Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa
File: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (raw, json)
Hash identifier: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA=
Subject key identifier: DF:B7:3B:75:AA:6C:07:EB:44:4D:28:20:44:97:97:CC:6F:E3:47:86
Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial: 45D54605DF4CE8387DA9C1FEB1EAE27DC881680A
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa
Signing time: Sun 08 Jun 2025 19:44:11 +0000
ROA not before: Sun 08 Jun 2025 19:39:11 +0000
ROA not after: Sun 07 Jun 2026 19:44:11 +0000
asID: 215069
IP address blocks: 2a11:f2c0:ffd0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:d5:46:05:df:4c:e8:38:7d:a9:c1:fe:b1:ea:e2:7d:c8:81:68:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Validity
Not Before: Jun 8 19:39:11 2025 GMT
Not After : Jun 7 19:44:11 2026 GMT
Subject: CN=DFB73B75AA6C07EB444D2820449797CC6FE34786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dc:e2:ce:14:6a:d6:1d:5d:fc:06:54:9a:91:
f7:f4:bb:ef:e3:07:4b:5c:87:71:06:93:ba:97:10:
55:a9:01:37:ba:a9:e2:a7:a9:1f:ea:08:48:52:80:
c8:a6:11:3b:35:84:cb:b1:e4:ed:42:ad:2c:40:85:
38:e0:78:d6:e1:23:c0:14:80:84:fb:2b:91:fe:b8:
b0:6c:e4:22:3f:f6:da:b7:b9:ba:a2:62:6c:56:96:
47:b1:c7:84:f4:22:46:24:3d:8c:19:87:ad:72:5a:
87:b0:24:6f:e9:0c:60:17:1b:6b:9e:e8:0e:96:5b:
1b:78:43:ff:62:f7:aa:28:3d:d3:f8:e8:8c:99:72:
55:9b:c1:8e:8d:7e:14:cd:0c:7f:19:26:95:a8:da:
8d:49:bb:8d:69:a0:2e:b5:24:35:59:23:79:72:a1:
11:da:bc:ca:b8:00:05:90:38:2f:b1:df:4f:a6:1d:
e7:84:d8:d8:46:34:c6:68:2d:ab:f0:72:85:dd:84:
66:dd:a0:70:49:cc:24:22:07:b0:c4:c6:26:02:b9:
14:3a:53:13:03:fb:04:b0:28:ef:e6:f7:78:a4:d9:
61:fb:8b:73:7c:0b:fb:9a:bc:1f:37:25:c9:a6:7f:
fb:d1:29:a2:4a:6a:3b:bd:77:74:55:f6:ea:0d:5f:
ff:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B7:3B:75:AA:6C:07:EB:44:4D:28:20:44:97:97:CC:6F:E3:47:86
X509v3 Authority Key Identifier:
keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffd0::/48
Signature Algorithm: sha256WithRSAEncryption
33:4e:ea:44:ad:87:1d:f3:fd:f4:90:5b:75:83:ae:9f:bc:82:
f9:1e:47:ac:fb:52:e2:b7:7e:b1:19:bd:ab:01:89:e6:c9:4e:
42:79:0b:e7:1b:c7:63:e6:ff:22:71:eb:5d:50:24:45:31:66:
e5:1c:5a:42:ad:c7:91:61:b3:27:b9:17:d2:da:07:7f:e5:78:
25:b3:39:76:39:cc:04:90:d9:43:f5:1c:28:b1:1d:0f:c0:5e:
41:c5:3e:85:ae:65:84:aa:15:fa:db:43:79:cf:cb:90:ba:df:
57:d6:df:7a:7b:81:48:d1:e0:84:8c:5e:e5:39:88:b3:d3:ad:
29:ba:1c:25:15:52:a9:5a:90:a8:38:b5:87:15:59:1e:98:1b:
d9:4f:de:15:97:c5:46:16:73:49:80:44:5e:e4:f2:23:ae:f2:
85:86:4a:05:26:dc:ee:1a:c1:fa:32:6d:55:0a:23:50:1d:ab:
cc:00:39:c4:48:71:0e:47:54:f6:9f:25:e3:20:00:6e:d2:f5:
c0:0f:cf:16:62:07:ca:14:ac:b2:81:31:87:fb:ee:87:d4:e9:
b1:50:79:66:7a:e8:10:94:73:5f:be:55:fe:e6:85:80:cf:fa:
e6:3f:cd:c0:54:6e:70:53:00:9d:dc:3d:ae:e1:3a:8d:73:90:
6d:e4:8f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 14:01:41 2025 by rpki-client