Route Origin Authorization
$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa
File: 326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa (raw, json)
Hash identifier: vxaqD429klEPt03aXXniKGxzQoHI4Ar9F2T3pRAzV/Y=
Subject key identifier: A0:E6:51:41:98:02:5D:EA:B0:B3:A9:AC:67:CC:39:6B:5B:86:2B:64
Certificate issuer: /CN=1A889E0950A8B6489E67E7C7189539FB887EAD71
Certificate serial: 19484EACE676C795B1599BD12871E3D0961787A5
Authority key identifier: 1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer
Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa
Signing time: Sun 08 Jun 2025 19:41:50 +0000
ROA not before: Sun 08 Jun 2025 19:36:50 +0000
ROA not after: Sun 07 Jun 2026 19:41:50 +0000
asID: 199337
IP address blocks: 2a11:f2c0:ffc2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:48:4e:ac:e6:76:c7:95:b1:59:9b:d1:28:71:e3:d0:96:17:87:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A889E0950A8B6489E67E7C7189539FB887EAD71
Validity
Not Before: Jun 8 19:36:50 2025 GMT
Not After : Jun 7 19:41:50 2026 GMT
Subject: CN=A0E6514198025DEAB0B3A9AC67CC396B5B862B64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:39:c1:63:59:89:3b:30:51:bc:d5:55:3b:
7d:a2:3d:f6:3c:b9:3d:8e:0a:bf:6e:e2:8c:0a:14:
43:ea:c4:c3:b1:b1:9c:f3:eb:d5:68:15:6b:7f:0d:
af:6a:62:52:4c:fa:24:f5:8f:0f:0b:f4:4b:58:f5:
a5:a4:11:20:ea:ec:ff:06:31:20:65:e2:db:ad:08:
d9:4e:1d:56:a8:2b:13:e1:01:fa:3e:10:7b:97:92:
11:9c:4e:16:f7:2c:57:1d:09:00:f6:25:b7:d4:f6:
d1:5f:d9:a2:e3:93:e4:05:e8:f5:ac:9b:24:af:a8:
6f:fe:29:ea:17:87:74:fb:7f:0d:a0:58:84:2e:8e:
c5:aa:c8:f5:98:82:20:c2:8d:f0:4f:b1:6f:b6:2e:
37:af:1e:6e:a4:b9:de:05:8b:47:ce:c4:74:55:a5:
f8:7d:3a:0f:bf:b5:48:f6:6f:78:c8:68:bf:8a:bb:
22:8a:87:19:89:f4:f2:8a:f7:f2:52:93:9c:59:21:
d6:f1:99:02:00:8b:42:fa:3b:c7:e0:67:a4:e2:56:
6a:d0:0e:3e:59:43:55:6f:db:03:62:46:0c:e4:54:
c9:0c:cf:b8:c1:61:cd:0c:7f:15:89:aa:6c:27:4e:
45:35:63:de:53:20:e8:8a:43:cd:cf:5f:2c:07:1a:
c0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E6:51:41:98:02:5D:EA:B0:B3:A9:AC:67:CC:39:6B:5B:86:2B:64
X509v3 Authority Key Identifier:
keyid:1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663323a3a2f34382d3438203d3e20313939333337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffc2::/48
Signature Algorithm: sha256WithRSAEncryption
94:67:70:3d:e0:b3:ba:b3:16:f6:9a:bd:06:92:11:5b:3a:8d:
37:a3:8b:a5:ff:a8:f8:5f:6f:88:a2:9b:34:af:df:4f:b8:e9:
40:f9:14:f7:56:eb:04:68:df:98:3e:6c:62:04:2b:25:6f:b1:
59:e7:c3:41:7a:f5:d2:fc:be:77:59:77:88:64:10:01:30:fb:
c5:c8:7c:cd:b3:9b:d8:c0:68:2b:53:78:55:3a:26:dc:c8:31:
d8:fb:fe:f6:15:e8:a5:36:24:64:49:ad:1c:23:09:12:e0:d0:
96:d0:95:3d:f7:27:38:9c:bc:89:9a:21:cc:c0:3b:9a:da:ee:
08:b4:69:26:1e:7a:3b:bb:eb:5f:19:77:01:ad:31:40:5c:f0:
34:a7:15:fd:92:3a:56:fa:11:85:48:33:a0:fb:fb:22:23:64:
48:87:db:f1:b8:4e:3d:15:47:ea:0b:1c:06:c4:b1:31:87:08:
56:25:ce:7d:32:38:de:c3:6e:0b:ec:2b:e6:a5:ee:bf:53:4d:
be:7e:21:51:87:41:61:87:b4:63:53:8c:d2:7d:a4:9a:bd:52:
3a:40:eb:1d:3c:ea:1e:2b:7f:07:f7:cd:4f:ef:bf:e6:d6:c2:
e0:42:7a:93:2e:ba:2d:b7:2a:69:82:94:6c:10:b7:08:f3:ec:
a6:19:ae:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:54:10 2025 by rpki-client