Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Rudaki/0/326131323a646434373a353330313a3a2f34382d3438203d3e20323131353039.roa
File: 326131323a646434373a353330313a3a2f34382d3438203d3e20323131353039.roa (raw, json)
Hash identifier: 1j1UuJS/0oj18TxLuP7USvorV2JsPlQEIAR+uB6aRss=
Subject key identifier: C7:E6:92:EC:8F:04:04:2C:4D:1C:57:13:73:27:C0:0E:A8:7D:C0:7A
Certificate issuer: /CN=8D47937E5FB1C1169EEAD229E680E581B175465F
Certificate serial: 4A2412125CF2686CCC671C2E157E03D5DA37B104
Authority key identifier: 8D:47:93:7E:5F:B1:C1:16:9E:EA:D2:29:E6:80:E5:81:B1:75:46:5F
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/8D47937E5FB1C1169EEAD229E680E581B175465F.cer
Subject info access: rsync://rpki.co/repo/Rudaki/0/326131323a646434373a353330313a3a2f34382d3438203d3e20323131353039.roa
Signing time: Thu 12 Sep 2024 17:22:59 +0000
ROA not before: Thu 12 Sep 2024 17:17:59 +0000
ROA not after: Thu 11 Sep 2025 17:22:59 +0000
asID: 211509
IP address blocks: 2a12:dd47:5301::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:24:12:12:5c:f2:68:6c:cc:67:1c:2e:15:7e:03:d5:da:37:b1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D47937E5FB1C1169EEAD229E680E581B175465F
Validity
Not Before: Sep 12 17:17:59 2024 GMT
Not After : Sep 11 17:22:59 2025 GMT
Subject: CN=C7E692EC8F04042C4D1C57137327C00EA87DC07A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1f:b5:0d:52:06:b7:08:f6:cd:10:33:d9:da:
91:22:f7:45:c2:29:19:42:bc:e2:77:1a:16:64:7d:
9a:55:9d:1a:39:19:55:60:95:1c:fc:4c:3c:6a:cc:
f7:39:15:2b:80:76:c3:c9:54:c3:d1:fd:58:b4:1d:
70:02:9d:b4:4c:99:99:69:d3:07:6f:9a:39:29:46:
fc:21:4a:eb:33:76:ed:06:75:5b:a3:da:95:b4:79:
b9:7b:18:2b:da:bc:ff:f0:59:13:d2:13:3e:54:6e:
fb:5a:94:04:b0:7a:e8:9e:0e:a1:49:7c:7b:5f:7f:
66:95:52:35:5c:fd:55:21:1f:b8:36:c6:f3:0a:66:
0c:1d:81:16:7b:06:2f:2a:23:d5:32:1e:cf:0e:9f:
a1:29:c6:60:1c:a8:10:4a:dc:d0:de:6f:29:98:03:
e2:cb:0c:f4:44:49:84:90:52:ee:9e:a8:45:fd:57:
73:4d:63:65:be:2f:59:08:c2:5f:5d:1b:da:3e:d4:
64:84:e8:21:67:0b:39:f9:2a:08:87:18:2e:32:69:
11:4c:d7:06:91:7b:d1:11:99:de:d9:fe:2d:bb:90:
30:45:50:28:da:d1:25:2c:c9:5b:2a:92:ba:a7:fb:
34:a7:fa:73:1d:cc:36:6a:59:aa:a3:06:a9:87:59:
06:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E6:92:EC:8F:04:04:2C:4D:1C:57:13:73:27:C0:0E:A8:7D:C0:7A
X509v3 Authority Key Identifier:
keyid:8D:47:93:7E:5F:B1:C1:16:9E:EA:D2:29:E6:80:E5:81:B1:75:46:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Rudaki/0/8D47937E5FB1C1169EEAD229E680E581B175465F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/8D47937E5FB1C1169EEAD229E680E581B175465F.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Rudaki/0/326131323a646434373a353330313a3a2f34382d3438203d3e20323131353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:5301::/48
Signature Algorithm: sha256WithRSAEncryption
95:8f:ec:80:1e:4a:d9:f6:da:67:a6:31:f0:12:47:1f:06:46:
2f:43:cb:75:99:d7:10:ee:84:8b:a0:69:9b:08:25:4f:9b:46:
a1:86:b2:4b:b1:fd:fe:0b:61:3b:d4:e0:95:19:91:e6:5d:13:
17:3e:d5:1f:c8:80:90:8e:2d:71:ba:41:6d:30:c1:18:8b:70:
64:a5:78:99:67:af:43:b6:e3:8c:27:df:c1:19:60:39:9a:39:
ca:0a:10:8d:44:83:a1:83:aa:d3:81:6b:01:2f:bd:54:93:d1:
19:78:44:59:89:08:87:e6:32:45:e7:af:cd:98:23:14:cf:b2:
d6:79:ac:75:a0:7e:0d:92:4f:f4:98:fa:79:9d:93:12:23:48:
e6:b6:1c:74:0c:c5:79:2a:9e:36:fc:d2:c7:f2:5c:2d:97:fc:
11:46:6d:bb:f5:65:b2:83:ed:54:76:58:4a:67:29:d4:54:ad:
9a:f5:09:e8:a9:92:d9:a5:30:49:8b:57:18:18:f3:60:b3:2e:
5a:c0:db:80:d9:e6:3f:9b:8b:50:73:a9:0f:5b:15:5a:ca:9d:
73:31:ad:bf:65:9b:5e:8e:f8:d6:39:77:42:a2:72:cc:be:f7:
ec:20:67:0b:33:79:ad:ec:00:9a:6e:c8:a7:37:4a:e3:a6:08:
d2:57:fb:ad
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIUSiQSElzyaGzMZxwuFX4D1do3sQQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEQ0NzkzN0U1RkIxQzExNjlFRUFEMjI5RTY4MEU1ODFC
MTc1NDY1RjAeFw0yNDA5MTIxNzE3NTlaFw0yNTA5MTExNzIyNTlaMDMxMTAvBgNV
BAMTKEM3RTY5MkVDOEYwNDA0MkM0RDFDNTcxMzczMjdDMDBFQTg3REMwN0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChH7UNUga3CPbNEDPZ2pEi90XC
KRlCvOJ3GhZkfZpVnRo5GVVglRz8TDxqzPc5FSuAdsPJVMPR/Vi0HXACnbRMmZlp
0wdvmjkpRvwhSuszdu0GdVuj2pW0ebl7GCvavP/wWRPSEz5UbvtalASweuieDqFJ
fHtff2aVUjVc/VUhH7g2xvMKZgwdgRZ7Bi8qI9UyHs8On6EpxmAcqBBK3NDebymY
A+LLDPRESYSQUu6eqEX9V3NNY2W+L1kIwl9dG9o+1GSE6CFnCzn5KgiHGC4yaRFM
1waRe9ERmd7Z/i27kDBFUCja0SUsyVsqkrqn+zSn+nMdzDZqWaqjBqmHWQYNAgMB
AAGjggIFMIICATAdBgNVHQ4EFgQUx+aS7I8EBCxNHFcTcyfADqh9wHowHwYDVR0j
BBgwFoAUjUeTfl+xwRae6tIp5oDlgbF1Rl8wDgYDVR0PAQH/BAQDAgeAMFsGA1Ud
HwRUMFIwUKBOoEyGSnJzeW5jOi8vcnBraS5jby9yZXBvL1J1ZGFraS8wLzhENDc5
MzdFNUZCMUMxMTY5RUVBRDIyOUU2ODBFNTgxQjE3NTQ2NUYuY3JsMIGTBggrBgEF
BQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1ycHMuYXJpbi5u
ZXQvcmVwb3NpdG9yeS84YTg0OGFkZjhmZGVlYzBjMDE5MDMzZGJkZWNjNGZhNC8x
LzhENDc5MzdFNUZCMUMxMTY5RUVBRDIyOUU2ODBFNTgxQjE3NTQ2NUYuY2VyMH4G
CCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4ZicnN5bmM6Ly9ycGtpLmNvL3JlcG8v
UnVkYWtpLzAvMzI2MTMxMzIzYTY0NjQzNDM3M2EzNTMzMzAzMTNhM2EyZjM0Mzgy
ZDM0MzgyMDNkM2UyMDMyMzEzMTM1MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoS3UdTATANBgkq
hkiG9w0BAQsFAAOCAQEAlY/sgB5K2fbaZ6Yx8BJHHwZGL0PLdZnXEO6Ei6Bpmwgl
T5tGoYayS7H9/gthO9TglRmR5l0TFz7VH8iAkI4tcbpBbTDBGItwZKV4mWevQ7bj
jCffwRlgOZo5ygoQjUSDoYOq04FrAS+9VJPRGXhEWYkIh+YyReevzZgjFM+y1nms
daB+DZJP9Jj6eZ2TEiNI5rYcdAzFeSqeNvzSx/JcLZf8EUZtu/VlsoPtVHZYSmcp
1FStmvUJ6KmS2aUwSYtXGBjzYLMuWsDbgNnmP5uLUHOpD1sVWsqdczGtv2WbXo74
1jl3QqJyzL737CBnCzN5rewAmm7IpzdK46YI0lf7rQ==
-----END CERTIFICATE-----
Generated at Fri Nov 22 08:07:18 2024 by rpki-client on console-ams.rpki-client.org