Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/YESZZ8z4_iDXCDClXUIKUbF3S7I.roa
File: YESZZ8z4_iDXCDClXUIKUbF3S7I.roa (raw, json)
Hash identifier: /591PoGTJq2Uys8opsPw9OBZqlJyvSm915TprmPu19U=
Subject key identifier: 60:44:99:67:CC:F8:FE:20:D7:08:30:A5:5D:42:0A:51:B1:77:4B:B2
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 019424455D8170472B61A4EA2FAC8E5B4619
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/YESZZ8z4_iDXCDClXUIKUbF3S7I.roa
Signing time: Wed 01 Jan 2025 23:48:33 +0000
ROA not before: Wed 01 Jan 2025 23:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60083
IP address blocks: 31.145.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:5d:81:70:47:2b:61:a4:ea:2f:ac:8e:5b:46:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 23:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60449967ccf8fe20d70830a55d420a51b1774bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:b4:1f:46:b1:cb:36:11:ef:8d:c7:92:91:
a8:b1:be:f4:b0:5c:0c:68:7f:d9:15:30:5b:93:17:
36:34:80:b3:20:b2:c7:3a:1c:96:ea:a3:e5:4e:ed:
4a:bc:7a:69:ce:75:fd:bd:53:b3:bd:b1:40:00:d8:
77:90:0b:74:bf:ee:0f:7c:de:de:87:26:bf:f0:6e:
c7:8b:e4:77:87:bd:7f:77:82:27:3c:5d:b6:2a:dd:
67:2f:91:ae:ea:a1:ec:c3:29:a4:62:7d:e8:38:4a:
a5:a6:58:42:12:9c:e5:f2:66:9e:57:74:ad:9b:60:
1e:05:ea:16:2a:ff:e2:1c:a9:c0:bd:14:cb:d2:9f:
ba:b5:3d:75:52:70:eb:c8:6b:62:5b:a7:26:c6:44:
b8:76:89:26:6f:93:aa:46:1c:25:46:10:f0:ae:53:
71:ed:9a:e4:64:f1:cc:e2:1b:5b:ae:d3:66:ee:01:
4b:66:2e:4e:f0:25:1e:8f:25:de:6e:ba:53:f2:41:
3b:86:5c:5c:19:80:16:3e:e4:f6:ef:ff:db:32:37:
06:03:f0:e6:ba:c5:25:98:fe:ef:86:53:05:49:51:
91:ab:5e:c9:e8:de:4b:59:dc:d6:77:01:6a:46:8c:
6b:26:c1:49:c3:6c:f4:1c:a4:a1:55:c1:57:85:04:
b2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:44:99:67:CC:F8:FE:20:D7:08:30:A5:5D:42:0A:51:B1:77:4B:B2
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/YESZZ8z4_iDXCDClXUIKUbF3S7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.60.0/24
Signature Algorithm: sha256WithRSAEncryption
19:df:27:30:ba:bf:04:38:fd:09:68:e1:bc:71:a2:9f:db:cd:
b0:86:98:33:ba:0f:25:44:ff:5c:2b:52:72:3a:38:30:16:4b:
f6:de:7a:3a:4a:21:fb:a3:e2:1e:13:ab:57:99:f3:d8:c1:02:
36:8c:4f:d5:d6:41:97:55:b5:e7:9c:91:e2:da:ff:eb:be:72:
26:77:25:b1:45:4f:44:3b:f9:24:7c:eb:43:9d:64:47:24:e0:
f6:69:0c:cf:85:65:9b:c7:1c:29:f4:24:31:63:15:25:75:66:
31:3b:ec:5d:99:7b:a4:d1:1c:f8:c0:86:d7:63:aa:ef:82:6c:
c6:8f:7a:05:d6:61:31:36:1f:16:45:1b:72:1c:a1:ec:d7:b1:
18:38:9c:d8:f8:b6:d8:bb:e7:13:38:bd:f1:7e:4d:93:77:c2:
14:b0:e0:cc:a9:62:4e:b0:a6:8a:1f:d1:b7:76:16:77:ac:fb:
b8:fa:d9:21:5a:7e:1c:25:55:55:53:33:32:26:d2:1b:2a:70:
34:0c:71:d3:fb:31:ba:e4:c7:e7:66:24:dd:a6:1b:20:39:18:
f9:e4:dd:0b:48:e0:6b:12:34:53:b7:c2:cc:13:c9:97:81:35:
10:8b:89:61:f0:83:a7:8b:53:42:97:d6:27:23:68:33:e0:70:
3b:91:13:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:47 2025 by rpki-client on console.sobornost.net