Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/34t0jl4nGuZ8V6PPizefdSFGIBc.roa
File: 34t0jl4nGuZ8V6PPizefdSFGIBc.roa (raw, json)
Hash identifier: /ZVqxg6admVtN1FLZL4mPGcduihL+7zmp5gijIYl90E=
Subject key identifier: DF:8B:74:8E:5E:27:1A:E6:7C:57:A3:CF:8B:37:9F:75:21:46:20:17
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0914362D
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/34t0jl4nGuZ8V6PPizefdSFGIBc.roa
Signing time: Sun 26 Jun 2022 02:10:23 +0000
ROA not before: Sun 26 Jun 2022 02:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152319533 (0x914362d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 26 02:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df8b748e5e271ae67c57a3cf8b379f7521462017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:65:b9:1d:e1:23:75:87:75:c5:b5:5e:28:
9b:4c:c0:2f:d9:c5:1f:3c:b7:9a:51:59:84:ab:25:
8c:70:72:13:16:12:5a:c8:cf:b4:8b:8d:be:5d:2d:
32:d5:b1:30:30:64:77:aa:a9:a9:06:9c:42:68:85:
62:15:06:06:79:93:8c:c7:d6:93:24:40:ae:8e:87:
99:62:76:f9:34:2d:fb:6a:05:84:9f:0d:a3:1f:1c:
a6:7a:41:fc:91:55:e0:a5:20:93:f1:3c:25:e0:42:
b9:9b:14:34:f8:18:1c:b5:6d:14:36:91:2c:cd:7b:
80:2b:87:fe:0a:8f:f8:0b:b0:38:60:5e:62:0b:e3:
89:31:7b:d5:2d:4c:15:f0:2a:e4:39:9f:94:b8:45:
46:ec:8f:a7:f9:9e:36:be:e4:ff:6d:13:7f:31:f3:
24:89:16:7e:5f:b0:d5:60:0c:f5:07:87:7d:d5:bd:
7e:55:44:af:05:08:5b:c3:67:5b:bc:e8:8f:bb:33:
ee:39:32:b5:c8:19:da:40:67:6e:df:35:83:86:be:
67:60:cc:e3:85:d2:72:59:d5:7e:80:c6:cd:39:74:
6c:b6:1b:2b:9a:25:3b:32:7a:91:64:89:b0:1e:8e:
0e:43:da:ff:1e:e8:f5:dd:97:05:fd:f4:bc:eb:f9:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8B:74:8E:5E:27:1A:E6:7C:57:A3:CF:8B:37:9F:75:21:46:20:17
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/34t0jl4nGuZ8V6PPizefdSFGIBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
5e:c9:b1:50:a2:b0:3d:ca:ba:e6:23:e6:96:d6:96:fd:bd:7a:
45:52:da:f6:af:e7:eb:34:57:93:4a:d4:d4:ff:18:d8:11:90:
54:ae:9c:92:f7:1b:62:cf:5a:28:39:34:46:03:45:49:a7:8e:
70:e9:26:b3:24:4e:b1:8e:e0:e7:d7:11:47:f9:77:80:c9:f5:
92:14:21:21:41:25:dc:b2:57:a9:36:43:0a:52:0a:c7:9c:e1:
cd:5a:8b:22:54:17:d2:61:b5:f4:bd:7e:f7:15:65:28:4f:b7:
d2:bd:20:7a:38:c9:da:67:6d:9a:c2:f8:d7:a4:f2:af:12:82:
73:01:7d:33:ca:e6:2e:c4:d2:07:4f:9c:c0:42:c6:eb:40:c7:
75:59:ba:d7:47:25:88:4f:df:81:9c:19:8b:6f:f6:de:65:d7:
a1:a7:cb:c2:55:cd:8b:ca:ce:17:ca:eb:5f:68:b1:75:7d:91:
d8:2a:cf:59:f5:9a:f4:11:e0:26:94:02:83:02:e2:22:25:89:
5d:ff:c5:ae:8b:eb:f3:0f:9a:18:81:40:49:40:57:82:a6:bd:
a7:56:24:9c:69:0a:03:ef:11:db:69:de:7a:50:f8:88:8f:4c:
4e:07:e1:c6:7f:0c:93:d5:05:59:f2:ab:5d:05:3e:b4:e6:3c:
d5:90:5f:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECRQ2LTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjNkYTZlOTljNjY2NTEzYTJjZWU1ZjBlMGQzYWI3NDVmMTY3ZGMzMB4XDTIyMDYy
NjAyMTAyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY4Yjc0OGU1ZTI3
MWFlNjdjNTdhM2NmOGIzNzlmNzUyMTQ2MjAxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhgZbkd4SN1h3XFtV4om0zAL9nFHzy3mlFZhKsljHByExYS
WsjPtIuNvl0tMtWxMDBkd6qpqQacQmiFYhUGBnmTjMfWkyRAro6HmWJ2+TQt+2oF
hJ8Nox8cpnpB/JFV4KUgk/E8JeBCuZsUNPgYHLVtFDaRLM17gCuH/gqP+AuwOGBe
YgvjiTF71S1MFfAq5DmflLhFRuyPp/meNr7k/20TfzHzJIkWfl+w1WAM9QeHfdW9
flVErwUIW8NnW7zoj7sz7jkytcgZ2kBnbt81g4a+Z2DM44XSclnVfoDGzTl0bLYb
K5olOzJ6kWSJsB6ODkPa/x7o9d2XBf30vOv5gm0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTfi3SOXica5nxXo8+LN591IUYgFzAfBgNVHSMEGDAWgBRLPabpnGZlE6LO
5fDg06t0XxZ9wzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N6Mm02WnhtWlJPaXp1WHc0Tk9yZEY4V2ZjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8x
LzM0dDBqbDRuR3VaOFY2UFBpemVmZFNGR0lCYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8xL1N6Mm02WnhtWlJP
aXp1WHc0Tk9yZEY4V2ZjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAZfYBDAPBAIAAjAJAwcBIAEH/AAC
MA0GCSqGSIb3DQEBCwUAA4IBAQBeybFQorA9yrrmI+aW1pb9vXpFUtr2r+frNFeT
StTU/xjYEZBUrpyS9xtiz1ooOTRGA0VJp45w6SazJE6xjuDn1xFH+XeAyfWSFCEh
QSXcslepNkMKUgrHnOHNWosiVBfSYbX0vX73FWUoT7fSvSB6OMnaZ22awvjXpPKv
EoJzAX0zyuYuxNIHT5zAQsbrQMd1WbrXRyWIT9+BnBmLb/beZdehp8vCVc2Lys4X
yutfaLF1fZHYKs9Z9Zr0EeAmlAKDAuIiJYld/8Wui+vzD5oYgUBJQFeCpr2nViSc
aQoD7xHbad56UPiIj0xOB+HGfwyT1QVZ8qtdBT605jzVkF8z
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:48:43 2025 by rpki-client