Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/THnq9fycftVoi9SRyG2RAgjh-xM.roa
File: THnq9fycftVoi9SRyG2RAgjh-xM.roa (raw, json)
Hash identifier: CvE6vZRBpMVjaRZR6SZYXH1U/C4JGawX5FU1BEkF3Yo=
Subject key identifier: 4C:79:EA:F5:FC:9C:7E:D5:68:8B:D4:91:C8:6D:91:02:08:E1:FB:13
Certificate issuer: /CN=34b147ac1cf77d5c8fb2af74fad3b73b5d137b26
Certificate serial: 0195AE9FE733FCF33E4FBE022C7B41EED393
Authority key identifier: 34:B1:47:AC:1C:F7:7D:5C:8F:B2:AF:74:FA:D3:B7:3B:5D:13:7B:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLFHrBz3fVyPsq90-tO3O10TeyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/THnq9fycftVoi9SRyG2RAgjh-xM.roa
Signing time: Wed 19 Mar 2025 13:37:49 +0000
ROA not before: Wed 19 Mar 2025 13:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39686
IP address blocks: 185.60.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ae:9f:e7:33:fc:f3:3e:4f:be:02:2c:7b:41:ee:d3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b147ac1cf77d5c8fb2af74fad3b73b5d137b26
Validity
Not Before: Mar 19 13:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c79eaf5fc9c7ed5688bd491c86d910208e1fb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c6:01:ee:dc:8b:80:39:37:33:26:86:85:40:
fc:ee:9a:05:e3:86:95:6b:d9:43:32:95:df:f1:87:
04:40:41:f5:8b:c6:3a:b7:6d:ad:7d:2a:7d:33:6b:
5e:8f:62:a5:fd:36:34:fa:be:78:db:97:9c:e6:eb:
10:a2:07:ad:f9:ee:66:5b:18:31:4e:25:d5:bd:a3:
97:a0:35:1a:ad:d9:79:f8:35:ac:f1:eb:aa:b8:da:
21:c6:5e:e8:d5:42:e1:8e:ed:83:66:59:a2:4d:57:
d2:72:52:af:75:b3:73:22:91:d9:3d:b8:7f:67:ca:
86:f6:c1:97:70:97:ce:ce:14:30:3b:99:10:75:3b:
40:c3:b3:75:9f:bc:46:61:ba:42:ce:7f:3b:3e:62:
73:48:15:32:ec:94:c8:05:24:6f:e8:6b:40:1f:d3:
52:93:4f:71:e0:e0:4f:96:8b:63:b1:f8:7b:10:cf:
65:0e:6a:95:e5:dc:6f:ca:3b:96:ef:7f:a7:35:18:
dc:e5:a0:c8:da:09:0b:4f:6b:73:e2:c6:d2:92:4a:
6d:fa:2c:ab:91:25:fd:97:b8:61:e4:44:04:2d:5a:
e7:34:63:29:25:d2:d0:da:21:2f:84:23:11:9a:aa:
44:cd:98:c2:3b:a5:0f:18:cb:ef:fc:08:dd:4e:ee:
48:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:79:EA:F5:FC:9C:7E:D5:68:8B:D4:91:C8:6D:91:02:08:E1:FB:13
X509v3 Authority Key Identifier:
keyid:34:B1:47:AC:1C:F7:7D:5C:8F:B2:AF:74:FA:D3:B7:3B:5D:13:7B:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLFHrBz3fVyPsq90-tO3O10TeyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/THnq9fycftVoi9SRyG2RAgjh-xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/NLFHrBz3fVyPsq90-tO3O10TeyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:ba:b7:23:61:27:25:2a:5e:ef:49:2b:b4:f8:4d:0d:6e:f8:
c4:3f:3f:2b:42:b4:35:ed:f9:65:37:77:d0:77:9f:79:c8:4c:
04:9a:0d:1d:f3:3e:09:44:93:65:2d:b6:c8:64:1f:b3:e0:b7:
c2:7f:f5:fa:ec:10:31:b4:95:3a:b0:09:65:81:57:69:80:d1:
16:fd:31:98:6e:c3:77:3a:22:5e:8f:c4:2c:0c:cc:c8:9f:bb:
a2:6f:af:df:db:a1:cc:7a:72:fc:1c:f4:01:b4:d1:d0:d8:d0:
e1:6d:de:42:e1:2f:22:d2:17:f1:1e:53:73:19:cb:79:2d:5f:
f6:97:23:1c:86:81:e1:9a:70:bd:c2:e9:4e:6b:aa:97:2c:3a:
96:5c:d9:2c:6c:5d:91:c3:20:c1:46:5c:fb:b9:3f:9f:87:9f:
95:21:aa:5c:36:ea:7f:13:f7:22:1c:d9:d6:66:cf:e7:36:74:
7f:f6:26:74:4b:b8:11:db:e2:79:0f:d0:31:35:84:fd:93:ca:
39:12:48:c8:c5:18:1a:73:31:a8:fa:ad:e4:22:4a:08:e3:ee:
32:8f:fd:ec:2d:7e:49:c2:b5:4c:22:d8:1e:dd:ce:eb:c2:66:
dd:58:7e:d5:be:c0:3e:ef:e5:1c:6b:17:7d:97:93:e4:65:5a:
66:58:01:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net