Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS202400/0/323630323a666161383a3430343a3a2f34382d3438203d3e20313939323033.roa
File: 323630323a666161383a3430343a3a2f34382d3438203d3e20313939323033.roa (raw, json)
Hash identifier: O+Fw1f84bEErL1yg+QgGXB0VmBm54B9WJ8yZFEB1UBU=
Subject key identifier: 31:CD:81:0B:AF:6A:4F:FD:09:46:6E:AD:83:9A:B6:2A:AF:5A:B1:90
Certificate issuer: /CN=2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f
Certificate serial: 11A026AE7A60A8BFA1AA40CC6FD815938DF00EFC
Authority key identifier: B0:BE:7A:BD:BE:B3:E0:14:7D:08:12:2B:69:9C:47:8C:99:A1:B0:FF
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70f5d80c-9daa-4f6f-8f58-181c5f0c4b0a/2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f.cer
Subject info access: rsync://rpki.co/repo/AS202400/0/323630323a666161383a3430343a3a2f34382d3438203d3e20313939323033.roa
Signing time: Sun 24 Mar 2024 13:20:19 +0000
ROA not before: Sun 24 Mar 2024 13:15:19 +0000
ROA not after: Sun 23 Mar 2025 13:20:19 +0000
asID: 199203
IP address blocks: 2602:faa8:404::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:a0:26:ae:7a:60:a8:bf:a1:aa:40:cc:6f:d8:15:93:8d:f0:0e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f
Validity
Not Before: Mar 24 13:15:19 2024 GMT
Not After : Mar 23 13:20:19 2025 GMT
Subject: CN=31CD810BAF6A4FFD09466EAD839AB62AAF5AB190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b9:cf:02:db:11:36:ab:fb:c8:b6:bf:a4:87:
0c:a5:a9:ec:d7:77:68:be:dd:66:01:ee:cf:fc:db:
60:30:a0:ec:6e:30:ee:22:2e:90:db:71:98:ca:75:
71:1a:4f:9b:35:b2:37:46:09:d8:73:95:5d:ae:c6:
d3:9c:3b:21:4b:f9:40:88:c5:0b:b1:ae:03:62:9b:
31:e0:d8:c1:2e:72:48:95:c7:48:a8:fe:68:79:73:
5f:f1:c7:55:5d:3c:c8:35:9d:e9:91:8f:d0:5a:0b:
e4:74:b4:fe:13:8d:4d:e3:10:06:9b:d8:95:93:75:
fb:a9:53:15:5c:cc:08:ba:a6:5c:a2:2f:2b:c1:1b:
1a:d3:b2:51:e0:53:a4:3d:67:0c:e2:b9:2a:88:5e:
45:57:de:4b:a3:dc:d3:85:80:71:ab:51:d4:d5:24:
b9:66:3d:c7:3e:be:0e:3f:79:a8:50:7f:1b:10:69:
f1:52:30:e9:06:1b:ba:2c:cb:c0:e6:93:ab:47:20:
e1:3b:2f:65:77:60:90:1a:48:25:55:96:96:72:b7:
8a:d0:a3:e2:15:fd:a3:4b:65:e9:02:b7:db:ef:34:
1d:1f:44:3e:fb:3a:70:56:7f:33:c8:fb:bb:78:41:
42:05:59:47:0f:be:a5:40:e9:71:8a:02:c0:d6:29:
fd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CD:81:0B:AF:6A:4F:FD:09:46:6E:AD:83:9A:B6:2A:AF:5A:B1:90
X509v3 Authority Key Identifier:
keyid:B0:BE:7A:BD:BE:B3:E0:14:7D:08:12:2B:69:9C:47:8C:99:A1:B0:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS202400/0/B0BE7ABDBEB3E0147D08122B699C478C99A1B0FF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70f5d80c-9daa-4f6f-8f58-181c5f0c4b0a/2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS202400/0/323630323a666161383a3430343a3a2f34382d3438203d3e20313939323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:faa8:404::/48
Signature Algorithm: sha256WithRSAEncryption
41:c8:ac:18:56:d8:ac:f7:7d:5b:86:2c:2e:df:36:74:fd:ac:
4e:5d:63:78:e5:24:ae:15:63:47:91:50:49:cc:61:26:15:d6:
5d:1f:45:60:55:a6:70:20:ef:5b:cb:3d:d5:be:6c:4d:88:a1:
97:31:a3:60:2a:0f:16:aa:e3:b4:4a:b3:c6:65:c3:ea:c2:b6:
28:cd:3b:b1:30:a5:66:d2:db:bd:9b:be:8b:6f:69:5e:6d:01:
72:ba:de:3b:d5:5c:d9:4d:50:06:fc:5d:60:8f:2d:21:f1:52:
99:ea:c3:a2:45:b3:4b:fd:f7:c9:b9:fa:ce:54:65:6d:f0:cf:
68:50:3f:53:1e:83:4f:a1:3a:73:19:e7:bf:14:1c:8e:e5:76:
80:17:1b:3a:72:78:f6:d1:ca:0d:25:c7:2e:84:dd:40:88:f7:
ad:d6:81:af:bb:87:fa:a2:e1:1f:09:1e:ab:d5:62:23:ce:24:
c5:3d:ab:91:8a:7a:91:40:11:29:8a:df:92:bd:e8:1a:72:b7:
d0:e1:e4:20:76:b4:ff:2f:5d:a7:df:55:c8:ad:44:c4:2f:bf:
37:f6:b1:c2:a1:57:24:cb:23:b9:14:c3:26:e1:82:a1:3a:f8:
3e:f0:ed:e2:21:5c:19:e8:5e:d6:28:06:be:0c:2d:61:c1:6b:
e2:42:98:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:52:35 2025 by rpki-client