Route Origin Authorization
$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f34382d313238203d3e20323035383438.roa
File: 326130363a313238323a3a2f34382d313238203d3e20323035383438.roa (raw, json)
Hash identifier: 8QjaL9T6XyiousgURSTvSQVQHotio8CqTd66EMJnuL0=
Subject key identifier: 9D:6B:42:05:B8:54:6A:5A:A1:06:E6:83:A6:FB:8E:ED:D8:41:13:23
Certificate issuer: /CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Certificate serial: 37D948D923AC554C356E064AC732B5F0AEFD504C
Authority key identifier: 3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f34382d313238203d3e20323035383438.roa
Signing time: Tue 20 Aug 2024 08:14:22 +0000
ROA not before: Tue 20 Aug 2024 08:09:22 +0000
ROA not after: Tue 19 Aug 2025 08:14:22 +0000
asID: 205848
IP address blocks: 2a06:1282::/48 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:d9:48:d9:23:ac:55:4c:35:6e:06:4a:c7:32:b5:f0:ae:fd:50:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Validity
Not Before: Aug 20 08:09:22 2024 GMT
Not After : Aug 19 08:14:22 2025 GMT
Subject: CN=9D6B4205B8546A5AA106E683A6FB8EEDD8411323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:36:2c:09:d4:ce:4e:ad:10:0d:03:fc:99:
34:47:4f:b3:33:50:6a:b9:d8:f7:bb:8c:51:d7:d9:
62:ce:8f:84:ee:8b:93:67:95:fc:f0:dd:ff:63:1d:
62:f0:cc:8f:7e:b6:5d:43:58:c0:b1:d3:5b:83:fc:
68:39:b9:0d:89:9d:52:51:2e:67:da:bb:24:a9:70:
57:c2:58:d9:af:33:6d:98:07:18:c0:1a:bf:59:ee:
38:77:08:97:84:c8:c1:eb:62:6b:df:5e:ab:35:80:
d6:57:f7:ac:99:70:b8:9b:4b:ca:61:30:a3:a7:60:
75:fe:8c:a1:47:a0:d3:6c:dc:d1:62:74:47:e8:0b:
ef:a5:d9:1a:dd:e8:75:2f:b4:89:c0:58:b0:35:1a:
ca:db:70:f6:0e:cf:64:51:29:15:5b:e8:9b:76:a5:
86:4b:8b:c0:2f:9c:0e:6c:4f:8c:a5:e9:de:ef:4d:
81:d3:9b:4f:5a:c3:48:57:ca:4d:48:52:d3:c9:bb:
ef:13:2b:68:3d:00:0b:79:32:7f:3f:c3:52:fc:75:
fa:59:a6:b4:3c:df:32:7c:21:a2:32:60:c3:9c:1a:
1b:9c:a9:da:da:70:65:62:80:28:09:9e:1d:2a:65:
08:57:c4:ef:89:4c:91:18:2a:64:da:92:e6:cc:3c:
01:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6B:42:05:B8:54:6A:5A:A1:06:E6:83:A6:FB:8E:ED:D8:41:13:23
X509v3 Authority Key Identifier:
keyid:3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f34382d313238203d3e20323035383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1282::/48
Signature Algorithm: sha256WithRSAEncryption
29:ab:a3:b3:e1:a2:36:d5:1d:c5:4d:66:29:e6:f8:a4:3f:52:
7a:9e:51:3d:89:7c:1b:45:f7:c8:8e:3b:01:83:03:41:a9:0f:
e3:9b:aa:3c:98:44:d6:0b:0a:4b:91:2b:c1:df:b0:dd:b5:85:
a2:b7:11:37:93:28:9b:7d:80:e5:8f:77:43:32:42:8e:c8:41:
87:8a:6b:cc:e0:c1:23:58:88:bb:c8:26:89:e4:6f:76:e0:d4:
60:ef:87:41:3f:3e:e7:ba:8b:8a:e4:dd:02:99:98:fe:4a:23:
71:63:81:38:a7:60:45:7f:34:db:30:ad:c5:24:0c:b1:6d:01:
12:35:3b:c7:68:df:eb:ac:18:65:69:32:46:08:f9:05:df:47:
96:70:e4:f6:23:62:99:bc:b6:29:58:2e:ac:df:b7:f7:56:a1:
9f:88:40:ee:bd:9b:16:21:52:ee:e8:53:16:db:55:e7:ae:c9:
74:b5:b0:d6:dd:d9:f0:69:ee:c1:46:e8:68:f1:df:21:4a:c4:
1c:4f:5b:61:41:83:19:e2:93:0a:ae:8c:0e:3c:12:64:54:ce:
62:0c:2e:16:e1:ca:7e:ed:af:0a:8c:3d:50:e1:68:5e:b6:54:
79:12:4d:43:90:29:0f:23:7e:33:7a:75:53:6d:28:00:a1:e5:
6e:7d:2f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:12:36 2025 by rpki-client