Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa
File: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (raw, json)
Hash identifier: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U=
Subject key identifier: F1:85:F8:8A:0A:71:A1:6C:DE:7F:20:36:89:05:9E:95:8A:94:C0:6D
Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial: 5E6EDD470AE71B7FDA4E12532DB1BEC77F50B4E0
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa
Signing time: Sun 08 Jun 2025 19:44:19 +0000
ROA not before: Sun 08 Jun 2025 19:39:19 +0000
ROA not after: Sun 07 Jun 2026 19:44:19 +0000
asID: 215069
IP address blocks: 2a11:f2c0:ffdc::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:6e:dd:47:0a:e7:1b:7f:da:4e:12:53:2d:b1:be:c7:7f:50:b4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Validity
Not Before: Jun 8 19:39:19 2025 GMT
Not After : Jun 7 19:44:19 2026 GMT
Subject: CN=F185F88A0A71A16CDE7F203689059E958A94C06D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:08:87:2d:d2:7e:4a:d9:4d:40:9e:68:e7:08:
5b:72:27:69:e9:9a:7d:7f:af:55:71:fd:4d:60:85:
d6:88:e1:d1:91:3e:1e:83:ae:db:1d:11:4c:a2:d4:
a2:42:e1:9b:64:85:18:b1:c4:cb:f3:b6:fe:b4:2a:
58:52:85:2c:fb:e2:df:03:e7:36:60:39:85:07:02:
41:02:8b:8a:c1:0a:c5:be:6f:ca:24:78:41:8b:f2:
43:f1:d2:51:2d:15:06:b1:ec:be:42:91:27:e7:ba:
27:19:87:7f:3e:ab:68:00:bc:33:49:14:f6:41:95:
ad:d4:3a:ed:05:84:b8:e0:7b:ca:84:8f:48:77:ca:
2e:bc:16:41:d0:79:14:9a:84:18:d4:32:a6:d9:12:
d5:ef:b8:f4:48:3a:3e:b1:32:db:ee:93:06:68:4d:
1c:9c:04:3c:be:83:f6:17:1e:f7:c3:d7:0f:52:be:
09:2e:49:4a:09:64:9b:ae:c6:8e:5c:d3:46:1f:b6:
63:0d:45:a3:94:28:88:b4:68:73:b0:b5:0d:40:32:
91:1f:4b:61:f4:be:c3:01:98:45:7a:8d:59:eb:a3:
03:b4:6a:4d:33:a3:08:82:a2:56:c5:4d:6d:43:4b:
d9:65:a4:7c:79:64:94:81:e1:4a:1e:44:ff:74:9d:
c4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:85:F8:8A:0A:71:A1:6C:DE:7F:20:36:89:05:9E:95:8A:94:C0:6D
X509v3 Authority Key Identifier:
keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffdc::/48
Signature Algorithm: sha256WithRSAEncryption
a1:0a:a8:94:a0:90:f1:2d:57:02:d8:20:fc:68:e8:55:67:23:
22:a1:c6:f8:51:e1:9a:e8:2e:bb:7a:10:08:41:1d:05:6f:63:
a8:03:66:c0:e5:c7:16:58:6f:72:7b:af:6f:c1:61:21:fd:ac:
48:7c:3d:7f:49:18:31:94:57:ee:d7:26:db:42:ba:71:eb:0c:
17:32:49:79:6e:6b:7d:ef:6b:bb:e1:be:41:66:73:34:27:89:
e0:6d:ad:db:f7:41:7f:98:e4:ea:fd:09:4d:00:0e:37:ed:18:
42:d5:ff:95:4a:f2:e6:65:84:d9:18:71:80:ca:77:20:a7:16:
48:c9:51:c8:5e:ea:19:7b:b5:84:27:b6:a4:82:43:00:6a:f9:
73:e1:3a:0e:05:26:fc:e4:d9:94:2c:68:ec:e7:e2:b9:80:47:
de:01:91:1c:d2:41:be:6c:3d:b5:f5:4d:d9:e0:91:55:00:17:
a3:76:66:b6:59:2b:0b:20:0d:d3:23:95:c0:95:0d:67:2a:b9:
43:2f:52:d5:72:1f:3f:fd:85:c7:f6:67:3c:96:60:28:95:a2:
1e:81:76:fb:08:0a:bd:d2:22:9e:c4:dc:d2:7b:4e:6d:9d:6a:
74:5d:4e:a2:e2:8b:b8:d2:ae:7d:66:50:14:9f:6d:8b:6f:8c:
82:c8:68:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 14:01:41 2025 by rpki-client