Route Origin Authorization
$ rpki-client -vvf rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
File: 36342e3138372e3230382e302f32332d3332203d3e203437363839.roa (raw, json)
Hash identifier: fDLWsYqKp2kQTCUxzJNhMc5kfnG5ZRzUiS/0j4rG9DA=
Subject key identifier: 16:B1:65:24:6D:92:08:74:DD:C5:BE:1D:32:B1:CE:0C:D6:26:90:A2
Certificate issuer: /CN=73a83c810157e3e8511eebe39cfcad16fa329700
Certificate serial: 3D2D9F67031271B1ADFC91EE91988913B7F31662
Authority key identifier: 73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject info access: rsync://rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
Signing time: Sun 12 Jan 2025 07:12:29 +0000
ROA not before: Sun 12 Jan 2025 07:07:29 +0000
ROA not after: Sun 11 Jan 2026 07:12:29 +0000
asID: 47689
IP address blocks: 64.187.208.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:2d:9f:67:03:12:71:b1:ad:fc:91:ee:91:98:89:13:b7:f3:16:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73a83c810157e3e8511eebe39cfcad16fa329700
Validity
Not Before: Jan 12 07:07:29 2025 GMT
Not After : Jan 11 07:12:29 2026 GMT
Subject: CN=16B165246D920874DDC5BE1D32B1CE0CD62690A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:52:ac:37:a2:a3:00:1b:8b:58:bc:3d:95:c0:
82:dc:fc:f0:d4:e1:15:2e:13:2f:b7:7e:eb:dd:04:
e0:6a:be:2c:b6:9e:c5:72:21:95:2f:5f:51:3c:e2:
7e:b2:70:97:cf:82:15:ee:90:ac:80:b3:da:bb:77:
1b:36:ad:0a:db:0d:50:bf:a7:d2:48:11:75:1f:7b:
bf:e4:62:6c:be:76:9b:4a:ec:3d:52:14:b4:e4:88:
c0:c8:1c:87:ef:0b:1a:82:16:34:e1:49:1a:ea:94:
8b:3d:7d:90:3a:36:7a:ed:9b:d1:56:bd:db:2b:8f:
f6:8b:f1:ad:87:1f:5f:b6:1f:f4:9d:49:c7:73:9c:
98:75:f1:b9:a7:f1:71:26:43:6c:82:00:72:cc:fd:
b5:1b:3f:88:34:46:2d:ec:ee:a4:27:a2:37:e8:c0:
21:2f:2e:4c:9a:20:30:15:63:38:ca:57:b5:12:a5:
76:7a:c7:fe:f6:87:3a:1d:7d:93:57:d1:d0:d9:14:
37:81:d4:50:98:53:9e:62:aa:58:12:cb:93:f5:36:
8f:a0:38:29:e3:b1:31:63:2f:92:b1:15:5f:bd:bf:
6b:d5:d1:36:8a:01:73:43:d6:9a:c9:d0:83:2b:90:
2d:78:51:23:7e:ff:cc:a0:85:2c:19:9d:04:0a:82:
78:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B1:65:24:6D:92:08:74:DD:C5:BE:1D:32:B1:CE:0C:D6:26:90:A2
X509v3 Authority Key Identifier:
keyid:73:A8:3C:81:01:57:E3:E8:51:1E:EB:E3:9C:FC:AD:16:FA:32:97:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.pudu.be/repo/pudu/0/73A83C810157E3E8511EEBE39CFCAD16FA329700.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6g8gQFX4-hRHuvjnPytFvoylwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.pudu.be/repo/pudu/0/36342e3138372e3230382e302f32332d3332203d3e203437363839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.187.208.0/23
Signature Algorithm: sha256WithRSAEncryption
20:a7:e5:a7:5c:d6:3d:49:64:00:3d:0d:82:98:a9:94:4c:79:
02:68:20:44:f1:d7:67:78:ac:bc:83:db:52:6f:95:b9:15:6c:
90:82:97:92:d0:79:90:1f:d5:dd:c6:2e:75:a5:22:13:09:e8:
54:07:0e:46:e5:77:db:b7:d9:6c:e0:b6:93:0b:cb:f2:3d:ae:
d9:bb:f9:c3:b2:39:19:3d:91:c4:aa:70:48:07:b1:e3:5b:e2:
06:4c:63:45:e2:71:7d:29:19:e0:45:0d:44:f2:e3:13:28:79:
28:11:38:b9:71:26:31:87:de:25:eb:7b:14:c3:f2:fd:85:6c:
23:00:bb:39:04:e7:f3:56:7b:26:12:7b:88:3d:50:5d:2b:4b:
e3:a9:11:cb:74:2a:61:11:9e:49:17:50:9d:b1:f2:52:b5:35:
ad:9d:20:aa:6b:77:af:d8:42:9c:8a:e5:a4:8c:67:e4:27:28:
34:d0:ca:ac:b3:a9:79:97:a9:29:cc:fa:ac:a2:01:5c:e4:d9:
0e:aa:1d:74:a2:db:9d:e3:75:70:ee:02:17:0d:51:0d:e5:84:
11:e5:1d:6f:a6:67:7d:56:eb:ad:57:d6:ab:65:3b:28:5b:01:
54:52:ad:9b:72:8b:c0:a7:b9:f1:cc:d3:04:34:6d:47:1a:7c:
6d:be:2f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:28:46 2025 by rpki-client