Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/60FzqMVjb87326REWbL5DpAnL78.roa
File: 60FzqMVjb87326REWbL5DpAnL78.roa (raw, json)
Hash identifier: 1rfBcvDuwFf0w0HdA6PW45EUaA9tPnhN5rCN3zBwdoQ=
Subject key identifier: EB:41:73:A8:C5:63:6F:CE:F7:DB:A4:44:59:B2:F9:0E:90:27:2F:BF
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0194282396B6CFB331D1C7039B83589B28E4
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/60FzqMVjb87326REWbL5DpAnL78.roa
Signing time: Thu 02 Jan 2025 17:50:08 +0000
ROA not before: Thu 02 Jan 2025 17:50:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210122
IP address blocks: 45.11.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:96:b6:cf:b3:31:d1:c7:03:9b:83:58:9b:28:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 2 17:50:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eb4173a8c5636fcef7dba44459b2f90e90272fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e6:21:86:5b:02:cf:61:dd:cf:39:4c:43:bf:
8e:7a:33:9b:5b:a3:a9:ce:0b:df:86:de:54:dd:0c:
0d:01:39:7b:af:da:68:ae:74:8a:f5:ee:77:27:97:
1d:93:14:c5:df:a3:5e:7f:27:80:c6:e7:67:4b:ab:
46:84:48:84:68:71:76:23:fb:b6:f3:48:e3:38:ae:
31:8a:a7:8d:d5:14:15:7c:0a:d6:44:4b:44:48:75:
5f:4e:93:e3:e3:67:c2:58:a4:d1:94:81:27:f5:37:
39:71:91:71:4c:ed:70:4f:8b:c9:71:09:8a:5c:28:
de:6a:89:98:1c:b5:63:47:66:02:3d:51:20:ea:33:
15:ac:c4:1e:15:9c:96:a0:a0:2b:65:48:8b:b2:6d:
01:88:fc:e7:44:11:43:fa:5a:0c:84:7d:1b:17:f1:
40:9a:60:cc:fe:e8:2a:c0:17:7c:91:00:94:43:a9:
76:c8:43:50:c8:57:9d:12:80:6c:77:46:39:a5:9d:
d6:3d:23:0c:52:69:fb:c6:0c:f6:20:43:97:67:98:
9c:04:05:c3:ec:2d:a3:8f:d1:a0:3e:fe:f0:96:b0:
fa:2c:93:59:b0:39:2b:4b:a7:c8:c5:89:05:00:b3:
b2:00:02:b7:3b:7e:40:89:cb:e6:06:80:45:27:61:
a5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:41:73:A8:C5:63:6F:CE:F7:DB:A4:44:59:B2:F9:0E:90:27:2F:BF
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/60FzqMVjb87326REWbL5DpAnL78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.191.0/24
Signature Algorithm: sha256WithRSAEncryption
78:b7:e9:c5:a0:a4:49:e0:b1:f5:62:0d:d1:77:ea:3f:70:66:
2e:e7:33:a4:4b:1f:5a:df:a5:ba:79:24:57:a1:e3:c2:36:fa:
6c:59:31:4d:8c:f4:51:1a:ec:e2:87:41:e8:d6:92:37:13:1e:
81:68:08:5f:b2:22:01:96:a1:90:05:fb:18:63:7e:3d:1c:50:
fc:9f:0f:61:8e:03:78:ea:4b:14:fa:66:17:3d:22:9d:3d:a5:
00:61:7b:06:d0:74:cb:d9:5a:b6:83:19:cb:81:59:69:31:97:
d8:ac:89:f0:29:1c:53:00:5e:ee:0c:8a:30:89:ca:6b:af:6f:
a4:35:e3:77:14:13:6d:db:3a:d3:bd:4c:58:9f:ca:fe:dc:5f:
4d:0a:16:4d:14:44:08:4b:8d:56:35:b8:ea:78:aa:0a:c6:7e:
c3:c5:5f:1e:d0:3a:5c:b3:fc:80:1d:bd:3a:b5:18:54:3c:ab:
17:f9:cb:32:27:85:f5:76:ee:c5:18:3a:38:c2:a9:35:f3:29:
d4:6d:9c:33:4d:7e:d9:e8:bd:ce:3e:32:01:7c:26:e2:2e:ea:
a7:e7:99:df:c1:19:87:6a:23:8d:ce:53:13:b6:74:4e:1f:c7:
94:45:c5:ff:81:4c:cd:a2:15:b5:66:6b:bf:b8:18:d9:77:ea:
27:6f:9a:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI5a2z7Mx0ccDm4NYmyjkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjUwMTAyMTc1MDA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjQxNzNhOGM1NjM2ZmNlZjdkYmE0NDQ1OWIyZjkwZTkwMjcyZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweYhhlsCz2HdzzlMQ7+OejObW6Op
zgvfht5U3QwNATl7r9pornSK9e53J5cdkxTF36NefyeAxudnS6tGhEiEaHF2I/u2
80jjOK4xiqeN1RQVfArWREtESHVfTpPj42fCWKTRlIEn9Tc5cZFxTO1wT4vJcQmK
XCjeaomYHLVjR2YCPVEg6jMVrMQeFZyWoKArZUiLsm0BiPznRBFD+loMhH0bF/FA
mmDM/ugqwBd8kQCUQ6l2yENQyFedEoBsd0Y5pZ3WPSMMUmn7xgz2IEOXZ5icBAXD
7C2jj9GgPv7wlrD6LJNZsDkrS6fIxYkFALOyAAK3O35AicvmBoBFJ2GlnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOtBc6jFY2/O99ukRFmy+Q6QJy+/MB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvNjBGenFNVmpiODczMjZSRVdiTDVEcEFuTDc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQu/MA0G
CSqGSIb3DQEBCwUAA4IBAQB4t+nFoKRJ4LH1Yg3Rd+o/cGYu5zOkSx9a36W6eSRX
oePCNvpsWTFNjPRRGuzih0Ho1pI3Ex6BaAhfsiIBlqGQBfsYY349HFD8nw9hjgN4
6ksU+mYXPSKdPaUAYXsG0HTL2Vq2gxnLgVlpMZfYrInwKRxTAF7uDIowicprr2+k
NeN3FBNt2zrTvUxYn8r+3F9NChZNFEQIS41WNbjqeKoKxn7DxV8e0Dpcs/yAHb06
tRhUPKsX+csyJ4X1du7FGDo4wqk18ynUbZwzTX7Z6L3OPjIBfCbiLuqn55nfwRmH
aiONzlMTtnROH8eURcX/gUzNohW1Zmu/uBjZd+onb5rI
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:12:50 2025 by rpki-client on console.sobornost.net