Route Origin Authorization
$ rpki-client -vvf rpki.pudu.be/repo/pudu/1/323030313a3637633a6238383a3a2f34382d3438203d3e20323130373631.roa
File: 323030313a3637633a6238383a3a2f34382d3438203d3e20323130373631.roa (raw, json)
Hash identifier: euqERIaydVEUOproacKsvcNALWGfqD3MIzlY2rRigCk=
Subject key identifier: 8E:F3:D6:41:51:5D:01:01:06:E7:04:33:8C:8B:DC:87:17:7D:1B:DC
Certificate issuer: /CN=cf7dc5a4f702d3dc9d56ea35b9ee202ec549647e
Certificate serial: 4C2C993DC11621D203F787AC3B153F98C3EDB805
Authority key identifier: CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z33FpPcC09ydVuo1ue4gLsVJZH4.cer
Subject info access: rsync://rpki.pudu.be/repo/pudu/1/323030313a3637633a6238383a3a2f34382d3438203d3e20323130373631.roa
Signing time: Sun 12 Jan 2025 07:12:28 +0000
ROA not before: Sun 12 Jan 2025 07:07:28 +0000
ROA not after: Sun 11 Jan 2026 07:12:28 +0000
asID: 210761
IP address blocks: 2001:67c:b88::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:2c:99:3d:c1:16:21:d2:03:f7:87:ac:3b:15:3f:98:c3:ed:b8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf7dc5a4f702d3dc9d56ea35b9ee202ec549647e
Validity
Not Before: Jan 12 07:07:28 2025 GMT
Not After : Jan 11 07:12:28 2026 GMT
Subject: CN=8EF3D641515D010106E704338C8BDC87177D1BDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:42:41:42:85:6a:0a:3d:10:e7:d2:57:9d:
57:42:9e:6a:4a:5b:eb:74:cf:8c:ba:8a:c7:0e:18:
dd:86:4e:c7:b5:94:57:d7:15:69:d6:53:55:67:6c:
64:21:e8:1b:b0:14:39:e8:76:25:66:7d:c4:01:22:
28:36:6a:c9:bd:95:c1:80:1d:6e:ec:ae:2f:8d:81:
83:89:15:08:7a:90:13:d0:5f:d7:7e:91:06:bc:58:
05:96:10:40:6e:f8:5b:f5:91:b3:99:e9:2a:a2:37:
b1:b4:95:8a:ab:4e:18:3c:67:78:27:39:68:fd:78:
09:d1:0f:9f:d0:28:eb:07:fa:36:6b:c6:6d:fe:8f:
f3:8f:89:97:0f:9a:12:86:cc:54:bd:3b:46:a2:c0:
a3:5e:29:5c:c8:e4:72:0a:75:c3:a3:f4:12:28:ec:
ad:dd:f9:0e:f5:84:a4:89:92:43:dc:c5:9b:06:ae:
02:68:e8:da:46:fb:ac:5d:87:18:25:71:cc:fc:59:
ae:e8:9c:d8:d2:9f:e6:8e:17:eb:2c:c3:43:8c:25:
bf:d4:07:20:2e:73:e6:e4:01:ec:22:79:e8:95:bd:
37:a3:76:fc:81:ea:eb:88:f9:cc:6b:ed:29:d2:a4:
9e:68:71:f9:77:60:0d:5d:f2:62:fb:7b:8b:af:96:
7f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F3:D6:41:51:5D:01:01:06:E7:04:33:8C:8B:DC:87:17:7D:1B:DC
X509v3 Authority Key Identifier:
keyid:CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.pudu.be/repo/pudu/1/CF7DC5A4F702D3DC9D56EA35B9EE202EC549647E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z33FpPcC09ydVuo1ue4gLsVJZH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.pudu.be/repo/pudu/1/323030313a3637633a6238383a3a2f34382d3438203d3e20323130373631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:b88::/48
Signature Algorithm: sha256WithRSAEncryption
a8:a3:81:9e:d1:24:0c:6b:be:ee:43:08:68:c1:e2:18:4e:9b:
2c:5d:10:a6:7c:85:fb:24:ad:17:8e:70:7d:d8:2f:58:c8:2a:
4a:d4:16:c6:cd:b3:36:44:7e:21:2d:ab:ca:22:55:69:bb:2f:
b7:e1:c5:28:88:51:d7:15:ac:54:a0:5e:89:b0:4e:c7:d7:43:
86:0c:63:f1:bf:7b:9a:c1:80:b8:f2:7d:0d:ae:19:2c:0e:57:
f5:dc:f9:db:96:4c:75:88:09:64:f0:03:6e:ba:40:0f:da:a0:
df:a7:45:ba:da:3e:eb:32:58:b7:ba:97:e5:77:23:85:c0:5a:
69:db:1c:2e:19:b9:69:4f:17:6f:eb:1f:c1:40:bc:d0:70:c4:
4f:69:3b:e7:dc:72:79:0d:59:d0:4b:b1:f7:84:8d:82:d4:52:
23:01:fd:e5:ca:19:db:d7:ac:be:1e:87:b6:46:2e:25:c8:da:
9f:3e:ec:ab:ba:6e:ea:69:20:5e:95:d6:9a:0a:0f:cd:9f:d0:
0a:d6:52:d8:55:95:ef:38:9d:75:ab:e3:d3:01:05:04:18:a6:
fc:70:bf:6e:a4:c0:53:d4:84:a3:b5:52:92:7d:4c:1c:e0:36:
b4:77:b6:02:5b:02:a9:8c:6f:eb:25:95:71:85:01:ce:a6:0c:
df:c0:b1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:55:47 2025 by rpki-client