:ed:0f:1c:36:51:90:de:a8:
42:58:f6:02:d7:6d:c0:00:0b:d2:3b:6b:ff:25:9d:b8:52:ab:
9a:60:89:3b:5f:ad:bb:22:9b:fd:be:85:09:c8:06:ca:55:fc:
11:bc:3b:e2:53:87:66:a5:9f:2f:1a:d2:66:ce:12:ed:ab:fe:
62:bd:4d:f4:c8:6e:b8:f9:4d:1b:89:9f:33:a3:12:12:71:10:
06:ff:32:b6:d4:58:31:83:d4:07:69:99:39:87:48:7e:14:ab:
2a:8c:87:23:b0:94:a6:c8:9c:00:36:90:99:f8:8f:40:b8:27:
a3:2d:17:ec:e2:43:f6:1e:6a:2e:10:97:95:ab:f7:39:7a:c6:
a5:02:7c:9a:32:08:f9:d1:5a:4e:6f:78:21:1c:ef:f3:c0:3c:
9b:85:5a:07:20:e5:41:b6:ec:3d:71:c0:7f:bb:a3:54:58:86:
73:04:cb:9c:ba:aa:b4:8d:8d:da:12:9b:e6:6a:da:ec:c3:76:
56:f1:22:48
-----BEGIN CERTIFICATE-----
MIIEyDCCA7CgAwIBAgIUG6WdquM9DuxJTq9puiJDOlSiEqYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMy
NjlFOEEwMTAeFw0yNDAzMjMxNTA5MzNaFw0yNTAzMjIxNTE0MzNaMDMxMTAvBgNV
BAMTKEI0MTEzNkQ2NEZDMEY5MjM2OUZDNEU1MDE1RUY1NUZEOTEzQzFCOEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVhSZScjWxi/X8yGs/T/kvlM3
3M0zrdIi3lylfVxkN90fuiK4+Ed4+fhRMe8KyKRwAo8BCEBUFO3UfVJjoGg+rMa5
8nQX1LSk+goWOBtVyM3WKZZvL9i7hRzm0v2sm6qK3U2T0ptgsCQX+OmCkPnCBls2
KQAWWmlaH6CTPH8f/ilxxLd2pPaClEWuVte9gK58E+imaM/W3iYsEHZNQVERfGw0
yCZhapEjKHqPmoSV0E2JXATt61Z0q+3fDQJffnZZ8kwov/Oho5oc0xzYb1BW3VJC
/OR1nut9ugbDk5POOUBem1igctBe6YwR5m+QRvQj4Zcm1UzIfMnl9G6hgJbhAgMB
AAGjggHSMIIBzjAdBgNVHQ4EFgQUtBE21k/A+SNp/E5QFe9V/ZE8G4owHwYDVR0j
BBgwFoAUl4isoMsQTTAIR77QEvr44yaeigEwDgYDVR0PAQH/BAQDAgeAMFkGA1Ud
HwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5jby9yZXBvL0pvaG4vMS85Nzg4QUNB
MENCMTA0RDMwMDg0N0JFRDAxMkZBRjhFMzI2OUU4QTAxLmNybDBlBggrBgEFBQcB
AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzEv
OTc4OEFDQTBDQjEwNEQzMDA4NDdCRUQwMTJGQUY4RTMyNjlFOEEwMS5jZXIwfAYI
KwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kuY28vcmVwby9K
b2huLzEvMzI2MTMxMzIzYTY0NjQzNDM3M2EzMzY1MzAzMTNhM2EyZjM0MzgyZDM0
MzgyMDNkM2UyMDMxMzkzOTM2MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoS3Uc+ATANBgkqhkiG
9w0BAQsFAAOCAQEACge8TFKsSMCUEjNt9uTT4g6NWIxjx+40E8Aa9nY7O0rrhgLW
a05755N4brj9gScsBB9NlRQ3qDHbNBu6YyP+nu0PHDZRkN6oQlj2AtdtwAAL0jtr
/yWduFKrmmCJO1+tuyKb/b6FCcgGylX8Ebw74lOHZqWfLxrSZs4S7av+Yr1N9Mhu
uPlNG4mfM6MSEnEQBv8yttRYMYPUB2mZOYdIfhSrKoyHI7CUpsicADaQmfiPQLgn
oy0X7OJD9h5qLhCXlav3OXrGpQJ8mjII+dFaTm94IRzv88A8m4VaByDlQbbsPXHA
f7ujVFiGcwTLnLqqtI2N2hKb5mra7MN2VvEiSA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:38:13 2024 by rpki-client on console-fra.rpki-client.org