Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/4yLFcyM54Hv8nF5ON-TIrD-1oYQ.roa
File: 4yLFcyM54Hv8nF5ON-TIrD-1oYQ.roa (raw, json)
Hash identifier: hE+OT4FiIcXi0TRuDiRDYqpuBeR4hhUYci4sdFCd/CY=
Subject key identifier: E3:22:C5:73:23:39:E0:7B:FC:9C:5E:4E:37:E4:C8:AC:3F:B5:A1:84
Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Certificate serial: 01942068068CFDC1D3D1B228F2F30FD0FB4E
Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/4yLFcyM54Hv8nF5ON-TIrD-1oYQ.roa
Signing time: Wed 01 Jan 2025 05:47:55 +0000
ROA not before: Wed 01 Jan 2025 05:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64439
IP address blocks: 37.60.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:06:8c:fd:c1:d3:d1:b2:28:f2:f3:0f:d0:fb:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Validity
Not Before: Jan 1 05:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e322c5732339e07bfc9c5e4e37e4c8ac3fb5a184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:8a:e6:77:90:f6:6f:83:57:29:89:69:60:
28:ac:f7:13:5c:19:3b:1f:c2:b3:d7:9a:91:c1:f4:
7f:d8:1d:e6:1e:eb:a0:cd:31:7d:8d:29:9c:12:13:
c2:de:ca:b6:5e:a1:e2:ee:ac:a4:6f:6d:dd:37:76:
41:fd:2b:38:aa:83:61:83:52:9c:35:f5:e3:de:f5:
c7:56:90:ba:b0:57:af:eb:48:48:c5:4a:61:8c:44:
44:6f:99:10:ca:f2:e6:f4:29:b0:11:39:38:fa:fa:
94:19:cd:8e:b2:d4:b1:3b:18:31:52:ef:94:9f:38:
ba:78:0c:83:46:70:c7:99:7d:af:3d:51:bd:0c:30:
03:79:6f:04:8f:77:a6:43:bf:11:40:85:72:9c:b6:
3d:ab:e4:34:00:bd:c6:6f:57:b1:a5:08:0e:cd:f8:
9a:8c:42:17:4b:3e:f4:6b:81:61:00:f4:d1:da:3a:
a4:ad:05:17:6a:f9:6e:e6:77:14:0b:34:ce:94:ff:
86:4a:f6:4d:dc:8a:c2:b6:12:65:fa:66:4d:eb:4f:
db:f7:81:54:1e:cc:42:ad:55:46:aa:e5:49:04:51:
10:8c:f4:82:fd:b9:ed:a0:be:d3:3d:57:45:fa:c8:
eb:19:13:c1:f3:98:dd:8a:9d:0f:2a:11:10:95:d2:
a9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:22:C5:73:23:39:E0:7B:FC:9C:5E:4E:37:E4:C8:AC:3F:B5:A1:84
X509v3 Authority Key Identifier:
keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/4yLFcyM54Hv8nF5ON-TIrD-1oYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.177.0/24
Signature Algorithm: sha256WithRSAEncryption
14:78:7a:55:e4:49:f2:57:4b:03:5d:d9:e8:87:65:5e:2f:2a:
78:74:c9:d2:ce:eb:54:1d:21:19:0c:bd:f0:80:4f:a4:be:7f:
19:6b:3e:ae:c8:91:d7:3f:d6:cf:a5:37:b4:e9:61:d5:ee:98:
17:e9:59:60:50:8a:86:c6:7a:be:09:b6:9c:99:71:2f:60:a6:
50:88:14:41:ee:ca:cd:9e:1d:70:85:6d:8f:80:d9:cf:31:a7:
b3:8a:0b:4d:67:03:ac:eb:0d:34:81:8a:8c:4e:9f:86:71:01:
a5:1b:b4:f9:a9:d4:01:6c:e9:60:63:c7:1d:32:48:aa:b9:d8:
fa:b3:b1:e8:83:d3:56:f2:90:4d:eb:99:3e:e3:80:99:4d:c0:
2f:01:d9:59:e7:66:a3:41:a6:51:3c:8a:46:19:c6:de:00:ce:
3f:6b:2a:f5:29:ac:ab:e4:de:f4:11:4c:d2:16:d8:4d:d3:16:
b3:3d:72:c8:21:c7:9d:ab:12:a1:03:93:c9:8d:fe:97:97:8a:
8b:8d:cd:1c:50:27:5b:f5:5b:7b:0c:7b:71:42:7c:df:6a:e2:
fc:b4:71:3b:87:30:38:af:dc:70:81:89:85:3c:43:50:d8:fb:
58:81:13:62:cd:9e:4f:58:04:8f:5c:ca:eb:26:fb:4e:b9:cf:
59:6c:0b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:26:34 2025 by rpki-client