Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa
File: 326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa (raw, json)
Hash identifier: bA06CE3m+H4aHFX2WXenKHmw/SzpPD+u6iEecnkhEcQ=
Subject key identifier: 00:22:E2:6F:BC:5A:97:55:8C:5D:83:2B:37:6D:B3:0B:A0:6B:E5:A6
Certificate issuer: /CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Certificate serial: 0C5E8C8C65F29EB813BFA6E710C5E7E0B330732F
Authority key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
Authority info access: rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject info access: rsync://rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa
Signing time: Thu 14 Mar 2024 08:14:05 +0000
ROA not before: Thu 14 Mar 2024 08:09:05 +0000
ROA not after: Thu 13 Mar 2025 08:14:05 +0000
asID: 200579
IP address blocks: 2a12:dd47:8700::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:5e:8c:8c:65:f2:9e:b8:13:bf:a6:e7:10:c5:e7:e0:b3:30:73:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Validity
Not Before: Mar 14 08:09:05 2024 GMT
Not After : Mar 13 08:14:05 2025 GMT
Subject: CN=0022E26FBC5A97558C5D832B376DB30BA06BE5A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7f:92:78:0e:e4:4d:bf:1c:ad:59:fd:2f:f8:
4a:3d:b2:0a:19:d7:4f:8b:12:7a:e0:6a:75:a3:09:
d4:fa:b0:73:83:1d:33:bf:83:93:5e:23:bb:7e:ce:
67:ef:58:b4:da:8e:6f:b9:f5:7e:94:36:9f:ac:52:
bc:68:61:93:76:4e:b5:1b:35:87:97:43:da:df:58:
52:00:82:4b:28:f3:b5:b2:c0:42:b8:72:dd:0c:81:
c5:0a:30:c1:d9:bd:43:d9:c8:9c:90:37:5f:6d:fe:
d0:ed:04:24:75:39:19:10:23:c3:3f:31:07:88:d7:
fe:9b:c3:e9:e9:1e:6f:d4:5f:5a:7f:99:81:f6:df:
37:f5:c4:06:cb:e5:44:18:a1:d3:c0:b0:8a:c5:04:
a3:bd:72:89:b5:e6:49:52:e5:2d:83:69:94:e2:f1:
2f:67:eb:b9:f5:22:41:fa:20:64:6e:8b:22:fc:6d:
c2:26:97:06:1e:52:31:b6:5e:c3:4a:f1:e6:cc:b9:
36:6c:c2:47:90:5b:5e:22:45:fc:26:ea:f8:46:61:
a6:6c:03:31:f6:38:09:fb:5a:df:6f:e1:b9:cd:91:
16:aa:43:48:1c:a3:11:96:94:c2:b5:bb:b6:43:b3:
93:bd:fc:b3:91:87:40:d0:3c:ac:ca:48:ca:2f:3f:
53:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:22:E2:6F:BC:5A:97:55:8C:5D:83:2B:37:6D:B3:0B:A0:6B:E5:A6
X509v3 Authority Key Identifier:
keyid:A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Riffi/1/326131323a646434373a383730303a3a2f34302d3438203d3e20323030353739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8700::/40
Signature Algorithm: sha256WithRSAEncryption
ca:11:72:2e:fe:ad:2e:f9:fc:1b:49:40:8d:08:41:f2:5a:e1:
bf:a7:fa:fa:c8:b5:d8:d4:aa:81:fb:d2:8c:62:90:6b:55:f2:
62:5a:d2:b6:e8:e9:b0:98:e6:cd:1a:b5:a0:8e:d4:fa:8b:10:
a9:5c:aa:2e:06:75:50:87:47:71:87:14:41:fb:3a:61:a2:d5:
0e:db:2d:8d:1a:0a:73:64:d3:9a:eb:ac:44:cf:19:04:34:99:
9c:12:f3:5b:bf:ae:a8:04:14:e9:e8:2d:40:c1:26:26:4c:b9:
00:ff:27:ff:49:bc:53:fa:f3:ab:8b:c7:c4:fa:42:bf:42:3f:
3b:b4:18:76:09:bb:9f:73:3a:a2:23:e4:6d:f7:de:eb:0b:bf:
a2:38:ee:4c:3a:fa:b8:d6:21:75:bd:86:a2:d4:8a:46:7f:8c:
42:b3:d9:bb:45:d8:e4:47:9f:a7:6a:81:4b:45:a3:b4:0c:e6:
2f:3d:67:a4:cc:54:ae:c2:45:8b:f3:8b:49:0c:88:4a:91:d5:
6e:a5:9c:59:c4:3e:d1:93:b2:b4:4d:d7:aa:f4:4a:3b:6c:67:
c9:d6:c6:9a:78:82:6b:cc:f5:01:9f:a3:71:4c:ab:8b:45:19:
41:77:1f:e0:7f:37:f8:35:4a:c8:ff:e4:82:6a:64:d9:1c:e5:
b9:ce:cc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:27 2024 by rpki-client on console-fra.rpki-client.org