Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_5d8f57cb83a144edac4b55b1a88b34d6/0/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
File: 326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa (raw, json)
Hash identifier: 3QzaN8tF2vvcdNjmjdY4ShSE0YK8ZmJtrIPa3vnB9is=
Subject key identifier: 59:7A:8C:9F:72:B2:11:B0:1E:72:CA:B6:A0:7C:8B:F1:A5:E9:43:5F
Certificate issuer: /CN=B50D92304CA867525C648A07380EA065FD352DEC
Certificate serial: 663BC2D2643D0D2A743729C5363DC2E6F4708954
Authority key identifier: B5:0D:92:30:4C:A8:67:52:5C:64:8A:07:38:0E:A0:65:FD:35:2D:EC
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B50D92304CA867525C648A07380EA065FD352DEC.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_5d8f57cb83a144edac4b55b1a88b34d6/0/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
Signing time: Sun 07 Jul 2024 19:38:30 +0000
ROA not before: Sun 07 Jul 2024 19:33:30 +0000
ROA not after: Sun 06 Jul 2025 19:38:30 +0000
asID: 207885
IP address blocks: 2a11:f2c0:fff5::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:3b:c2:d2:64:3d:0d:2a:74:37:29:c5:36:3d:c2:e6:f4:70:89:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B50D92304CA867525C648A07380EA065FD352DEC
Validity
Not Before: Jul 7 19:33:30 2024 GMT
Not After : Jul 6 19:38:30 2025 GMT
Subject: CN=597A8C9F72B211B01E72CAB6A07C8BF1A5E9435F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:10:c9:1f:9e:6c:8b:71:cb:f0:54:44:ba:8b:
59:b2:d1:1e:25:07:d1:a2:cc:41:94:53:47:59:be:
88:5c:02:5c:cb:e0:f4:0d:03:25:29:28:d5:0e:41:
e3:a0:5b:cd:5d:87:63:55:5e:8d:3a:91:7a:80:2f:
e6:ca:6d:d6:f2:15:9b:63:f5:bd:b0:92:83:56:89:
89:65:92:2b:4c:fe:96:45:05:15:6a:17:b4:93:34:
44:74:98:cd:d6:5a:02:c3:f9:11:e9:2e:8b:ab:a4:
fb:f1:e0:6d:a4:5b:46:33:c9:b9:44:77:3c:94:fe:
19:9c:9e:ad:b3:54:e4:6d:5d:11:7e:95:a8:07:94:
37:82:5b:4d:d7:67:4b:e8:48:07:91:33:6b:18:8c:
6d:88:ce:1e:ea:43:a6:50:d8:91:9b:02:2b:ee:e0:
b0:8f:21:ff:fb:4f:f6:a6:4d:75:b9:39:54:b4:3b:
33:be:26:bc:a5:71:4a:9b:9a:6f:da:77:99:d3:8c:
19:5b:48:bf:40:b2:35:4b:88:ab:59:47:8f:b1:24:
c7:21:cc:6a:ac:b7:fa:75:87:a4:b2:cf:3e:38:6a:
e9:c2:b1:57:a5:ba:a5:f9:7a:db:e1:7c:b4:b2:c1:
1a:05:01:4a:6d:72:fd:6a:7e:b8:8f:70:77:eb:25:
98:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7A:8C:9F:72:B2:11:B0:1E:72:CA:B6:A0:7C:8B:F1:A5:E9:43:5F
X509v3 Authority Key Identifier:
keyid:B5:0D:92:30:4C:A8:67:52:5C:64:8A:07:38:0E:A0:65:FD:35:2D:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5d8f57cb83a144edac4b55b1a88b34d6/0/B50D92304CA867525C648A07380EA065FD352DEC.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/B50D92304CA867525C648A07380EA065FD352DEC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5d8f57cb83a144edac4b55b1a88b34d6/0/326131313a663263303a666666353a3a2f34382d3438203d3e20323037383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:fff5::/48
Signature Algorithm: sha256WithRSAEncryption
a4:5a:26:05:2b:8f:d0:6d:94:03:3b:d0:24:f6:bc:fb:4f:75:
58:4b:f5:22:42:94:cf:c7:6d:65:a4:1e:18:70:95:77:85:9a:
0e:3f:8b:2a:06:68:d8:b0:f6:2b:07:c6:be:0e:a6:e9:58:1c:
20:6b:3d:7f:6d:59:13:3a:e5:00:22:57:55:4a:bb:00:34:0b:
7e:db:69:a6:33:a5:97:a2:ad:03:0d:7c:fb:6b:89:cd:4a:68:
56:eb:95:82:8b:d8:15:b3:df:31:fe:10:ef:e0:bb:fc:2d:81:
69:6d:96:a5:2e:1c:5c:c7:d5:40:6e:55:24:a2:43:5a:a6:b5:
cf:15:45:e2:46:2f:d8:3a:0e:2c:19:85:0d:2a:f7:50:b3:5a:
6a:df:5a:c3:c3:37:3a:49:d7:0b:eb:e7:7f:b7:ec:eb:60:87:
e9:b0:62:47:78:56:ab:50:c0:e3:18:5a:11:e4:1f:b8:db:94:
50:d0:37:ec:88:4c:63:9d:b3:a4:bc:53:59:67:70:8d:24:bb:
aa:bf:de:16:67:b4:f8:55:24:ca:09:b8:d0:3b:b8:8b:d6:4d:
06:5b:f7:0a:a3:7e:cf:75:d3:5c:8f:9b:be:f5:84:18:f3:f0:
77:d6:12:dc:10:da:a7:5b:24:5e:dc:f0:07:43:68:d7:5d:87:
56:e5:8b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:25:03 2025 by rpki-client