Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/PM-zzSFKUkiv4tlAAxhZFMMBilc.roa
File: PM-zzSFKUkiv4tlAAxhZFMMBilc.roa (raw, json)
Hash identifier: kGkKXGWzXikvZq2mPFFPLwIu/CxhHXP3iWf9NbmnQB0=
Subject key identifier: 3C:CF:B3:CD:21:4A:52:48:AF:E2:D9:40:03:18:59:14:C3:01:8A:57
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 0193B5793F7C8A460FAB1E65976ED666C3EC
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/PM-zzSFKUkiv4tlAAxhZFMMBilc.roa
Signing time: Wed 11 Dec 2024 11:27:22 +0000
ROA not before: Wed 11 Dec 2024 11:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 84.55.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:79:3f:7c:8a:46:0f:ab:1e:65:97:6e:d6:66:c3:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Dec 11 11:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ccfb3cd214a5248afe2d94003185914c3018a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:11:9b:bb:fe:f6:f1:aa:c7:09:61:56:6d:
bd:f5:11:97:f9:f9:61:43:ff:93:e8:ef:cd:46:d6:
8f:88:ad:f6:f4:6c:2f:84:02:08:06:90:9f:d9:f3:
18:d8:63:2b:2e:d7:8f:7e:6e:ab:e2:63:66:9f:35:
55:44:fe:27:13:6c:7a:13:43:d6:38:44:b8:93:d3:
db:23:14:57:f2:f9:9e:57:54:ab:5b:73:2c:bc:aa:
d2:a4:49:b4:ad:ac:d0:ad:5b:fe:8d:cf:26:66:ed:
ce:12:0c:af:ef:a4:95:d0:7b:bd:cc:a6:63:63:70:
a7:f8:8e:09:fd:00:e5:93:27:1c:66:5a:80:93:87:
17:2c:90:9f:2f:dd:7b:ad:5c:d8:6a:fd:75:92:87:
84:98:27:a1:97:de:b9:79:d7:77:52:57:30:bd:0e:
de:6d:b8:01:44:af:32:79:3b:0e:2f:51:6f:a3:f3:
be:26:5a:98:34:43:20:c7:2b:c5:6d:05:1d:ef:7e:
f2:d6:32:9a:39:0d:9f:79:62:e5:36:ca:39:d5:da:
cd:c3:c6:1d:14:1f:26:a3:38:16:77:a6:ed:52:ac:
94:f9:c0:d5:9a:6f:f8:39:85:25:dc:38:49:f0:af:
16:0e:1a:bb:bf:40:20:2a:54:85:ef:37:91:1b:c2:
d9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CF:B3:CD:21:4A:52:48:AF:E2:D9:40:03:18:59:14:C3:01:8A:57
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/PM-zzSFKUkiv4tlAAxhZFMMBilc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.18.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ea:eb:fb:8a:36:ac:c4:e7:23:97:19:14:b6:ff:a7:3e:72:
26:f6:20:0d:49:37:5f:bf:2d:5b:2b:c9:d3:d9:08:f6:17:e4:
23:ce:ec:77:18:9c:c0:f2:12:45:b4:9b:9d:32:75:53:30:d8:
5f:54:cb:28:d2:87:1b:bc:af:1b:d5:93:aa:77:2d:55:24:7e:
97:a0:3f:38:fa:f3:2a:51:1a:fb:5f:3c:c1:01:b4:3b:aa:23:
2e:fc:35:fa:a7:ef:8b:3b:be:9a:ef:fe:4b:39:c8:39:ea:ed:
54:15:91:c3:a1:a7:36:8a:38:ef:ef:4d:eb:9c:d5:61:d4:39:
33:1d:8d:59:e6:19:cd:da:71:38:8b:a8:d2:ab:64:a8:78:4b:
a8:52:d3:eb:0d:cf:51:86:f3:09:4b:71:72:a8:16:72:2b:15:
70:04:f1:d0:41:11:86:ee:fd:86:c9:25:a8:14:44:91:5f:19:
de:17:9e:fa:1a:9e:52:94:04:94:b7:7b:cc:ea:aa:c9:e9:94:
8a:41:9b:59:fb:1c:e8:c0:4a:99:be:67:51:d9:f0:84:e9:6d:
d2:8f:b6:33:06:5c:64:42:a4:d6:a9:24:a7:95:f3:c6:58:78:
49:2e:94:fd:bc:d4:45:cd:47:c4:b9:3a:24:62:80:db:28:52:
e2:7f:e0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:49:24 2025 by rpki-client