Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
File: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (raw, json)
Hash identifier: JfPLPRAt2VAp3nl2F0n1tbo6w9Newb0Wr4PBuXgYvr8=
Subject key identifier: 3D:B8:DE:FE:7C:12:78:08:A2:E3:16:19:B1:B2:B9:8F:C5:9E:28:4F
Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial: 44BADB4CEEA4682D252B8B3315F5E81FD3368624
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
Signing time: Sun 07 Jul 2024 19:25:07 +0000
ROA not before: Sun 07 Jul 2024 19:20:07 +0000
ROA not after: Sun 06 Jul 2025 19:25:07 +0000
asID: 215069
IP address blocks: 2a11:f2c0:ffd1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:ba:db:4c:ee:a4:68:2d:25:2b:8b:33:15:f5:e8:1f:d3:36:86:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Validity
Not Before: Jul 7 19:20:07 2024 GMT
Not After : Jul 6 19:25:07 2025 GMT
Subject: CN=3DB8DEFE7C127808A2E31619B1B2B98FC59E284F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:3d:a1:a6:1e:45:32:78:fb:60:2a:b1:86:
34:b4:90:8f:f3:fe:66:34:bf:2f:a5:94:cd:29:9b:
42:8b:23:14:af:be:29:5f:3f:5b:82:2e:11:cd:11:
e4:5e:e1:e6:0f:16:dd:75:5e:6d:f2:9f:0e:fa:b3:
3e:ed:44:a2:27:c5:8d:ba:47:6d:1a:51:01:a3:64:
f7:f9:79:48:6e:31:0c:58:99:27:39:36:77:0c:2b:
b4:5e:1e:b8:60:84:86:4b:f1:8b:1a:66:4b:3c:cf:
b4:c0:e0:b4:70:4b:5d:4d:37:d1:08:70:5b:4d:42:
61:71:c8:4a:4d:8a:6c:b9:1e:08:b0:51:cb:49:11:
06:93:ea:21:ae:e4:a7:60:1b:de:16:b6:24:5c:a0:
d1:90:91:7a:13:3e:3e:6c:c2:16:46:85:42:e7:6b:
2d:12:51:8a:e9:3c:fe:7a:ab:19:5b:fc:d1:dc:70:
16:34:61:6d:67:dc:19:7a:21:3b:c7:10:9e:9f:b2:
0a:bb:d9:92:e2:d9:aa:54:6b:01:59:92:48:36:3f:
a4:ff:9f:70:80:7a:56:8f:85:e3:9b:b3:b8:04:96:
36:ef:c2:89:6c:67:47:2f:56:42:e6:69:00:4a:c4:
fa:60:bf:82:bc:fe:0c:64:db:15:d5:06:f8:2c:c1:
6e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B8:DE:FE:7C:12:78:08:A2:E3:16:19:B1:B2:B9:8F:C5:9E:28:4F
X509v3 Authority Key Identifier:
keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffd1::/48
Signature Algorithm: sha256WithRSAEncryption
62:90:33:16:94:1e:fc:ae:c7:56:fe:3f:8e:b2:a9:01:04:78:
ef:e1:d8:18:36:33:1c:b8:1b:10:23:a3:73:9c:7c:80:2a:bd:
a2:f2:12:95:68:76:e0:8e:fd:14:4c:91:b7:08:16:f4:89:10:
89:e2:de:03:3a:62:56:8e:82:bf:5e:28:a2:57:85:fc:e0:61:
b7:89:e0:cf:42:8a:17:95:7b:6c:a3:22:f0:a6:02:46:6f:91:
18:33:df:c6:36:9f:f6:3a:30:57:7c:9e:f4:58:12:bf:f1:65:
47:bc:13:ee:f4:64:9f:9e:32:64:72:13:17:5d:ac:88:9f:be:
05:b2:8a:e5:00:97:c3:ba:6e:2a:f1:3a:ca:58:6c:9a:d8:4c:
0a:bf:2a:b2:64:33:b0:30:87:74:86:7e:34:83:31:24:4b:62:
aa:a4:47:f4:25:82:1b:3e:b0:47:96:c1:3b:bf:2c:db:fb:19:
c6:68:8f:14:d3:9a:ec:96:49:d6:84:59:e1:44:a6:72:85:f1:
2f:78:01:97:d1:76:ce:2d:1a:36:1f:e3:dc:bc:f4:cc:6a:c4:
78:54:af:8e:15:9d:ce:2f:a9:f3:b4:5f:0a:39:de:54:db:ee:
4f:39:ab:9b:61:41:6b:36:10:60:9a:8f:57:bd:78:d9:43:13:
69:01:6a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:04 2025 by rpki-client