Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa
File: 326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa (raw, json)
Hash identifier: MdG006U9XMVs0Es14dboXJTTa9RiLlXJi+CaxjNbadE=
Subject key identifier: 59:15:E3:C7:A5:1A:C1:2C:1D:A0:FC:18:DE:5F:A4:F0:75:3A:21:92
Certificate issuer: /CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Certificate serial: 1124D58D911D9DAF40C2CCE8751CC270EF7DCA57
Authority key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
Authority info access: rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject info access: rsync://rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa
Signing time: Thu 14 Mar 2024 08:14:05 +0000
ROA not before: Thu 14 Mar 2024 08:09:05 +0000
ROA not after: Thu 13 Mar 2025 08:14:05 +0000
asID: 203868
IP address blocks: 2a12:dd47:8046::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:24:d5:8d:91:1d:9d:af:40:c2:cc:e8:75:1c:c2:70:ef:7d:ca:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Validity
Not Before: Mar 14 08:09:05 2024 GMT
Not After : Mar 13 08:14:05 2025 GMT
Subject: CN=5915E3C7A51AC12C1DA0FC18DE5FA4F0753A2192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a4:c0:ee:17:22:5c:6a:29:1d:b3:98:49:b8:
ec:15:c4:2f:e1:dd:2b:49:8b:ca:57:83:60:41:54:
fb:a0:27:53:2d:77:d8:4e:31:ec:57:4d:b1:79:d8:
c5:e0:df:c6:81:ee:46:f0:b3:af:64:90:4a:55:d7:
70:43:ee:e4:42:40:37:a2:4b:b3:db:51:e6:87:ac:
3d:e7:e6:8b:48:96:45:b7:0a:f5:ef:4b:e1:af:de:
2e:3a:4f:93:50:b2:1f:33:5e:ed:5e:1c:f4:dc:e1:
9d:ad:57:df:65:46:5e:41:94:bc:4e:61:dd:07:3f:
1a:57:ab:34:f5:9f:f5:f3:dc:6b:e7:01:b7:24:0d:
a8:7e:01:d2:a1:81:f0:dc:dc:1d:f7:19:1d:b4:c4:
20:d8:c2:6b:ed:51:8c:c3:f6:66:ba:83:2b:2f:4e:
80:68:f3:7a:2e:49:9b:a0:54:99:e6:aa:4e:02:78:
88:28:71:05:56:95:53:65:35:88:87:de:dc:24:be:
a5:eb:36:35:2d:87:3e:f3:9d:1e:27:45:05:a9:c0:
b2:7e:cb:96:14:0b:12:41:0c:f5:d1:11:1d:37:88:
65:cc:ca:98:e8:60:4e:35:a4:80:83:d5:58:49:12:
f4:11:22:23:77:d8:a9:f5:73:b1:c8:b8:24:01:3a:
a6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:15:E3:C7:A5:1A:C1:2C:1D:A0:FC:18:DE:5F:A4:F0:75:3A:21:92
X509v3 Authority Key Identifier:
keyid:A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Riffi/1/326131323a646434373a383034363a3a2f34382d3438203d3e20323033383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8046::/48
Signature Algorithm: sha256WithRSAEncryption
cd:68:91:61:b0:e5:b7:fe:2f:cf:19:54:5d:d9:6d:1d:45:62:
ff:92:d8:a7:ff:62:f4:75:c6:ab:4b:df:4a:87:4c:0a:e8:00:
b8:8e:32:40:44:0a:2d:64:fe:f7:6b:be:4c:b5:93:eb:f8:d2:
4f:92:e0:0a:5e:9f:10:b9:be:98:1d:0d:ef:7e:fa:6d:cc:fd:
77:9c:4b:4c:b5:74:7f:a6:7f:fa:ac:2b:fa:e6:f6:c9:1e:af:
20:41:21:bf:4b:f1:9a:94:56:b6:2f:7d:3e:f2:97:e0:9f:2c:
c4:41:e6:d6:7f:2d:35:7e:51:00:48:98:53:8e:24:09:71:ee:
bc:49:31:fe:28:c3:b2:5d:11:1d:bd:72:4c:b6:db:3e:87:20:
f4:5b:d6:b6:92:6e:6c:c8:9e:ec:1b:99:8b:97:2d:07:b1:7c:
7e:0d:15:4e:5d:c1:89:e8:38:55:b1:84:a0:00:d2:3b:20:8e:
0e:65:62:c0:19:f0:97:d3:0b:73:66:d6:ad:c7:f3:2b:43:a3:
d2:33:f3:65:2b:05:53:98:b3:d8:25:3c:9b:86:22:e3:56:0c:
c9:0d:a8:ae:ea:a7:11:e5:d8:53:f4:e3:b3:1e:aa:81:ab:e0:
91:10:86:aa:50:3d:ed:f6:c2:d3:66:44:17:d6:7a:13:5f:a0:
89:5a:e4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:46:50 2024 by rpki-client on console-fra.rpki-client.org