Route Origin Authorization
$ rpki-client -vvf rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430303a3a2f34302d3438203d3e20323135393738.roa
File: 326131333a646638373a623430303a3a2f34302d3438203d3e20323135393738.roa (raw, json)
Hash identifier: POSuCYrc8LgyQY5m2hYLjUVLRvuM3xcAMGX5nH1lJ8U=
Subject key identifier: 84:6E:2D:E0:CF:87:75:04:D2:E3:AF:4E:11:C6:10:77:B5:B1:BD:BC
Certificate issuer: /CN=2A1A6172DA4C339FD787467E26F92A11E75DBBB3
Certificate serial: 4CC7DDACE9F021300BAD8993C154B7F8495BC7D8
Authority key identifier: 2A:1A:61:72:DA:4C:33:9F:D7:87:46:7E:26:F9:2A:11:E7:5D:BB:B3
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.cer
Subject info access: rsync://rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430303a3a2f34302d3438203d3e20323135393738.roa
Signing time: Sun 14 Jan 2024 09:05:20 +0000
ROA not before: Sun 14 Jan 2024 09:00:20 +0000
ROA not after: Sun 12 Jan 2025 09:05:20 +0000
asID: 215978
IP address blocks: 2a13:df87:b400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:c7:dd:ac:e9:f0:21:30:0b:ad:89:93:c1:54:b7:f8:49:5b:c7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A1A6172DA4C339FD787467E26F92A11E75DBBB3
Validity
Not Before: Jan 14 09:00:20 2024 GMT
Not After : Jan 12 09:05:20 2025 GMT
Subject: CN=846E2DE0CF877504D2E3AF4E11C61077B5B1BDBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:29:c1:5b:6e:33:22:e0:be:f8:e5:05:52:06:
01:a6:ee:03:92:79:73:27:10:54:39:15:66:d2:08:
07:06:2d:3c:e0:31:c5:fb:20:53:20:7a:25:3c:11:
92:37:a2:4f:38:d2:a8:a5:1b:0f:1e:05:cd:6c:31:
a3:dc:96:1a:19:6b:27:88:d9:d5:36:ac:f4:ed:da:
a1:02:19:6f:14:ee:cd:c2:7b:5a:9d:52:b7:0a:69:
57:72:3b:74:ba:d8:d8:49:29:f8:68:dd:ba:b8:b0:
c1:e4:12:a4:38:fc:0f:2c:c3:1b:a5:78:81:f0:78:
b0:ba:a0:86:c5:5a:5a:67:c8:08:65:e9:05:58:82:
25:62:68:61:fe:01:80:e2:2b:af:55:28:de:93:4c:
fb:c3:fc:e0:71:37:77:3a:c7:0b:17:f6:d6:e1:b6:
5b:50:60:b9:c7:07:53:3b:22:0a:0c:8a:fb:0a:b2:
e0:98:bb:7e:d2:78:00:ac:34:63:5b:18:22:75:72:
08:35:f2:46:96:65:ae:b5:e9:7e:ae:ef:8c:35:70:
79:85:73:e7:06:da:44:18:39:73:4d:68:a8:37:6a:
b7:43:f6:5f:4f:3c:a0:62:9e:a4:e4:ea:00:9b:b4:
dc:c2:fd:a6:9e:25:a3:39:2a:16:f0:31:3e:fb:c7:
d7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6E:2D:E0:CF:87:75:04:D2:E3:AF:4E:11:C6:10:77:B5:B1:BD:BC
X509v3 Authority Key Identifier:
keyid:2A:1A:61:72:DA:4C:33:9F:D7:87:46:7E:26:F9:2A:11:E7:5D:BB:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.netiface.net/repo/Apricot/1/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/04032c8f-1d57-4c3b-9043-a0e7febf167d/0/2A1A6172DA4C339FD787467E26F92A11E75DBBB3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.netiface.net/repo/Apricot/1/326131333a646638373a623430303a3a2f34302d3438203d3e20323135393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:df87:b400::/40
Signature Algorithm: sha256WithRSAEncryption
00:69:77:75:cd:5b:da:b9:64:09:8a:44:ed:9a:bf:3a:92:4e:
2e:66:bc:1b:4a:63:e0:5d:09:bd:4e:8c:47:16:38:9c:99:b3:
97:6d:b9:8f:80:29:57:30:6a:98:78:89:88:52:3f:69:25:bc:
0f:0e:c9:53:db:98:ad:be:51:ba:c6:d9:ba:d2:33:46:28:cc:
d9:01:67:e6:1a:42:bc:be:96:02:c9:6e:a8:41:fa:17:86:56:
ac:02:d1:0b:0b:ac:1b:2b:05:31:24:77:87:b2:23:88:19:52:
5b:53:ab:b2:19:0e:22:54:d7:65:48:c3:75:99:05:d6:47:4e:
e3:f8:2c:eb:22:5f:c4:db:39:73:4f:a0:22:15:45:dd:77:28:
e6:88:9a:44:1b:67:d2:6c:dc:ec:c1:5a:2d:61:d6:d5:9b:13:
32:40:f8:73:c4:8e:83:90:4c:9b:4a:5c:b6:60:b6:82:e1:7c:
be:cd:b0:be:d0:98:c0:3b:73:af:67:7f:ff:c2:b2:19:b7:43:
85:05:7c:86:22:db:1e:c0:8c:20:e8:a4:d6:a6:d6:24:26:30:
b7:a8:e0:2f:48:bd:57:b8:75:89:df:4c:37:a2:41:ff:0b:ff:
7c:6f:c2:88:cf:fd:44:bb:4c:a7:33:7e:9b:07:f5:26:88:d9:
7f:a3:08:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 13 16:12:44 2024 by rpki-client on console-fra.rpki-client.org