Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/f4QkcaYgqijSaVV6ZC_xNWGaPLs.roa
File: f4QkcaYgqijSaVV6ZC_xNWGaPLs.roa (raw, json)
Hash identifier: mGH8M0l5rB4Y+qXcMofmTWl++O85yJdJgbtNkqEUtbA=
Subject key identifier: 7F:84:24:71:A6:20:AA:28:D2:69:55:7A:64:2F:F1:35:61:9A:3C:BB
Certificate issuer: /CN=34b147ac1cf77d5c8fb2af74fad3b73b5d137b26
Certificate serial: 01954264954FB0783C29DFCEC19AFFE864CD
Authority key identifier: 34:B1:47:AC:1C:F7:7D:5C:8F:B2:AF:74:FA:D3:B7:3B:5D:13:7B:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLFHrBz3fVyPsq90-tO3O10TeyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/f4QkcaYgqijSaVV6ZC_xNWGaPLs.roa
Signing time: Wed 26 Feb 2025 13:14:02 +0000
ROA not before: Wed 26 Feb 2025 13:14:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39686
IP address blocks: 185.60.60.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:64:95:4f:b0:78:3c:29:df:ce:c1:9a:ff:e8:64:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34b147ac1cf77d5c8fb2af74fad3b73b5d137b26
Validity
Not Before: Feb 26 13:14:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7f842471a620aa28d269557a642ff135619a3cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:73:1d:bc:5b:b1:39:00:25:21:6f:af:34:
d0:1f:c0:42:1c:65:07:44:5b:3e:3e:7e:77:3a:96:
ce:bf:e4:fb:f0:f7:b6:56:49:8f:0e:fe:6a:9e:03:
ae:e3:59:ab:e3:56:cc:69:21:d5:05:03:7c:40:d0:
b8:dd:35:00:a6:a3:88:43:8b:e1:21:19:aa:38:3d:
c8:23:af:91:40:5d:83:5c:65:14:79:05:b7:ae:81:
9f:3a:c5:dd:01:63:30:b6:60:5c:7f:5c:8e:26:2e:
4a:19:c3:e0:82:0c:7c:69:f7:f6:f9:8b:dd:49:d8:
3c:98:60:7c:25:89:3d:79:64:bb:e0:18:95:48:da:
50:47:50:45:29:c4:7f:7c:a2:93:5e:e9:25:c6:4e:
06:6b:e5:66:e9:1f:35:42:2f:02:ec:f8:f1:11:a0:
2a:48:2e:62:77:dc:fb:33:65:1d:bd:87:92:16:a9:
af:c7:2f:ea:f5:06:64:18:dc:4a:d5:66:90:fb:5d:
6a:44:0b:7c:53:68:98:21:6f:1a:a8:97:98:83:3f:
52:b9:14:02:21:48:34:5a:d5:ef:0c:20:81:18:5e:
16:22:75:69:0f:c5:13:86:e0:3d:af:c7:eb:b9:6b:
c2:70:ff:9d:22:3f:56:0e:e3:e4:18:28:0d:c0:2b:
4b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:84:24:71:A6:20:AA:28:D2:69:55:7A:64:2F:F1:35:61:9A:3C:BB
X509v3 Authority Key Identifier:
keyid:34:B1:47:AC:1C:F7:7D:5C:8F:B2:AF:74:FA:D3:B7:3B:5D:13:7B:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLFHrBz3fVyPsq90-tO3O10TeyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/f4QkcaYgqijSaVV6ZC_xNWGaPLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cb78e7-3455-4bae-b544-b13717503010/1/NLFHrBz3fVyPsq90-tO3O10TeyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.60.0/22
Signature Algorithm: sha256WithRSAEncryption
79:8e:da:27:28:89:05:d6:fa:6c:ee:f9:23:d5:f7:b4:ac:a0:
7f:6e:a3:bc:13:3c:85:b0:d9:c9:e2:00:75:d9:7c:93:53:f4:
45:1c:88:c0:33:19:2b:eb:ea:92:24:56:7a:07:c4:0d:83:10:
08:19:a5:3c:9f:e1:7f:c5:b6:8c:d5:c1:ec:dd:22:9c:21:b0:
c6:be:33:7a:0a:6f:91:4a:f7:d3:53:76:d1:6f:00:f0:6c:0d:
bc:36:f3:53:43:de:d8:34:3d:5d:2c:2d:5d:4e:ab:b1:bc:f5:
b9:85:5d:4a:e9:6a:50:ef:d1:de:bd:af:30:1d:cb:86:ff:e4:
b4:78:fd:7e:32:fc:e7:0e:19:45:17:5a:63:f8:99:7d:fe:ee:
a9:c2:1d:b8:91:e3:0c:9c:58:21:58:29:ee:eb:e3:97:d0:41:
a4:f8:e2:22:0e:d3:66:23:c2:7e:6d:be:a2:ac:49:43:75:16:
a9:c2:80:b5:0e:c3:c3:ee:82:24:62:80:06:59:ae:29:9f:e4:
80:43:4c:d5:a1:56:88:02:99:34:2a:31:09:da:9c:0e:6a:8d:
19:23:8b:bf:18:0d:b2:12:0d:38:df:00:c5:c4:a3:70:47:24:
e1:71:5a:76:2b:62:62:df:26:8d:93:d3:ef:98:05:96:ce:b3:
9c:b1:8a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:03 2025 by rpki-client on console.sobornost.net