Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60721.roa
File: AS60721.roa (raw, json)
Hash identifier: a/s4pRnXA5ouL9gTrTXWkOie+LOYRMD2YhZ+m/zOUu4=
Subject key identifier: 38:D5:48:EE:EC:3A:63:8A:E9:D7:EA:EB:B5:14:99:B2:FF:56:7C:BE
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 65CA06C901A10A9A239174B4CB75AB4D999F5601
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60721.roa
Signing time: Tue 11 Jul 2023 11:30:08 +0000
ROA not before: Tue 11 Jul 2023 11:25:08 +0000
ROA not after: Tue 09 Jul 2024 11:30:08 +0000
asID: 60721
IP address blocks: 191.101.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ca:06:c9:01:a1:0a:9a:23:91:74:b4:cb:75:ab:4d:99:9f:56:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Jul 11 11:25:08 2023 GMT
Not After : Jul 9 11:30:08 2024 GMT
Subject: CN=38D548EEEC3A638AE9D7EAEBB51499B2FF567CBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f3:cd:b5:99:25:d2:e7:a4:26:68:e5:7e:5b:
76:93:99:de:19:20:1b:f5:9b:e6:85:ae:43:72:17:
bc:54:d4:4f:17:6a:97:51:9f:68:f4:46:ed:e0:50:
cc:5b:fc:77:bb:df:00:08:cf:66:cc:47:4e:e5:7f:
06:d0:47:0b:e0:dd:c3:83:2b:78:3d:d2:7a:b8:2c:
07:f5:2f:d5:3f:f7:40:15:b8:3d:38:82:4c:0d:96:
d3:91:4b:4f:57:51:33:8f:9a:5f:aa:f9:94:69:3a:
52:7c:2d:ce:77:37:f2:77:65:0b:96:07:2c:d1:0c:
c5:bd:b8:e7:45:03:7f:eb:6c:bb:cd:79:57:40:fb:
01:a6:81:0b:eb:0e:97:ca:3f:45:05:f7:36:bb:de:
0c:a6:79:31:21:18:ab:27:0a:cd:af:e5:74:a9:b6:
84:9a:61:3b:11:08:67:54:fd:3b:5f:4e:1d:af:2b:
3a:01:4d:85:52:29:92:b8:17:2d:27:1c:43:f6:83:
f4:c1:53:b3:39:22:69:d2:95:51:bf:13:8d:0f:4a:
b9:1e:3b:ff:7f:d0:91:4c:45:5f:ee:66:33:a6:8b:
f4:ba:28:22:4b:40:3e:d1:01:5a:7d:65:e4:b9:20:
d5:12:cb:eb:00:da:36:e8:82:99:a7:02:6f:63:3c:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D5:48:EE:EC:3A:63:8A:E9:D7:EA:EB:B5:14:99:B2:FF:56:7C:BE
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS60721.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.101.147.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:7c:97:5d:d7:37:73:62:83:be:8c:f7:b6:0f:ff:1e:38:f0:
92:ee:3a:69:97:3d:83:68:da:00:9a:3b:f6:25:ff:39:3e:c0:
07:eb:f1:dd:9e:0e:e7:34:78:6d:d9:fb:a3:ed:87:e0:8d:be:
b9:b9:cc:e3:46:90:73:b2:93:77:f3:e8:a6:6c:78:2b:78:c9:
42:93:32:70:2e:f9:a5:f0:1a:ee:a9:26:38:ad:39:fc:6f:59:
12:53:45:9e:c3:7a:d5:53:b0:21:58:3e:df:35:68:b3:78:af:
c4:5c:f2:53:72:7f:8a:bd:04:39:4d:b1:e6:ab:22:60:db:5f:
fd:8a:bf:3f:f6:b0:15:fa:a3:d9:d4:47:11:db:94:fc:80:9b:
06:1f:ab:56:7d:f2:56:83:28:fd:c0:f4:e0:d3:a0:ce:aa:3a:
30:d5:43:64:02:1b:0b:0a:1d:38:a4:d3:a1:a6:d0:86:38:5e:
4a:fb:7a:12:ef:85:1b:3d:3d:23:3e:cc:6a:38:05:3c:19:cc:
d1:68:7e:cc:f3:ff:68:8b:5b:27:0c:a2:d7:d3:d8:db:62:0d:
6d:ee:21:ed:dc:81:b0:e6:03:c4:9a:99:81:57:42:86:af:15:
bf:f9:66:81:37:8e:ac:1f:44:59:49:a8:8d:73:b9:76:a6:42:
be:38:b1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:37 2025 by rpki-client