Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Riffi/1/326131323a646434373a643030303a3a2f34302d3438203d3e20323033383638.roa
File: 326131323a646434373a643030303a3a2f34302d3438203d3e20323033383638.roa (raw, json)
Hash identifier: wXJsBH0W09IJZ1UzJKsiV0QM1YNmooXs93dI+HRR80Q=
Subject key identifier: 9D:3E:1D:23:C4:04:68:09:01:CD:82:8F:DB:39:CE:03:BB:59:34:E2
Certificate issuer: /CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Certificate serial: 16D6E2CF4DBFF21171AD7DCF7A8981E1AAAB7DF3
Authority key identifier: A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject info access: rsync://rpki.co/repo/Riffi/1/326131323a646434373a643030303a3a2f34302d3438203d3e20323033383638.roa
Signing time: Sun 30 Jun 2024 00:47:58 +0000
ROA not before: Sun 30 Jun 2024 00:42:58 +0000
ROA not after: Sun 29 Jun 2025 00:47:58 +0000
asID: 203868
IP address blocks: 2a12:dd47:d000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:d6:e2:cf:4d:bf:f2:11:71:ad:7d:cf:7a:89:81:e1:aa:ab:7d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136
Validity
Not Before: Jun 30 00:42:58 2024 GMT
Not After : Jun 29 00:47:58 2025 GMT
Subject: CN=9D3E1D23C404680901CD828FDB39CE03BB5934E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f4:7f:62:9a:a4:9a:e8:27:6c:b6:b8:cc:dc:
c8:29:e9:e2:83:e7:b6:f0:66:a4:f6:c7:9c:ed:dd:
cb:d6:cb:ef:24:c9:3c:61:5a:63:69:36:62:68:fc:
02:d6:39:f1:db:11:60:47:90:87:91:fd:cf:c5:94:
a1:15:52:30:5d:9f:65:e4:43:86:f9:01:2d:5f:71:
83:c0:c9:26:8b:db:60:7b:84:5b:ad:e0:a8:31:cf:
2f:d7:da:21:b3:a4:d5:9b:b5:e2:23:74:b5:a4:90:
f5:63:38:36:da:35:d8:47:de:28:fc:94:77:66:5f:
ee:d3:4c:a8:1b:58:bc:8e:a5:ef:1f:89:5e:c9:f2:
38:ee:46:f9:9e:36:de:d0:95:80:cf:8e:d2:55:f9:
29:a3:0e:29:99:f1:24:ad:95:81:ee:1f:16:24:5a:
2a:70:4e:b4:58:e9:6e:4a:20:e1:c4:87:1b:58:8a:
61:60:a2:69:d7:44:19:bf:cd:d8:a0:02:d8:f1:fb:
68:8c:5d:50:4b:8d:52:2a:ee:06:d4:14:ed:7b:68:
69:3d:21:b1:48:f2:c9:d4:0b:1b:a0:c3:72:b5:86:
c0:0b:46:82:02:25:65:d8:88:54:f7:2e:67:9d:0b:
ce:5c:96:94:08:f9:45:73:cb:b2:44:3b:14:1e:4f:
02:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3E:1D:23:C4:04:68:09:01:CD:82:8F:DB:39:CE:03:BB:59:34:E2
X509v3 Authority Key Identifier:
keyid:A7:DB:DD:E4:5B:9B:ED:9C:17:CB:20:F2:AE:29:EC:70:3C:86:A1:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Riffi/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/A7DBDDE45B9BED9C17CB20F2AE29EC703C86A136.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Riffi/1/326131323a646434373a643030303a3a2f34302d3438203d3e20323033383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:d000::/40
Signature Algorithm: sha256WithRSAEncryption
7b:36:6a:79:71:42:e3:76:5e:d7:92:a7:ea:73:f4:80:03:2a:
07:e2:c8:a2:66:12:f7:48:95:af:9b:b1:2c:ca:2f:36:1f:97:
d5:dd:a0:fc:5f:52:b1:91:ce:35:38:bc:ef:5b:40:4c:c3:a0:
17:7f:9c:d9:4a:dc:c6:d4:e8:0e:86:fc:a4:e9:f7:78:6d:13:
98:3f:19:e7:b1:2a:ef:c7:8d:33:77:fd:63:8d:9a:66:ca:31:
67:4b:73:32:ec:9f:f1:d6:71:97:1e:d4:2c:2e:27:bb:19:c5:
16:aa:59:fa:43:2c:79:8a:82:89:44:24:b3:55:a0:2a:8a:f4:
3b:e7:1d:d0:a0:da:ab:b0:e6:05:e6:bd:f4:a1:d6:84:5e:21:
e5:22:2e:4f:b1:5c:1a:82:de:8e:09:4a:b3:58:6c:dd:7f:cd:
53:5b:23:89:bd:9b:6b:98:dd:91:44:07:21:d1:97:f1:d1:95:
b0:b3:8a:f4:8f:05:70:d9:75:55:7d:ff:6e:a8:58:82:6d:29:
73:2c:1b:cb:51:7c:a6:5d:a9:75:24:3b:71:3f:75:64:5e:a1:
d1:93:1f:6b:d0:ab:83:3f:9f:3c:48:c6:0c:ff:b9:bd:94:10:
ad:21:b0:e7:9d:02:e4:a6:06:ab:a4:4c:04:8b:68:1c:be:c6:
2d:43:6b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:46:50 2024 by rpki-client on console-fra.rpki-client.org