Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa
File: 326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa (raw, json)
Hash identifier: 8L2dffl4g1ilG1l5/B+kC7djnpjUVSHg7XLmPYAhjYI=
Subject key identifier: C4:18:DD:E1:9F:50:DF:31:6C:E9:10:CF:1A:E1:70:52:73:C8:2F:AC
Certificate issuer: /CN=1A889E0950A8B6489E67E7C7189539FB887EAD71
Certificate serial: 78716A8E6A18D371CC764CCFA12E9DBA853B5B98
Authority key identifier: 1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa
Signing time: Sun 07 Jul 2024 19:12:16 +0000
ROA not before: Sun 07 Jul 2024 19:07:16 +0000
ROA not after: Sun 06 Jul 2025 19:12:16 +0000
asID: 199337
IP address blocks: 2a11:f2c0:ffc1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:71:6a:8e:6a:18:d3:71:cc:76:4c:cf:a1:2e:9d:ba:85:3b:5b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A889E0950A8B6489E67E7C7189539FB887EAD71
Validity
Not Before: Jul 7 19:07:16 2024 GMT
Not After : Jul 6 19:12:16 2025 GMT
Subject: CN=C418DDE19F50DF316CE910CF1AE1705273C82FAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f6:56:3b:e3:39:ce:9f:a5:f7:3b:de:9b:2d:
af:56:4c:81:e1:dd:19:25:91:dd:f3:ac:ec:6d:15:
04:55:14:dc:84:86:99:11:6e:61:98:f3:bf:d2:5e:
14:93:9c:70:76:ba:52:93:29:0e:fc:9e:e0:25:a1:
9e:bb:cb:51:a1:08:66:e7:8f:07:24:e5:00:95:22:
3f:0d:6a:1d:51:c0:e2:6d:b4:99:a3:fc:30:d1:06:
d4:c1:ff:13:f6:e9:01:86:81:7b:84:8b:6f:09:54:
85:79:a9:1d:69:67:e1:9c:4d:9e:0d:d5:00:c5:95:
a1:b4:65:d4:84:a8:f6:53:67:66:3b:89:d4:ea:0a:
66:40:61:08:37:1d:64:87:e2:d8:d3:b9:5f:4b:7e:
d8:af:d8:33:25:94:99:25:63:9f:aa:8b:46:d2:43:
13:81:30:4a:a1:b6:f2:dc:50:19:ba:27:f8:b1:a1:
c2:b6:6a:17:8b:9a:64:7d:fa:47:18:cc:6d:f9:94:
d0:31:d7:5c:8e:db:bc:09:ad:2a:aa:ac:44:2e:b6:
7b:da:9a:06:17:d5:89:8a:51:f8:47:96:f2:7c:6a:
2b:b8:9f:42:a8:3a:0d:61:f5:8d:37:31:24:31:ab:
4f:2e:ad:0b:b4:08:0e:41:e4:ba:26:ab:93:04:bf:
03:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:18:DD:E1:9F:50:DF:31:6C:E9:10:CF:1A:E1:70:52:73:C8:2F:AC
X509v3 Authority Key Identifier:
keyid:1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc1::/48
Signature Algorithm: sha256WithRSAEncryption
94:df:a8:ea:2f:a1:bd:95:ff:33:ed:b0:87:39:3b:9c:6b:b5:
cd:ed:d3:1b:1a:3f:88:25:77:37:8c:fc:74:41:21:0f:ec:67:
f8:a8:60:2e:7c:64:47:40:bc:44:e5:36:63:84:1e:3e:29:ab:
08:59:01:87:25:73:72:91:5e:2e:a7:c7:a2:7a:f9:4f:51:b9:
51:86:e3:98:e0:1e:fe:33:01:ca:29:78:0d:d7:98:79:dd:4f:
b8:bd:c5:0d:19:00:89:78:af:84:0f:f7:99:d0:18:bd:5b:30:
e4:65:97:6e:be:9f:db:50:38:d9:69:f7:68:9f:e9:ac:d3:97:
5b:ae:65:50:7b:88:d1:5c:dd:a3:ec:b1:97:50:0c:2a:cf:d5:
57:57:2e:29:97:0b:51:f7:b3:51:02:e4:66:df:b0:89:e1:ae:
2f:e6:1b:e6:db:84:5b:41:77:6f:fe:52:09:19:39:b7:d5:18:
96:ad:97:35:9e:66:3c:9c:a0:27:0e:9b:5d:34:b5:5c:e7:99:
e5:ef:e9:56:24:64:c8:a9:33:78:83:36:10:15:8e:ab:79:59:
e8:95:44:a1:49:91:dc:02:da:0f:7e:3c:5f:10:63:3d:bb:ca:
7e:64:13:c3:a3:1d:2e:f7:c0:f8:75:72:9e:3b:26:86:bf:6d:
a9:fb:ce:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:16 2025 by rpki-client