Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
File: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (raw, json)
Hash identifier: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs=
Subject key identifier: BF:1F:94:A7:07:5F:FA:26:37:CD:09:B2:4B:A3:05:C7:C0:74:DA:99
Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial: 097545076552AA9419263F3ECF5E6F71E0DEFDA2
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
Signing time: Sun 08 Jun 2025 19:44:27 +0000
ROA not before: Sun 08 Jun 2025 19:39:27 +0000
ROA not after: Sun 07 Jun 2026 19:44:27 +0000
asID: 215069
IP address blocks: 2a11:f2c0:ffd1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:75:45:07:65:52:aa:94:19:26:3f:3e:cf:5e:6f:71:e0:de:fd:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Validity
Not Before: Jun 8 19:39:27 2025 GMT
Not After : Jun 7 19:44:27 2026 GMT
Subject: CN=BF1F94A7075FFA2637CD09B24BA305C7C074DA99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d2:9a:84:6c:10:b5:e2:b0:a7:03:13:17:64:
92:4b:4a:11:9e:70:79:5c:9a:a4:cb:24:57:20:54:
93:ed:7f:97:c7:d6:34:40:b5:23:32:84:64:31:67:
34:39:01:d6:b9:42:f0:c1:2f:83:d0:92:95:eb:c0:
f1:ad:ec:f6:ff:ad:db:f4:2b:eb:4c:df:43:99:88:
34:b8:f7:17:c8:88:91:77:5e:d1:8c:b2:b1:8b:98:
90:ce:4c:82:b5:9d:78:e0:9a:c3:a7:b2:6c:94:56:
f8:fb:30:3a:58:15:b1:26:c7:c9:81:ec:07:56:d1:
14:89:61:b3:1d:a5:e0:49:22:76:45:a1:ba:77:4b:
53:4b:d6:0f:c3:1e:ab:95:68:a7:21:c5:7c:d3:fa:
40:7b:7b:f0:e3:82:f7:47:dc:3b:79:16:65:c3:6b:
5c:51:31:dd:2b:af:b6:cf:a8:41:23:fb:60:e5:1d:
bd:04:67:a5:3b:16:e5:27:5a:35:b1:0a:35:b5:c5:
34:29:dd:94:bb:2f:9e:49:97:fb:72:e0:37:60:bd:
07:72:fc:a5:d9:9e:9c:0d:b9:1b:3e:3c:80:f7:1f:
ed:a1:d2:76:29:6b:e1:5c:34:35:67:a6:2a:3e:2c:
e3:19:8e:19:20:3d:21:f1:b6:8f:f1:b8:e1:d7:50:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:1F:94:A7:07:5F:FA:26:37:CD:09:B2:4B:A3:05:C7:C0:74:DA:99
X509v3 Authority Key Identifier:
keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffd1::/48
Signature Algorithm: sha256WithRSAEncryption
26:5e:a5:22:3c:60:b3:b9:a6:b6:1d:67:4d:65:97:45:62:b8:
b7:85:c4:1e:43:7c:1b:0d:6d:63:a6:0a:2d:e9:cd:57:ca:83:
b1:b9:d6:13:28:6e:6d:64:3c:92:1a:23:09:99:d1:88:23:c1:
6d:48:16:32:d1:e0:84:57:35:90:ee:c2:4c:6d:c7:33:3d:fc:
b9:92:0d:4e:1c:e5:4a:1f:44:39:15:62:b6:7c:34:0c:c7:9c:
45:88:83:8a:75:e2:e9:b7:b2:3b:33:37:25:8b:a0:a0:da:22:
87:9c:40:94:41:eb:6d:02:eb:5f:2b:35:4c:80:49:8a:1a:40:
2c:10:5f:e6:d3:00:fd:cd:9c:db:53:2e:7a:12:00:65:dd:f7:
bf:df:f0:00:6a:70:25:43:bd:dd:f3:40:a4:cc:43:40:4c:1b:
51:56:cd:7e:74:42:a5:37:98:3f:5d:27:d0:05:69:7f:5a:ea:
6f:a8:ba:65:78:92:bd:3f:29:19:bb:d7:c2:4c:eb:d9:a9:55:
a5:cf:a1:9c:56:06:2b:02:7c:80:b8:3f:95:46:6e:45:fd:30:
5d:88:91:8f:74:16:6c:27:19:29:0a:98:03:bc:41:40:2f:cb:
80:79:ba:8e:1b:a9:ad:86:e9:d7:01:0b:b8:62:ef:08:32:68:
69:fd:01:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 14:01:41 2025 by rpki-client