Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/2y5JJpAEHb2vcr45CQcgy1KQEpM.roa
File: 2y5JJpAEHb2vcr45CQcgy1KQEpM.roa (raw, json)
Hash identifier: xCDfnvTv4KWQpd7Q1mq3ejBxPJ7h/NHc0fBvIXJ59Ok=
Subject key identifier: DB:2E:49:26:90:04:1D:BD:AF:72:BE:39:09:07:20:CB:52:90:12:93
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 045DEAFF
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/2y5JJpAEHb2vcr45CQcgy1KQEpM.roa
Signing time: Sun 20 Feb 2022 16:08:46 +0000
ROA not before: Sun 20 Feb 2022 16:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73263871 (0x45deaff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Feb 20 16:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db2e492690041dbdaf72be39090720cb52901293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f4:0e:80:38:64:9a:1c:cb:06:f3:3f:3b:2f:
2e:6e:e2:5a:19:75:a1:2f:ea:90:38:bb:db:69:5a:
fc:dc:75:9b:85:18:e3:af:be:ae:dc:23:f3:ff:6a:
e5:a5:c0:f6:40:36:69:25:a7:97:c5:15:ae:b1:b4:
60:4c:64:2d:1d:c1:9d:40:be:f9:fb:4b:07:6c:7f:
75:d2:84:df:f8:4a:82:c1:b1:56:a2:f0:4b:8c:6c:
f9:ef:1b:11:5e:fb:5e:b5:30:b2:25:d5:b4:8d:ef:
7c:5b:1a:16:98:a8:61:06:e5:35:ab:4e:a7:3a:78:
0a:67:7b:36:1c:a7:a1:24:6b:05:54:0a:78:86:49:
ce:4d:32:b7:72:b2:a1:89:30:af:6d:56:4c:5a:d8:
e8:56:00:c4:33:3a:54:47:d3:f8:5e:5b:60:8e:9b:
56:d2:af:a0:38:1c:88:41:83:ce:24:62:7b:f8:28:
8a:52:fa:3b:1c:9a:40:77:03:f0:92:b5:4a:56:c4:
14:be:0e:2c:3a:ca:7e:94:a5:66:3c:7d:a3:7b:fb:
19:44:b3:06:18:92:6b:2d:f6:b2:ea:b1:0d:c9:32:
cf:af:29:6c:17:8b:b9:27:16:1f:99:ae:56:4d:74:
2b:cb:27:11:83:b7:97:46:8b:ea:21:b9:10:ea:a1:
d6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2E:49:26:90:04:1D:BD:AF:72:BE:39:09:07:20:CB:52:90:12:93
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/2y5JJpAEHb2vcr45CQcgy1KQEpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
37:28:33:27:8a:3a:8e:03:fb:d0:c5:5e:a7:a9:cb:dd:93:f2:
b5:b4:bb:e8:36:ad:8b:95:11:52:e2:ba:19:5e:fc:7c:08:cf:
b9:64:31:2b:f9:c5:9d:b3:01:68:3d:e9:0c:bc:bc:c9:12:1b:
53:be:59:65:75:cb:7c:9a:ce:6e:1c:b4:cd:ff:f1:0e:8b:0e:
0b:49:d6:bb:a0:23:25:ad:d4:81:12:d8:90:15:c1:5c:8b:97:
3b:08:b6:69:16:c4:07:14:df:f1:10:c4:ca:c1:0f:5b:a0:18:
dc:80:79:30:17:67:b2:40:75:20:38:b5:2e:8f:76:95:37:f9:
28:c7:72:74:76:33:da:b6:86:be:77:02:cc:74:51:bb:35:d0:
f3:24:1f:d4:32:a5:19:36:20:f9:ec:91:d8:0b:f1:08:32:21:
bc:4b:08:00:4f:c6:89:ac:e0:cc:13:b1:84:9d:b0:a2:08:4e:
f2:48:a0:21:53:34:58:58:e7:75:c5:3c:b3:87:f1:c6:9e:04:
16:e6:ae:4e:7a:34:b8:41:43:c0:87:df:ab:38:85:c1:0a:09:
d6:f8:a8:9e:3a:be:fe:55:41:86:4c:c7:f2:f6:6e:fa:3c:57:
fd:52:16:81:a2:94:75:06:18:a5:17:95:5f:d7:78:08:e3:66:
4d:c3:c1:74
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBF3q/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjNkYTZlOTljNjY2NTEzYTJjZWU1ZjBlMGQzYWI3NDVmMTY3ZGMzMB4XDTIyMDIy
MDE2MDg0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGIyZTQ5MjY5MDA0
MWRiZGFmNzJiZTM5MDkwNzIwY2I1MjkwMTI5MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPb0DoA4ZJocywbzPzsvLm7iWhl1oS/qkDi722la/Nx1m4UY
46++rtwj8/9q5aXA9kA2aSWnl8UVrrG0YExkLR3BnUC++ftLB2x/ddKE3/hKgsGx
VqLwS4xs+e8bEV77XrUwsiXVtI3vfFsaFpioYQblNatOpzp4Cmd7NhynoSRrBVQK
eIZJzk0yt3KyoYkwr21WTFrY6FYAxDM6VEfT+F5bYI6bVtKvoDgciEGDziRie/go
ilL6OxyaQHcD8JK1SlbEFL4OLDrKfpSlZjx9o3v7GUSzBhiSay32suqxDckyz68p
bBeLuScWH5muVk10K8snEYO3l0aL6iG5EOqh1s0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTbLkkmkAQdva9yvjkJByDLUpASkzAfBgNVHSMEGDAWgBRLPabpnGZlE6LO
5fDg06t0XxZ9wzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N6Mm02WnhtWlJPaXp1WHc0Tk9yZEY4V2ZjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8x
LzJ5NUpKcEFFSGIydmNyNDVDUWNneTFLUUVwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8xL1N6Mm02WnhtWlJP
aXp1WHc0Tk9yZEY4V2ZjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAJfYBDAPBAIAAjAJAwcAIAEH/AAC
MA0GCSqGSIb3DQEBCwUAA4IBAQA3KDMnijqOA/vQxV6nqcvdk/K1tLvoNq2LlRFS
4roZXvx8CM+5ZDEr+cWdswFoPekMvLzJEhtTvllldct8ms5uHLTN//EOiw4LSda7
oCMlrdSBEtiQFcFci5c7CLZpFsQHFN/xEMTKwQ9boBjcgHkwF2eyQHUgOLUuj3aV
N/kox3J0djPatoa+dwLMdFG7NdDzJB/UMqUZNiD57JHYC/EIMiG8SwgAT8aJrODM
E7GEnbCiCE7ySKAhUzRYWOd1xTyzh/HGngQW5q5OejS4QUPAh9+rOIXBCgnW+Kie
Or7+VUGGTMfy9m76PFf9UhaBopR1BhilF5Vf13gI42ZNw8F0
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:30 2025 by rpki-client