Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1EnwewU2Ml3DOM1tGuJ313GtCkQ.roa
File: 1EnwewU2Ml3DOM1tGuJ313GtCkQ.roa (raw, json)
Hash identifier: 7IRBYWd29Lb+IUTmrO0Rtwoty4kXngd77GRYnRqYQmc=
Subject key identifier: D4:49:F0:7B:05:36:32:5D:C3:38:CD:6D:1A:E2:77:D7:71:AD:0A:44
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 08D65C38
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1EnwewU2Ml3DOM1tGuJ313GtCkQ.roa
Signing time: Mon 20 Jun 2022 17:17:47 +0000
ROA not before: Mon 20 Jun 2022 17:17:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148266040 (0x8d65c38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 20 17:17:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d449f07b0536325dc338cd6d1ae277d771ad0a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:c9:43:bf:c7:8b:2b:f4:f2:70:38:fd:ca:8f:
5f:5e:ba:77:a3:75:3c:4a:7b:32:69:fb:b6:2d:88:
38:c9:f7:c4:e8:8f:a4:fb:b0:cc:d3:a1:aa:d0:15:
22:69:e7:79:0e:a7:14:b3:dc:85:da:5f:52:54:6f:
e7:23:6f:41:90:9f:e4:9b:25:6b:d3:b2:4a:26:a1:
38:9e:e1:30:fd:e9:2a:38:a7:da:a2:0d:02:6a:5b:
c2:4f:23:21:89:28:e8:1e:9b:5e:bf:3a:19:04:0f:
99:55:e6:ec:8d:e9:7d:5e:44:0d:d2:06:ca:97:39:
b9:6c:81:57:ef:9c:78:60:04:79:35:c9:89:9f:ca:
e0:19:f7:cc:92:d7:b7:3a:ae:32:71:97:c7:e6:2c:
d5:0b:6c:87:c3:c3:54:d7:c5:32:c0:2c:dc:4d:ec:
04:31:d7:22:4b:52:ab:36:eb:fd:7d:c5:6e:ff:82:
69:bf:c6:75:b5:e3:96:96:83:28:b4:39:8e:bc:57:
59:37:3e:10:ac:f9:9c:3e:97:33:56:54:d0:a6:7f:
57:b0:94:4f:07:a1:36:a4:b1:5c:d3:5b:91:61:1a:
42:1e:1d:bc:4f:63:b9:19:65:16:19:3d:93:bf:4d:
b9:91:fa:c4:64:a6:46:15:af:f9:6b:5f:ff:e9:d4:
45:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:49:F0:7B:05:36:32:5D:C3:38:CD:6D:1A:E2:77:D7:71:AD:0A:44
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1EnwewU2Ml3DOM1tGuJ313GtCkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
30:1c:fa:bc:c0:31:74:ee:92:05:11:94:1e:09:5a:b9:23:14:
2c:ce:c2:6f:44:19:72:ea:a7:9b:52:62:e8:85:b7:67:1d:53:
a6:c7:a8:f0:0a:58:e3:50:9e:c3:17:6d:43:73:76:87:2e:3b:
81:88:1f:66:33:36:05:61:3e:c4:96:0c:38:8e:a7:50:02:e5:
53:95:be:d1:56:3a:c5:a5:04:f8:7d:c3:4f:29:8a:b6:dc:e9:
87:6f:f2:d2:31:cf:f8:52:5f:01:f0:db:7b:41:ea:78:e4:c8:
03:45:1d:61:19:ca:e6:3c:40:e4:90:ed:69:54:fe:c4:b7:91:
d9:86:bd:24:87:98:8a:18:70:e0:c1:c9:6f:3b:c0:f7:c1:5a:
3e:06:dd:3d:c5:5e:75:08:27:55:df:21:3c:af:35:89:0f:b2:
d8:34:e2:de:22:99:e1:e4:03:36:59:43:a5:66:41:d6:93:44:
81:62:35:86:f4:93:0b:d0:59:34:f3:88:e7:26:c9:82:12:30:
fc:2d:af:6f:68:fa:18:d9:c5:ae:10:d1:d3:b3:78:92:9f:8a:
dd:bf:08:3c:fb:12:ba:b5:34:d8:5f:e6:fe:32:d6:9d:a8:c0:
59:72:13:9e:ee:b1:24:e6:3a:49:52:4e:ce:1d:48:5e:bf:23:
fe:ea:f1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:42 2025 by rpki-client