Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/6d6b76-b4b7-4f7e-8628-cf794658f5be/1/3cLja0Qn7ryI3brAvn_huolef7k.roa
File: 3cLja0Qn7ryI3brAvn_huolef7k.roa (raw, json)
Hash identifier: uL09pyaPRqlSpX4587/io6caQs2mRPwnhcXeei1t0Y8=
Subject key identifier: DD:C2:E3:6B:44:27:EE:BC:88:DD:BA:C0:BE:7F:E1:BA:89:5E:7F:B9
Certificate issuer: /CN=e76210e38b16909a7ee8fe3b8d06647f0665292b
Certificate serial: 0195C7B39607BCC6ADB1C1356BC5CBF3018E
Authority key identifier: E7:62:10:E3:8B:16:90:9A:7E:E8:FE:3B:8D:06:64:7F:06:65:29:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52IQ44sWkJp-6P47jQZkfwZlKSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/6d6b76-b4b7-4f7e-8628-cf794658f5be/1/3cLja0Qn7ryI3brAvn_huolef7k.roa
Signing time: Mon 24 Mar 2025 10:29:50 +0000
ROA not before: Mon 24 Mar 2025 10:29:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197932
IP address blocks: 37.60.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c7:b3:96:07:bc:c6:ad:b1:c1:35:6b:c5:cb:f3:01:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76210e38b16909a7ee8fe3b8d06647f0665292b
Validity
Not Before: Mar 24 10:29:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ddc2e36b4427eebc88ddbac0be7fe1ba895e7fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bc:e9:cd:07:9c:7a:34:dd:7d:22:fa:34:bd:
73:b4:f7:ce:c2:96:d8:18:61:23:43:f4:46:f9:42:
0b:65:e9:85:73:52:0f:ed:7a:d1:b6:a5:d2:50:20:
1a:91:83:be:35:02:69:0a:e2:58:06:3e:f4:1d:9c:
f3:85:ad:0a:f6:a3:39:90:ac:59:2f:80:1e:14:9d:
8a:e4:e2:0b:39:16:00:5f:f1:89:00:22:fc:2c:b0:
89:df:93:80:db:e6:e7:27:af:e5:b0:75:38:9b:34:
b2:f6:ff:f8:62:65:60:b5:2a:5d:c3:00:ce:e3:2d:
21:00:3c:f6:86:da:3d:36:12:c8:32:cf:18:a3:28:
da:5f:2d:82:82:08:e5:2d:e1:a7:83:86:f5:60:73:
12:d6:18:cc:c1:76:df:b5:b0:d8:e8:d0:28:35:f5:
77:2f:19:cd:26:d8:4d:26:61:db:17:61:cf:28:eb:
d8:35:f9:53:03:50:34:e7:e9:5d:b3:72:fc:b3:de:
fe:19:98:f5:b1:f0:8f:6c:d8:9b:35:8d:4e:f5:c2:
94:cd:dd:12:8a:fe:2e:e2:53:f8:bd:56:7e:7b:73:
9a:37:bf:8d:28:cd:dd:00:2e:53:03:93:18:5b:50:
1c:78:9a:67:87:95:30:c3:bc:cc:80:6e:e2:21:0f:
26:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C2:E3:6B:44:27:EE:BC:88:DD:BA:C0:BE:7F:E1:BA:89:5E:7F:B9
X509v3 Authority Key Identifier:
keyid:E7:62:10:E3:8B:16:90:9A:7E:E8:FE:3B:8D:06:64:7F:06:65:29:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52IQ44sWkJp-6P47jQZkfwZlKSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6d6b76-b4b7-4f7e-8628-cf794658f5be/1/3cLja0Qn7ryI3brAvn_huolef7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6d6b76-b4b7-4f7e-8628-cf794658f5be/1/52IQ44sWkJp-6P47jQZkfwZlKSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.200.0/21
Signature Algorithm: sha256WithRSAEncryption
1c:39:ca:6a:71:b4:11:1e:ce:29:48:08:59:4f:70:aa:e7:ad:
f4:20:e9:24:6e:f7:ee:bf:8b:cf:bb:33:81:52:8e:39:b9:38:
86:b2:89:2d:dc:ef:f8:82:92:0f:44:f4:e5:f6:30:18:c3:7c:
6c:6a:02:28:05:51:53:66:c5:1f:b0:1b:9a:08:ea:11:56:84:
9c:88:25:55:bf:64:78:c3:de:3e:3d:f3:3d:c8:b8:3a:5a:64:
08:ab:ce:d5:e7:79:f5:1f:21:63:84:02:5b:6c:d3:63:f4:0d:
1e:8e:2b:94:c6:0b:25:ec:9f:21:1d:c0:17:77:33:67:51:3b:
c8:d1:c8:88:68:94:c4:30:4b:1f:5c:db:ec:3b:98:37:8c:44:
ee:9f:0f:8f:02:4c:87:6b:e0:8d:95:5d:85:9f:8a:f8:bc:a4:
bb:51:2a:6a:c6:b7:cd:4c:ea:92:9b:20:c9:f4:b2:6d:8e:f7:
b9:ab:8b:7d:fa:bd:b7:3e:a1:2b:cb:73:78:83:82:9e:aa:76:
ad:a2:26:8c:4c:f2:02:0e:02:69:3b:46:bc:41:24:5a:c6:08:
62:a3:02:32:14:d7:32:f1:2d:1d:fa:c7:ed:6e:77:98:23:08:
5d:04:3f:55:6a:5b:98:3f:b9:30:3f:3b:57:9f:e8:b9:a9:c3:
c2:5c:c0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:34 2025 by rpki-client on console.sobornost.net