Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60672.roa
File: AS60672.roa (raw, json)
Hash identifier: 2mYQQGmc4gDpteQmAUHDQugewHjUgm69qCeZc8FOr2Y=
Subject key identifier: B8:E1:44:CD:EA:99:2C:84:3B:76:3E:69:B6:1E:91:46:2F:CF:D9:6A
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 52401EA20EB6731541870B8D03AEE2A48199D2B7
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60672.roa
Signing time: Thu 27 Mar 2025 11:53:59 +0000
ROA not before: Thu 27 Mar 2025 11:48:59 +0000
ROA not after: Thu 26 Mar 2026 11:53:59 +0000
asID: 60672
IP address blocks: 147.79.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:40:1e:a2:0e:b6:73:15:41:87:0b:8d:03:ae:e2:a4:81:99:d2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 27 11:48:59 2025 GMT
Not After : Mar 26 11:53:59 2026 GMT
Subject: CN=B8E144CDEA992C843B763E69B61E91462FCFD96A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:12:a0:a0:62:2d:02:18:29:88:7f:35:2d:5a:
cf:6c:7a:f5:5c:18:85:ba:4a:f9:c6:c1:d8:96:4e:
ed:79:1e:45:27:ec:d0:a3:27:30:bc:b6:bb:d6:85:
18:75:79:64:56:52:72:22:d3:4d:85:81:7a:46:47:
5b:32:aa:5d:3f:49:d7:e0:b6:65:55:3e:8b:5c:88:
89:3c:97:fe:16:69:66:db:28:29:df:d6:81:c4:a9:
80:53:d6:38:87:29:cb:d0:c8:3e:8a:db:dd:66:88:
82:3d:37:57:06:30:d8:a1:21:87:9c:07:06:89:69:
ae:7f:11:8d:ba:86:26:fc:ea:66:8a:d3:0e:45:94:
39:c8:e7:59:f7:ba:4f:ab:22:a7:01:f5:23:6d:22:
79:e7:bd:69:15:c6:9e:29:3d:d2:5d:3d:57:6c:41:
85:31:21:8f:17:9c:d0:b9:15:bc:02:b5:0e:c7:19:
cb:aa:5e:97:f3:83:7c:08:21:e1:3e:ca:af:3a:f2:
a8:67:3f:9b:d1:d0:d0:df:c2:96:32:2f:6f:0f:11:
e3:0c:72:e7:b4:13:72:8a:cc:53:6a:54:b8:4d:62:
84:67:84:14:88:61:e5:ac:d9:62:8e:7a:b1:66:46:
b4:da:2c:81:f9:e4:79:03:68:0d:49:00:ad:08:11:
1d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E1:44:CD:EA:99:2C:84:3B:76:3E:69:B6:1E:91:46:2F:CF:D9:6A
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60672.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.79.57.0/24
Signature Algorithm: sha256WithRSAEncryption
55:1f:57:fe:11:b8:a5:1f:de:ac:96:74:20:ac:2a:50:ed:52:
af:e8:57:04:31:81:3b:9a:65:86:d0:70:f7:f2:1f:c5:93:42:
4f:ab:69:bb:0e:e4:1b:bf:35:e3:69:82:0a:10:0c:26:72:4c:
18:28:1b:79:20:87:13:ea:d1:e3:5c:b7:94:2c:ec:38:24:c7:
36:c4:51:2a:fe:a3:c7:c7:b5:5b:a2:09:67:0c:85:b6:09:79:
63:e7:b4:f2:1c:8b:f7:88:36:50:82:38:71:44:cb:a5:7f:a7:
4d:ff:a7:61:13:92:b2:e3:69:69:fc:01:ac:4d:4c:cf:7c:59:
58:24:aa:b0:23:fc:fb:91:2b:02:93:08:56:a2:2e:eb:4b:b8:
95:8f:12:54:24:ca:2c:42:1a:14:8e:73:44:8f:26:8b:85:10:
78:65:69:a7:2e:64:d4:06:cf:04:38:fe:7b:ed:f1:70:4e:37:
1a:6e:ba:39:6b:5e:cf:1b:3b:b4:e1:cc:c8:5b:dc:a7:f6:4f:
30:a6:06:9b:41:ec:27:f6:4c:56:45:c4:b8:a0:23:ae:e9:f6:
82:27:dc:e2:17:c5:ec:95:b2:15:f6:92:e5:31:60:2f:a8:10:
90:4f:e1:9c:b2:b1:92:0a:41:17:38:f8:ee:ed:ce:a1:e4:a6:
c8:31:01:39
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUUkAeog62cxVBhwuNA67ipIGZ0rcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNTAzMjcxMTQ4NTlaFw0yNjAzMjYxMTUzNTlaMDMxMTAvBgNV
BAMTKEI4RTE0NENERUE5OTJDODQzQjc2M0U2OUI2MUU5MTQ2MkZDRkQ5NkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDREqCgYi0CGCmIfzUtWs9sevVc
GIW6SvnGwdiWTu15HkUn7NCjJzC8trvWhRh1eWRWUnIi002FgXpGR1syql0/Sdfg
tmVVPotciIk8l/4WaWbbKCnf1oHEqYBT1jiHKcvQyD6K291miII9N1cGMNihIYec
BwaJaa5/EY26hib86maK0w5FlDnI51n3uk+rIqcB9SNtInnnvWkVxp4pPdJdPVds
QYUxIY8XnNC5FbwCtQ7HGcuqXpfzg3wIIeE+yq868qhnP5vR0NDfwpYyL28PEeMM
cue0E3KKzFNqVLhNYoRnhBSIYeWs2WKOerFmRrTaLIH55HkDaA1JAK0IER0XAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQUuOFEzeqZLIQ7dj5pth6RRi/P2WowHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjA2NzIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTTzkw
DQYJKoZIhvcNAQELBQADggEBAFUfV/4RuKUf3qyWdCCsKlDtUq/oVwQxgTuaZYbQ
cPfyH8WTQk+rabsO5Bu/NeNpggoQDCZyTBgoG3kghxPq0eNct5Qs7DgkxzbEUSr+
o8fHtVuiCWcMhbYJeWPntPIci/eINlCCOHFEy6V/p03/p2ETkrLjaWn8AaxNTM98
WVgkqrAj/PuRKwKTCFaiLutLuJWPElQkyixCGhSOc0SPJouFEHhlaacuZNQGzwQ4
/nvt8XBONxpuujlrXs8bO7ThzMhb3Kf2TzCmBptB7Cf2TFZFxLigI67p9oIn3OIX
xeyVshX2kuUxYC+oEJBP4ZyysZIKQRc4+O7tzqHkpsgxATk=
-----END CERTIFICATE-----
Generated at Tue Apr 8 13:03:47 2025 by rpki-client