Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa
File: 326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa (raw, json)
Hash identifier: KVYDkwczvGxWcScRYpzQNd8/2VSEf+YA9t655/zRTds=
Subject key identifier: 4B:60:09:99:1D:FE:31:5F:EF:54:5B:2A:0A:5C:86:B8:92:E0:D0:2F
Certificate issuer: /CN=9788ACA0CB104D300847BED012FAF8E3269E8A01
Certificate serial: 3B8865241D06CCABED64708AA3B6D491F3F7A619
Authority key identifier: 97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
Authority info access: rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer
Subject info access: rsync://rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa
Signing time: Tue 19 Mar 2024 00:14:27 +0000
ROA not before: Tue 19 Mar 2024 00:09:27 +0000
ROA not after: Tue 18 Mar 2025 00:14:27 +0000
asID: 200879
IP address blocks: 2a12:dd47:df00::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:88:65:24:1d:06:cc:ab:ed:64:70:8a:a3:b6:d4:91:f3:f7:a6:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9788ACA0CB104D300847BED012FAF8E3269E8A01
Validity
Not Before: Mar 19 00:09:27 2024 GMT
Not After : Mar 18 00:14:27 2025 GMT
Subject: CN=4B6009991DFE315FEF545B2A0A5C86B892E0D02F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:44:d6:3b:47:98:4b:ea:22:0b:1e:6c:bb:1d:
69:68:9b:ff:b5:1d:00:c6:9e:82:46:f1:82:99:8a:
e1:de:75:4e:86:ed:89:00:c0:c6:76:94:ba:d5:bc:
eb:17:f6:c2:cb:29:3d:1e:43:f7:9a:75:da:d3:90:
f2:41:08:53:9e:88:25:d5:d7:da:56:9c:70:b4:e4:
ce:5b:a1:17:81:e3:90:d8:9f:78:7d:cb:2c:99:d7:
60:66:e7:ef:51:aa:2b:a8:94:6d:aa:81:c2:e3:e4:
80:bc:5c:0e:88:30:5d:e2:46:02:55:b3:ec:81:13:
48:f0:2f:d2:f6:43:7e:a0:2f:79:7b:54:de:e6:1e:
39:b5:db:8d:fe:c0:cc:23:45:c5:58:3d:3e:3c:a0:
10:d2:9e:c1:66:d0:89:33:22:2e:82:81:e0:79:67:
cd:3d:e4:53:12:8e:d8:f7:96:8b:f8:a1:a2:f4:c6:
56:c4:48:12:7f:b6:b9:3f:70:14:c4:f5:95:98:49:
41:a2:5f:a5:91:94:94:a6:62:c6:bf:1b:8b:d0:69:
98:28:90:7d:54:69:08:36:b1:2c:45:e7:9c:21:6d:
34:f6:c2:da:2d:1f:cc:12:57:78:be:f2:bd:6f:7a:
57:20:c3:25:52:40:4f:ce:33:b0:09:70:08:0e:ff:
a0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:60:09:99:1D:FE:31:5F:EF:54:5B:2A:0A:5C:86:B8:92:E0:D0:2F
X509v3 Authority Key Identifier:
keyid:97:88:AC:A0:CB:10:4D:30:08:47:BE:D0:12:FA:F8:E3:26:9E:8A:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/John/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/9788ACA0CB104D300847BED012FAF8E3269E8A01.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/John/1/326131323a646434373a646630303a3a2f34342d3434203d3e20323030383739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:df00::/44
Signature Algorithm: sha256WithRSAEncryption
1a:fb:f1:16:73:21:bb:11:72:45:99:ae:1d:00:19:0a:c6:88:
da:12:89:2e:68:4f:7f:ce:95:1f:0d:70:2b:6a:c2:b7:03:a4:
ed:86:ab:ec:6e:f2:7c:52:46:3e:cd:9b:88:32:b8:43:9c:bc:
7d:be:a4:1f:48:9e:34:08:24:28:37:78:06:86:26:14:5a:72:
8f:c2:c0:da:b8:fb:d9:9f:47:73:dc:f9:e6:c5:c7:94:52:ee:
26:fe:a8:26:2d:fd:83:a9:79:7c:e0:5c:52:9c:5a:9f:08:92:
42:a6:5f:11:64:97:0b:9b:55:d3:21:e8:ea:a9:a9:65:83:d8:
c1:67:be:9d:fe:ca:d7:3b:cb:ef:1b:08:a5:0f:b7:13:83:78:
4f:25:53:46:56:75:64:a8:cd:59:87:db:ca:05:12:51:c8:d2:
36:a3:ba:ae:af:82:bd:d5:c6:07:af:f1:55:b9:29:06:28:a0:
90:0a:ae:1f:ee:21:4f:ed:73:53:db:74:38:43:2a:8c:eb:17:
d8:86:53:86:f7:a5:f1:5e:b6:1d:42:da:d5:65:11:34:19:f8:
f9:da:f6:aa:8a:7f:cc:9c:32:92:95:39:40:61:f5:ad:cc:70:
cd:b1:e5:43:71:6e:e8:75:bd:cb:97:0a:5c:a9:f3:4f:6d:e5:
ab:41:d5:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:03:05 2024 by rpki-client on console-ams.rpki-client.org