Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1XXKFCpfxoRSJwDUducEXgPzhds.roa
File: 1XXKFCpfxoRSJwDUducEXgPzhds.roa (raw, json)
Hash identifier: d3q9+MRsPUmExbiMFj5VcmYsMO0sy9+8OvBYJxpyjUw=
Subject key identifier: D5:75:CA:14:2A:5F:C6:84:52:27:00:D4:76:E7:04:5E:03:F3:85:DB
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0633FE8B
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1XXKFCpfxoRSJwDUducEXgPzhds.roa
Signing time: Mon 25 Apr 2022 14:41:23 +0000
ROA not before: Mon 25 Apr 2022 14:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104070795 (0x633fe8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Apr 25 14:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d575ca142a5fc684522700d476e7045e03f385db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:25:41:36:3e:71:df:38:ab:4d:51:6d:a6:0a:
d3:d7:ac:42:3b:97:ba:34:b1:02:53:9e:d9:b7:95:
c3:d0:37:ed:bf:5f:e7:ce:09:94:07:93:d3:01:5d:
4e:72:f6:d1:e5:8f:a6:c7:f2:24:6a:23:71:74:b0:
9a:30:0b:46:2f:91:ef:77:a7:7c:12:0d:8c:79:90:
60:93:66:c0:77:73:8d:b2:c1:e3:5e:f7:77:f4:12:
17:94:e9:95:1f:96:db:b6:96:0a:22:8d:e7:14:91:
9f:f7:7b:87:ee:05:55:f8:37:3a:15:be:61:36:3a:
af:52:4a:dc:ee:33:c2:cf:0f:6b:66:9b:6f:ab:10:
57:7d:cc:f2:8d:aa:70:b3:dd:20:fa:ac:e1:9c:b6:
34:9d:dd:1a:36:a9:3e:4a:44:7e:83:7a:4e:9e:fa:
70:e7:a5:96:fc:3f:8a:d9:43:4a:21:51:31:2a:8c:
91:23:88:66:63:ed:80:9f:b7:a6:4d:8b:e8:0a:d3:
7d:86:d6:d5:bf:6f:6b:0f:23:ba:8f:6d:46:69:e2:
5b:2a:93:8b:8f:66:76:f1:09:f5:c7:4e:8d:40:50:
b9:dc:53:5e:1e:a0:e7:ed:14:09:c3:f8:55:98:3f:
b4:db:75:ce:db:04:7e:03:f9:49:c8:40:d9:9e:db:
17:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:75:CA:14:2A:5F:C6:84:52:27:00:D4:76:E7:04:5E:03:F3:85:DB
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/1XXKFCpfxoRSJwDUducEXgPzhds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
30:89:95:ec:00:d3:0b:2e:38:93:7d:f4:fc:68:af:d2:35:04:
f4:41:c0:65:d4:ce:b3:75:82:83:12:c4:16:a9:b4:b2:06:fe:
e6:e4:05:48:db:07:02:4f:4d:3f:32:0b:37:20:b9:59:9f:6d:
40:2d:d6:a2:47:ab:b2:b1:5e:d3:73:9a:db:0e:9f:82:00:94:
15:6d:fd:fc:f2:fb:97:4c:bb:3b:59:8d:8b:e7:ec:f8:bb:04:
45:9e:4e:4a:83:46:b8:fb:ee:0d:69:99:16:59:ae:29:30:a3:
6b:c7:7c:03:70:a3:41:93:31:96:9b:89:d7:e9:55:0f:9e:d6:
03:d6:a1:38:e2:db:ce:ad:b5:a5:e1:62:9b:d4:b5:64:22:20:
2b:e2:fe:83:90:4b:ff:97:97:c9:ee:84:5f:a2:ba:3f:08:19:
d9:22:9a:18:af:99:9c:14:cf:22:27:f7:25:13:29:2b:e5:35:
7d:56:0e:0b:fc:4d:18:85:ab:25:12:ac:68:43:52:f9:f9:f1:
30:4b:a7:00:6a:44:af:ed:89:9a:31:bf:9e:ab:71:ce:fe:3d:
06:a8:dc:7a:36:28:34:db:ef:20:b5:a7:fb:94:8a:c3:90:ef:
9d:92:5e:11:80:71:00:62:d5:db:95:a6:8b:1c:73:87:c1:5a:
69:05:05:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:55 2023 by rpki-client on console-fra.rpki-client.org