Route Origin Authorization
$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa
File: 38392e3138372e36382e302f32342d3332203d3e20323035383438.roa (raw, json)
Hash identifier: uJaa1a7wAYndGfud+5sGc9dXctx5YTMVaxVuhY33G5Y=
Subject key identifier: 04:04:E9:52:BD:8E:C8:27:A2:47:72:D9:99:28:41:21:7A:51:21:62
Certificate issuer: /CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Certificate serial: 54FC7C6AD11628CEB8A343A73F41567F639AB6E9
Authority key identifier: 3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa
Signing time: Mon 14 Apr 2025 21:50:00 +0000
ROA not before: Mon 14 Apr 2025 21:45:00 +0000
ROA not after: Mon 13 Apr 2026 21:50:00 +0000
asID: 205848
IP address blocks: 89.187.68.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:fc:7c:6a:d1:16:28:ce:b8:a3:43:a7:3f:41:56:7f:63:9a:b6:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7
Validity
Not Before: Apr 14 21:45:00 2025 GMT
Not After : Apr 13 21:50:00 2026 GMT
Subject: CN=0404E952BD8EC827A24772D9992841217A512162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:14:62:67:01:60:33:54:ff:eb:27:c2:ae:20:
c7:6e:dc:c5:80:63:42:63:ae:86:06:3d:43:f0:47:
1f:08:6e:a8:4a:b7:50:c3:85:8e:f4:5a:b6:79:5c:
2c:92:b0:9d:c6:1e:7f:d4:cf:b7:df:4a:9e:8d:7c:
e8:b7:31:eb:e5:bd:ea:71:1a:04:6e:fe:73:1b:3a:
8c:dc:b1:90:21:01:ba:17:b8:89:df:96:da:d8:dd:
10:ec:22:21:47:f6:ba:b0:84:cd:27:0b:44:60:b0:
2e:42:e7:ff:1d:11:ab:a3:99:bd:ec:43:b5:c7:c3:
67:9f:08:f8:bf:18:da:d3:ee:b1:2e:e6:d0:46:5b:
95:92:9b:90:29:f1:38:63:1d:b5:74:ce:df:6e:a7:
e3:70:c2:fd:63:4b:32:17:35:69:d1:64:22:90:ab:
d2:d6:1a:fc:d6:95:bb:80:ad:36:f2:6a:7f:60:98:
dd:bd:74:65:c9:0a:22:ed:b1:a7:60:d2:2f:a2:06:
58:54:18:a2:48:33:38:5b:cf:39:5a:ac:33:a0:8e:
38:c6:ed:9a:b1:e4:24:0c:90:f5:12:fc:97:7f:fb:
e8:d3:71:ac:ea:98:a9:b7:7f:fb:2f:52:7c:b5:1c:
9d:95:57:53:12:50:9b:5f:4d:78:03:56:60:e0:31:
7a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:04:E9:52:BD:8E:C8:27:A2:47:72:D9:99:28:41:21:7A:51:21:62
X509v3 Authority Key Identifier:
keyid:3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/38392e3138372e36382e302f32342d3332203d3e20323035383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.68.0/24
Signature Algorithm: sha256WithRSAEncryption
37:63:39:3b:0a:08:87:e7:ec:a3:8e:92:5b:8a:a3:42:e5:d6:
91:4a:f6:61:36:09:de:fc:c5:f8:25:c2:b7:dd:05:42:06:de:
4a:71:98:07:9c:89:00:d2:bd:8c:3b:15:c3:bb:83:da:68:3d:
38:7b:7e:19:be:cd:fa:69:e0:8a:6e:53:f9:e4:e9:dd:f3:c4:
bb:d6:d2:e3:41:d2:ea:c3:0e:18:67:ee:cc:84:73:e0:d3:55:
e2:4c:92:63:47:5a:92:f6:eb:e1:d3:28:27:5c:e4:19:a4:b6:
0f:aa:aa:f8:a3:cf:80:84:3b:29:a3:ca:c5:00:fe:55:ac:14:
1b:b0:1e:5a:48:c4:a5:ca:81:f5:b2:cf:a8:89:c2:2e:ad:3f:
8c:d4:17:46:4a:f8:fc:b0:8c:c0:51:95:71:04:db:89:4d:5f:
da:b2:7a:90:be:01:4a:f4:59:a5:bd:8c:2b:9a:c2:4c:59:e1:
31:04:ac:14:02:83:4d:4a:ad:d2:3f:e8:4a:d7:eb:6a:a1:ba:
98:e3:9b:30:7a:ab:a6:6a:e2:b6:19:4d:16:71:e0:96:e6:0f:
0b:18:f7:88:e4:63:4f:1e:5f:bf:3f:28:c9:c4:f1:ff:6e:34:
ee:23:73:54:ca:4f:82:5f:9b:68:25:55:8f:e6:b4:13:65:a5:
7d:7f:37:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:00:42 2025 by rpki-client