Route Origin Authorization
$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/0/32372e302e3233352e302f32342d3332203d3e20323035383438.roa
File: 32372e302e3233352e302f32342d3332203d3e20323035383438.roa (raw, json)
Hash identifier: jqBrSOO1+BwUpoL63qwKWXB6UJGbWpTl/HWUNZCzUKU=
Subject key identifier: 16:B8:D0:72:97:85:20:E9:49:D6:E8:13:84:50:88:D8:DD:6E:A7:DF
Certificate issuer: /CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Certificate serial: 7BA19EE2D0F25EE691128389574C68EB634DEC15
Authority key identifier: 3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/0/32372e302e3233352e302f32342d3332203d3e20323035383438.roa
Signing time: Thu 30 Jan 2025 19:17:49 +0000
ROA not before: Thu 30 Jan 2025 19:12:49 +0000
ROA not after: Thu 29 Jan 2026 19:17:49 +0000
asID: 205848
IP address blocks: 27.0.235.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:a1:9e:e2:d0:f2:5e:e6:91:12:83:89:57:4c:68:eb:63:4d:ec:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Validity
Not Before: Jan 30 19:12:49 2025 GMT
Not After : Jan 29 19:17:49 2026 GMT
Subject: CN=16B8D072978520E949D6E813845088D8DD6EA7DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:83:30:75:b5:3f:c3:db:c4:bf:80:0e:fc:56:
78:76:9d:34:cf:ad:24:ef:aa:f0:00:77:6c:f9:54:
37:58:19:26:2a:e2:d4:59:46:96:46:77:c5:22:b4:
97:fb:40:20:39:2e:62:09:d3:a4:83:df:5b:1c:8f:
4e:2c:4a:94:ce:e6:78:e1:72:cc:26:36:d5:d7:f4:
25:b7:8f:56:45:62:12:63:72:90:d7:2e:81:38:fb:
98:58:61:b8:d6:e7:cc:29:a9:f3:2a:19:db:77:fb:
a1:b2:37:31:1c:9f:ff:31:4f:81:b4:67:8c:00:fa:
7c:0d:fa:95:13:cc:84:c7:c4:25:aa:41:c6:8d:fb:
1c:93:f0:df:b3:ec:c9:f3:04:1f:97:02:7d:97:e1:
48:bf:14:34:82:10:6a:40:25:b4:8f:3a:2b:9d:72:
16:a7:af:c9:6e:64:a8:58:70:75:f5:ed:20:5c:e8:
d2:96:8c:67:51:e1:ed:34:d2:ff:df:cf:b1:7d:25:
d0:e9:59:84:9d:b1:e5:41:7a:96:7c:77:83:4d:f7:
2e:33:5b:c8:8d:03:7d:62:92:6f:ee:11:cb:4c:92:
8e:31:98:bf:db:09:14:24:22:18:55:bd:67:eb:2a:
24:c1:1a:ce:8f:de:9d:7f:f1:a5:bd:3b:2e:81:9d:
b3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B8:D0:72:97:85:20:E9:49:D6:E8:13:84:50:88:D8:DD:6E:A7:DF
X509v3 Authority Key Identifier:
keyid:3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/32372e302e3233352e302f32342d3332203d3e20323035383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.0.235.0/24
Signature Algorithm: sha256WithRSAEncryption
18:d1:3c:bf:7e:ea:0d:6e:58:28:6e:48:a0:d6:07:05:7b:ab:
3d:6f:ec:55:25:14:1c:f0:b6:73:73:17:8c:c7:28:81:ee:ea:
27:cb:55:72:52:f4:b5:27:4b:21:26:b9:af:31:b8:b1:66:bf:
d0:6c:61:a9:9c:25:ed:eb:08:c6:1e:88:76:62:4f:c7:2b:80:
d2:84:1b:de:0d:08:2f:9c:0c:9d:a5:b9:19:fe:15:0d:2f:78:
7b:87:d6:26:b0:0b:cc:d1:a6:60:4c:b0:aa:e4:8e:d7:c0:af:
63:d5:0b:bb:05:67:9d:cb:70:4b:58:22:b9:70:b6:64:68:f0:
54:9a:c9:47:73:51:4d:b5:4b:88:9d:b3:6a:32:45:50:a9:e3:
54:79:1e:eb:e0:9e:ac:24:56:f3:48:73:be:1b:f8:a5:e5:47:
de:65:45:a2:6f:df:9a:59:bf:8a:74:38:4a:28:d7:46:d7:e8:
1d:77:7e:05:5c:9c:b5:2d:a4:56:51:f2:44:ce:eb:79:eb:9e:
42:af:f6:d8:72:4e:ef:8b:45:55:1b:f8:20:a5:69:14:0f:30:
a0:fe:42:ee:71:47:08:1b:4d:24:33:83:e8:77:06:6e:2e:43:
1c:e0:20:d0:cf:74:d2:cd:9e:b8:32:de:f8:4a:f6:cb:bc:5f:
87:70:af:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:12:34 2025 by rpki-client