Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Matt/1/3130342e33372e34332e302f32342d3234203d3e20323032353539.roa
File: 3130342e33372e34332e302f32342d3234203d3e20323032353539.roa (raw, json)
Hash identifier: aDsq4D/9Wlwdksy3pVwjWjxqZRQ8OgKTDw09jQI6A4o=
Subject key identifier: 08:00:61:58:3F:3B:7A:47:A2:BA:D0:C6:97:E1:2A:D9:8D:41:FB:03
Certificate issuer: /CN=F6C9D934383DB93C7203D4C8BF331DB6D9F472BB
Certificate serial: 2A0528E197AEDD94FD2FFBD603EF226A73650277
Authority key identifier: F6:C9:D9:34:38:3D:B9:3C:72:03:D4:C8:BF:33:1D:B6:D9:F4:72:BB
Authority info access: rsync://rpki.co/repo/AS945/12/F6C9D934383DB93C7203D4C8BF331DB6D9F472BB.cer
Subject info access: rsync://rpki.co/repo/Matt/1/3130342e33372e34332e302f32342d3234203d3e20323032353539.roa
Signing time: Sun 14 May 2023 10:51:16 +0000
ROA not before: Sun 14 May 2023 10:46:16 +0000
ROA not after: Sun 12 May 2024 10:51:16 +0000
asID: 202559
IP address blocks: 104.37.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:05:28:e1:97:ae:dd:94:fd:2f:fb:d6:03:ef:22:6a:73:65:02:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6C9D934383DB93C7203D4C8BF331DB6D9F472BB
Validity
Not Before: May 14 10:46:16 2023 GMT
Not After : May 12 10:51:16 2024 GMT
Subject: CN=080061583F3B7A47A2BAD0C697E12AD98D41FB03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:4e:74:5e:df:90:c8:40:15:47:37:51:a9:
11:03:b8:ef:11:7a:78:e2:dd:c7:43:9b:82:92:4b:
62:1b:76:40:1a:a7:53:8c:3d:b4:57:a7:8b:95:b8:
d4:1f:72:7d:23:f7:96:03:de:6e:40:c0:7c:c1:12:
3d:ac:70:be:f0:1c:6b:e4:d4:41:92:56:30:ea:f5:
86:94:73:e7:95:d9:ab:b7:0d:33:95:2f:92:db:5a:
a2:eb:cc:b4:60:5e:01:59:63:dd:53:4e:5a:59:06:
31:27:c0:1d:1f:e6:55:17:19:c8:77:84:54:c0:4a:
4a:45:41:df:77:3a:5c:3c:7d:e6:b8:15:18:68:4e:
e2:4f:49:49:6f:4b:2d:94:72:c8:49:47:15:9d:cb:
ed:e8:59:7c:c7:3e:9e:d7:5e:5c:52:00:3f:09:c6:
74:41:0e:d6:9c:23:9a:67:75:66:a9:7a:fd:d0:fa:
d6:cb:05:37:8d:a0:e6:dc:eb:4a:f8:16:2e:0a:ab:
df:f8:7c:e4:77:2f:b6:fe:c0:fe:ab:07:54:d4:38:
2e:ce:c1:ee:15:22:25:de:43:6f:ec:78:85:be:fb:
c6:56:3d:3c:63:5e:79:f8:cb:a5:cf:9a:f0:e5:06:
c5:1b:89:19:ce:bc:83:9b:28:9a:ce:69:71:13:48:
a1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:00:61:58:3F:3B:7A:47:A2:BA:D0:C6:97:E1:2A:D9:8D:41:FB:03
X509v3 Authority Key Identifier:
keyid:F6:C9:D9:34:38:3D:B9:3C:72:03:D4:C8:BF:33:1D:B6:D9:F4:72:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Matt/1/F6C9D934383DB93C7203D4C8BF331DB6D9F472BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/12/F6C9D934383DB93C7203D4C8BF331DB6D9F472BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Matt/1/3130342e33372e34332e302f32342d3234203d3e20323032353539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.37.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:76:c0:e2:64:47:97:e5:dc:47:a6:8a:6c:53:3b:a5:dc:6b:
bc:36:d6:7d:a2:ba:cd:67:5a:ae:0e:60:58:11:51:83:ca:d1:
9d:3c:6c:21:08:cb:c2:ac:5e:7a:e6:07:8d:82:90:29:d4:e1:
55:d5:a8:46:20:c8:2a:48:6c:c5:ed:4c:30:5b:58:d5:84:70:
78:29:65:f1:08:17:86:76:1d:af:e9:17:e7:87:be:29:99:96:
c7:e7:55:00:f4:37:89:0f:b7:42:09:e1:78:35:0a:35:b4:f1:
a0:30:aa:03:cf:10:4e:ad:a9:6c:68:45:5b:a8:5c:55:ba:09:
db:ad:13:a7:e0:5c:6a:69:dc:c0:9b:d2:78:27:88:2b:c4:cb:
61:6c:d7:23:33:1a:ba:67:ac:63:06:e1:77:c5:44:b7:73:93:
7d:2a:db:7b:39:33:d4:44:30:18:c2:c4:e9:89:a5:42:16:87:
f3:a9:9e:22:4d:32:ff:ee:78:62:c9:10:bd:25:ef:e8:cd:11:
32:0d:96:c7:ae:b7:b2:33:14:c6:2e:87:02:8d:2a:96:7e:c5:
c5:4c:68:cb:14:59:ca:83:0c:3e:f2:98:37:7a:4b:e1:07:37:
48:a0:a9:3b:3b:89:db:19:1b:71:f1:16:9e:b9:f0:69:81:bf:
82:9b:aa:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 27 06:11:59 2023 by rpki-client on console-fra.rpki-client.org