Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1-0OtBgLQS-h1DNwLLg0cPlD2Z_E.roa
File: 1-0OtBgLQS-h1DNwLLg0cPlD2Z_E.roa (raw, json)
Hash identifier: 5TJHgD8rHLqh2KpXR4VglOo+dNik4zfhhv+8J6akVIQ=
Subject key identifier: FB:43:AD:06:02:D0:4B:E8:75:0C:DC:0B:2E:0D:1C:3E:50:F6:67:F1
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 056873C4
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1-0OtBgLQS-h1DNwLLg0cPlD2Z_E.roa
Signing time: Sun 27 Mar 2022 14:30:16 +0000
ROA not before: Sun 27 Mar 2022 14:30:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90731460 (0x56873c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Mar 27 14:30:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb43ad0602d04be8750cdc0b2e0d1c3e50f667f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:25:41:45:e8:68:2e:37:d6:97:ed:51:22:85:
56:a1:97:ff:56:b1:c8:e0:71:c9:d6:aa:cc:c8:5a:
90:6c:e4:bd:12:ec:9b:89:23:cb:4b:93:25:58:ad:
43:cc:06:92:85:77:cb:da:46:9d:c2:2a:50:79:d6:
72:36:e5:2a:c8:15:e5:a1:d7:4a:0b:7f:85:ee:af:
68:3f:78:71:a8:fc:c0:c7:f0:7d:04:14:f4:54:27:
18:80:6d:39:c9:88:f1:37:81:fa:24:78:c5:b6:f9:
99:27:c7:0e:5a:37:83:83:b5:8c:0f:64:1d:47:3d:
c1:34:8d:92:24:d4:e6:fc:ee:c1:a1:0c:da:bd:96:
44:52:cc:fc:f8:cd:3e:9c:bb:f5:7d:d0:f2:cb:6b:
02:3e:62:ea:24:c9:77:47:80:ec:0c:08:35:33:35:
a8:ed:83:01:42:e7:0e:8a:9b:f2:4a:eb:43:5d:a3:
86:7d:bb:0f:e9:9e:a6:6f:49:88:2e:6f:8e:51:5c:
3b:c9:bb:9a:f2:ed:5f:36:48:3e:55:e9:cf:78:48:
b4:01:f4:4a:de:c3:25:f9:72:5e:0c:d9:f6:16:f3:
d7:48:dd:11:bb:c1:0a:41:21:95:e5:cd:b4:e1:94:
e5:45:89:98:8a:bd:90:7d:bb:e8:7d:12:58:d4:c0:
76:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:43:AD:06:02:D0:4B:E8:75:0C:DC:0B:2E:0D:1C:3E:50:F6:67:F1
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1-0OtBgLQS-h1DNwLLg0cPlD2Z_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
76:78:5f:df:fe:c0:dc:a0:d1:ef:40:a5:7a:d3:e8:b6:f1:e2:
da:cd:f4:a1:f7:dd:62:d4:b3:e1:c0:c6:2b:b8:e1:aa:9b:dc:
3e:c2:05:44:35:3e:5b:4d:40:29:76:3f:f7:06:25:0a:35:de:
69:b3:f7:df:3b:a0:04:0e:16:81:ba:e1:43:48:f0:11:91:10:
16:a1:d3:3d:1e:2a:f4:37:78:df:82:a6:39:b0:c1:8d:97:06:
98:0e:3a:e8:a6:88:a3:b8:1d:45:1e:8f:0c:4b:65:e8:00:5d:
4f:b5:43:78:75:06:24:d6:57:64:bc:ec:eb:cb:2c:e4:c0:54:
e6:27:36:9e:b6:d5:24:e3:59:8b:78:54:80:ca:64:27:90:5c:
0d:65:44:22:04:43:5f:2e:d1:ac:24:7c:f2:26:8c:71:ff:66:
1f:6a:20:93:dd:90:fe:90:69:29:62:c0:19:61:be:1f:62:84:
a9:be:4f:41:79:58:f3:65:13:5d:d4:c3:3f:54:1e:92:8d:98:
3f:8b:62:f9:3b:7f:c7:9f:3f:b6:56:38:6e:93:98:d4:6d:94:
47:33:4a:36:75:62:85:6e:5c:e2:ac:0f:ff:b9:7c:85:0b:0c:
0f:56:d8:8e:e5:21:ae:aa:19:67:39:05:b9:d7:09:1d:95:5d:
c9:74:45:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:26 2025 by rpki-client