Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
File: AS60781.roa (raw, json)
Hash identifier: nuvP4F+Bbn01X/4TVxKluug0Oof4dLVeGR6o3CiH3vw=
Subject key identifier: E1:72:4D:CE:C0:76:C6:42:00:2F:CC:16:C7:39:C5:72:12:75:42:21
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2A1C0DE8C6657EBDABF039359D6B859DC09983A9
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
Signing time: Wed 19 Mar 2025 00:01:58 +0000
ROA not before: Tue 18 Mar 2025 23:56:58 +0000
ROA not after: Wed 18 Mar 2026 00:01:58 +0000
asID: 60781
IP address blocks: 140.233.166.0/24 maxlen: 24
145.223.42.0/24 maxlen: 24
145.223.45.0/24 maxlen: 24
145.223.51.0/24 maxlen: 24
145.223.53.0/24 maxlen: 24
145.223.57.0/24 maxlen: 24
145.223.59.0/24 maxlen: 24
145.223.61.0/24 maxlen: 24
146.103.1.0/24 maxlen: 24
146.103.6.0/24 maxlen: 24
148.135.177.0/24 maxlen: 24
148.135.188.0/24 maxlen: 24
148.135.196.0/22 maxlen: 22
148.135.200.0/22 maxlen: 22
148.135.204.0/22 maxlen: 22
148.135.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:1c:0d:e8:c6:65:7e:bd:ab:f0:39:35:9d:6b:85:9d:c0:99:83:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Mar 18 23:56:58 2025 GMT
Not After : Mar 18 00:01:58 2026 GMT
Subject: CN=E1724DCEC076C642002FCC16C739C57212754221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d1:5f:db:0a:4b:7f:ab:51:13:2c:34:b7:2c:
96:63:91:3f:52:7b:54:88:0b:4c:19:ce:5c:0c:81:
d2:ee:84:19:c5:62:5a:40:18:bb:ce:d1:e4:74:ca:
c6:f3:a9:e8:ca:13:5f:08:c8:6f:42:e2:21:d9:2e:
19:f7:25:f4:3f:81:1c:2f:2a:6e:97:fc:81:0c:7e:
67:14:80:04:e9:a1:79:cf:75:a7:e4:6f:fd:0f:cd:
29:b9:ba:92:a6:eb:4a:3e:e3:25:bc:e7:82:2c:f1:
8e:e5:a7:b1:a7:e6:27:66:8b:9c:ba:d6:d4:4c:95:
d0:68:b6:08:66:4b:bf:4d:0a:52:44:94:c1:85:7f:
95:79:ab:40:86:3d:fe:5f:d8:24:f9:68:64:ae:98:
01:74:d8:3d:01:00:d3:4c:2a:e6:ea:2c:cd:fd:d2:
5f:fe:86:f7:cb:bc:35:79:88:7a:b1:5e:23:9d:0e:
c1:25:2b:c6:b7:35:5b:13:bc:87:a7:7e:dd:b3:83:
18:d8:64:35:e5:dd:9f:d8:28:07:19:1f:25:d1:8c:
b0:44:66:34:88:3f:9e:cc:28:75:73:ed:f4:46:09:
e8:d7:78:b5:b1:f3:09:63:1e:95:88:95:69:66:cf:
a3:3e:f7:cc:b4:47:17:3d:bf:90:d4:9d:d5:65:9e:
07:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:72:4D:CE:C0:76:C6:42:00:2F:CC:16:C7:39:C5:72:12:75:42:21
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS60781.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.233.166.0/24
145.223.42.0/24
145.223.45.0/24
145.223.51.0/24
145.223.53.0/24
145.223.57.0/24
145.223.59.0/24
145.223.61.0/24
146.103.1.0/24
146.103.6.0/24
148.135.177.0/24
148.135.188.0/24
148.135.196.0-148.135.211.255
Signature Algorithm: sha256WithRSAEncryption
24:2d:a5:8a:46:9b:77:a4:9e:01:c2:0d:32:43:14:5e:bb:23:
57:84:b7:cc:9b:1f:b2:95:2c:ae:c4:cb:59:e3:2c:2e:9a:e8:
e0:3d:07:35:31:71:ec:01:73:fb:69:fe:8f:f2:35:7d:9e:02:
68:00:73:d2:3c:0e:58:8e:1f:86:ce:64:13:3f:96:d5:1f:ad:
97:98:9f:41:1c:a0:90:ed:e1:fa:b3:9a:25:f1:61:6f:02:66:
3c:7a:b3:50:6c:a9:57:79:34:af:0c:11:fb:68:70:21:0e:71:
bd:56:84:c8:4b:8e:5a:12:05:be:e6:75:da:ac:35:b9:e1:30:
59:44:a3:e4:32:b5:0c:a1:ff:0c:14:40:c6:fa:4d:33:e7:50:
8e:fa:e6:45:88:1b:42:3c:79:d1:3e:11:6d:f3:71:20:d9:25:
cd:ba:82:1f:00:a2:e5:7f:ad:14:d5:bb:30:d2:3a:5b:07:e0:
7f:87:8c:c9:80:b2:e0:fb:99:81:68:f2:c4:31:67:63:be:92:
ca:24:7b:e2:ee:54:98:ef:24:32:70:64:7a:5c:0c:de:25:3a:
12:a1:70:0f:18:ce:7d:76:1a:33:aa:ef:de:44:09:18:e3:e7:
21:a0:78:8b:9d:11:69:e5:29:d7:53:1f:be:75:f1:fe:46:60:
c4:62:79:6a
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIUKhwN6MZlfr2r8Dk1nWuFncCZg6kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi
MjQ2YmZjYzAeFw0yNTAzMTgyMzU2NThaFw0yNjAzMTgwMDAxNThaMDMxMTAvBgNV
BAMTKEUxNzI0RENFQzA3NkM2NDIwMDJGQ0MxNkM3MzlDNTcyMTI3NTQyMjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW0V/bCkt/q1ETLDS3LJZjkT9S
e1SIC0wZzlwMgdLuhBnFYlpAGLvO0eR0ysbzqejKE18IyG9C4iHZLhn3JfQ/gRwv
Km6X/IEMfmcUgATpoXnPdafkb/0PzSm5upKm60o+4yW854Is8Y7lp7Gn5idmi5y6
1tRMldBotghmS79NClJElMGFf5V5q0CGPf5f2CT5aGSumAF02D0BANNMKubqLM39
0l/+hvfLvDV5iHqxXiOdDsElK8a3NVsTvIenft2zgxjYZDXl3Z/YKAcZHyXRjLBE
ZjSIP57MKHVz7fRGCejXeLWx8wljHpWIlWlmz6M+98y0Rxc9v5DUndVlngdtAgMB
AAGjggJZMIICVTAdBgNVHQ4EFgQU4XJNzsB2xkIAL8wWxznFchJ1QiEwHwYDVR0j
BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy
NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK
R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt
NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTNjA3ODEucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwbwYIKwYBBQUHAQcBAf8EYDBeMFwEAgABMFYDBACM6aYD
BACR3yoDBACR3y0DBACR3zMDBACR3zUDBACR3zkDBACR3zsDBACR3z0DBACSZwED
BACSZwYDBACUh7EDBACUh7wwDAMEApSHxAMEApSH0DANBgkqhkiG9w0BAQsFAAOC
AQEAJC2likabd6SeAcINMkMUXrsjV4S3zJsfspUsrsTLWeMsLpro4D0HNTFx7AFz
+2n+j/I1fZ4CaABz0jwOWI4fhs5kEz+W1R+tl5ifQRygkO3h+rOaJfFhbwJmPHqz
UGypV3k0rwwR+2hwIQ5xvVaEyEuOWhIFvuZ12qw1ueEwWUSj5DK1DKH/DBRAxvpN
M+dQjvrmRYgbQjx50T4RbfNxINklzbqCHwCi5X+tFNW7MNI6Wwfgf4eMyYCy4PuZ
gWjyxDFnY76SyiR74u5UmO8kMnBkelwM3iU6EqFwDxjOfXYaM6rv3kQJGOPnIaB4
i50RaeUp11MfvnXx/kZgxGJ5ag==
-----END CERTIFICATE-----
Generated at Fri Apr 4 18:54:56 2025 by rpki-client