Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/Simple/1/326131323a646434363a316666653a3a2f34382d3438203d3e20313432303436.roa
File: 326131323a646434363a316666653a3a2f34382d3438203d3e20313432303436.roa (raw, json)
Hash identifier: YTkC1TUWpWMW5EXn8uuASIaErr9AagQnuwtK2LkXJw0=
Subject key identifier: D8:D9:0C:87:CB:47:5C:62:D9:3F:82:5B:04:E6:34:DA:79:91:F9:21
Certificate issuer: /CN=40C513034911811188EE6887BB01091E1FE7EE0D
Certificate serial: 4B93DAA85771079F635EBB147CC2F830583B950D
Authority key identifier: 40:C5:13:03:49:11:81:11:88:EE:68:87:BB:01:09:1E:1F:E7:EE:0D
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/40C513034911811188EE6887BB01091E1FE7EE0D.cer
Subject info access: rsync://rpki.co/repo/Simple/1/326131323a646434363a316666653a3a2f34382d3438203d3e20313432303436.roa
Signing time: Fri 30 Aug 2024 03:31:58 +0000
ROA not before: Fri 30 Aug 2024 03:26:58 +0000
ROA not after: Fri 29 Aug 2025 03:31:58 +0000
asID: 142046
IP address blocks: 2a12:dd46:1ffe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:93:da:a8:57:71:07:9f:63:5e:bb:14:7c:c2:f8:30:58:3b:95:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40C513034911811188EE6887BB01091E1FE7EE0D
Validity
Not Before: Aug 30 03:26:58 2024 GMT
Not After : Aug 29 03:31:58 2025 GMT
Subject: CN=D8D90C87CB475C62D93F825B04E634DA7991F921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2b:52:b6:f8:62:d0:1a:ec:85:a9:00:c3:35:
84:df:a5:3f:e2:20:81:ab:05:14:80:3c:9a:44:4e:
aa:e9:ac:28:d3:e2:4b:82:56:37:5a:97:e0:b4:0a:
06:60:a8:c4:0a:7c:ca:ec:67:9b:93:89:de:cc:aa:
7c:c1:c6:b0:4a:7d:f0:bf:a6:c0:2c:1f:72:1b:ce:
c1:e9:a1:75:47:05:07:19:00:1f:fb:88:2e:bc:c5:
e6:c9:e8:5f:17:7e:b6:d9:2f:f3:95:da:19:fe:30:
29:7f:00:11:62:a8:8c:bc:7e:40:34:ff:5b:31:e5:
42:39:6a:e8:4e:b9:40:41:91:b2:b7:21:dd:f2:5d:
58:15:7f:9f:cd:57:84:8e:ec:c5:ed:04:e9:81:6d:
c6:a8:c0:70:0c:1e:0f:c8:e6:8f:47:0c:9f:04:a7:
e2:bb:d3:4f:5c:2f:06:9d:42:7c:55:79:fc:5a:08:
46:52:16:77:6b:0a:e7:48:63:1d:b1:3a:82:bb:38:
7c:4c:56:f6:ce:85:f6:70:9a:d2:90:ab:00:81:df:
8f:05:c7:a0:14:b8:f4:87:d1:c5:c0:ec:d4:37:46:
0e:9d:7d:09:63:6b:a7:40:56:39:5d:c1:ac:07:03:
1b:5b:4d:70:24:6b:7b:92:4b:c1:c6:59:f0:82:af:
89:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D9:0C:87:CB:47:5C:62:D9:3F:82:5B:04:E6:34:DA:79:91:F9:21
X509v3 Authority Key Identifier:
keyid:40:C5:13:03:49:11:81:11:88:EE:68:87:BB:01:09:1E:1F:E7:EE:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/Simple/1/40C513034911811188EE6887BB01091E1FE7EE0D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/40C513034911811188EE6887BB01091E1FE7EE0D.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/Simple/1/326131323a646434363a316666653a3a2f34382d3438203d3e20313432303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd46:1ffe::/48
Signature Algorithm: sha256WithRSAEncryption
a1:dd:78:2f:f3:5d:6b:14:ae:30:0b:68:5b:03:ea:cf:40:e0:
56:e8:66:ec:08:6b:d2:d6:e1:ba:eb:c9:a5:e2:77:e3:ef:ec:
66:fb:25:73:05:d3:9b:2f:ad:39:00:11:c0:58:f6:25:40:40:
f6:d6:b6:05:5a:96:e8:14:15:16:5d:19:83:8b:a0:c8:53:36:
3b:7f:c6:a2:57:5c:36:a8:17:ca:d3:01:61:ff:74:7a:e1:e8:
44:7d:e5:20:9b:ed:cf:c5:37:3a:77:aa:66:61:ca:e0:61:01:
bb:9e:29:50:47:be:5e:a7:63:4a:70:94:b2:19:cc:dd:ab:a3:
ab:11:7d:f6:67:46:81:b3:08:42:81:db:e0:58:03:c0:78:95:
93:1b:dc:60:4f:67:df:67:d4:3a:71:d7:cf:8f:b0:71:ed:6e:
50:98:27:8e:17:52:3d:a5:ae:7d:82:2a:bc:eb:eb:02:a4:45:
b2:5e:5c:8c:3f:f7:3e:77:c7:64:2b:bb:b4:ae:75:1f:d3:c1:
be:89:72:9e:a8:b3:28:ce:5a:08:a8:9c:1c:67:b6:d6:84:16:
b2:f1:09:b0:a2:eb:19:b8:6f:9c:54:b1:f6:d4:42:cc:98:ff:
b7:42:04:ba:31:ec:b1:03:bf:d6:38:1f:ce:8a:87:80:6f:b7:
0a:00:6e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 16:34:20 2024 by rpki-client on console-ams.rpki-client.org