Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/40tt6qvmvR0VXJLYWaQe70UUuFc.roa
File: 40tt6qvmvR0VXJLYWaQe70UUuFc.roa (raw, json)
Hash identifier: v1CFOysCpfNTvIwZHm0vuTt/S5QLogTH7hbOpMD9104=
Subject key identifier: E3:4B:6D:EA:AB:E6:BD:1D:15:5C:92:D8:59:A4:1E:EF:45:14:B8:57
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0181D1984E3AADC9DDCB6871FEE0A405FFB4
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/40tt6qvmvR0VXJLYWaQe70UUuFc.roa
Signing time: Wed 06 Jul 2022 03:40:28 +0000
ROA not before: Wed 06 Jul 2022 03:40:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d1:98:4e:3a:ad:c9:dd:cb:68:71:fe:e0:a4:05:ff:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jul 6 03:40:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e34b6deaabe6bd1d155c92d859a41eef4514b857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7b:bb:5d:73:10:5b:8b:d2:e0:25:03:e4:3e:
ae:55:32:21:61:bf:4d:f4:fe:8b:bd:ad:7f:26:75:
c9:ab:05:ce:ab:95:77:99:73:fe:9c:6d:19:49:9a:
d7:e9:eb:e2:98:1b:b3:20:40:2a:d0:5e:35:1a:a6:
6f:f5:5b:cd:81:1b:ec:70:b4:5f:85:b0:5f:32:d1:
21:d5:5b:9c:67:b7:71:bd:5c:63:d0:3d:25:2f:4c:
f0:09:ca:7d:dd:05:1b:1c:17:9e:ca:fe:a4:ed:e1:
99:6c:14:46:c4:a6:c4:42:8d:dd:bf:7f:02:c3:8b:
db:b8:4f:24:c2:07:88:87:e9:89:25:11:05:6d:59:
bd:e3:8d:59:ce:7a:86:83:46:02:86:b0:1c:1b:48:
d4:88:d0:d1:57:85:0e:31:d2:60:3b:b5:7d:83:e3:
e1:58:9c:5a:c2:7f:78:4a:a6:f2:26:40:a9:0a:e5:
06:84:bd:7f:a2:a3:0d:27:e7:fa:12:0a:b7:6d:89:
e8:0f:92:c2:7f:89:1d:24:f3:b5:0f:2d:60:d6:52:
06:41:01:2e:d0:b9:18:18:0e:a4:6b:77:f0:70:aa:
f8:b4:89:a9:74:02:ce:e6:97:8a:30:0d:31:5d:37:
18:f2:2e:a3:54:de:b5:31:e5:d3:31:88:a9:d7:f8:
62:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4B:6D:EA:AB:E6:BD:1D:15:5C:92:D8:59:A4:1E:EF:45:14:B8:57
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/40tt6qvmvR0VXJLYWaQe70UUuFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:03:39:aa:b3:aa:9c:84:4d:66:78:77:8f:a1:95:91:72:b2:
64:c0:cd:a4:c6:b9:08:83:33:95:39:0d:2b:00:52:52:d3:3a:
7b:a5:e4:78:66:c7:c6:b5:3b:b6:7f:18:13:e5:94:51:44:15:
b0:ca:da:91:51:b7:a5:8e:79:c1:ae:ff:bd:9b:57:e3:ff:bc:
2a:15:e0:3e:97:61:86:dd:bc:03:0d:fb:3c:a2:73:d2:1e:74:
40:1c:0c:6f:41:d2:b8:a9:1e:7a:7a:1d:ea:8b:10:9c:20:4d:
f0:b2:f8:97:bc:c7:98:32:97:82:92:11:17:95:d9:42:93:b0:
5d:e5:7e:b1:f8:bf:6e:bf:21:75:8c:32:91:43:1b:d0:6b:a2:
66:a0:23:cf:16:bb:4f:0d:11:5e:f5:81:22:1a:cf:4c:e2:3d:
e9:18:0c:ca:23:cb:09:7e:0b:a8:ec:5e:82:7b:f4:cb:f6:dd:
ce:88:bc:ed:d3:79:82:70:48:d0:d0:dc:7c:f1:a3:eb:3b:a2:
47:25:82:16:0d:30:27:ed:3f:74:5b:76:f6:f1:cb:af:7c:5e:
55:a1:ba:6c:b1:72:16:9c:68:62:64:39:cd:d2:09:91:da:c6:
04:fc:84:71:da:cf:b2:0b:0b:a0:c2:33:df:b8:99:e7:df:17:
1f:a0:d1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:39:14 2025 by rpki-client