Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/CNFM1efXDQS227l0w5znD8DsEtw.roa
File: CNFM1efXDQS227l0w5znD8DsEtw.roa (raw, json)
Hash identifier: q3zdT/6kU5M0CuEj+9n1j5DafzSCx95LSJ6XwgKRlN4=
Subject key identifier: 08:D1:4C:D5:E7:D7:0D:04:B6:DB:B9:74:C3:9C:E7:0F:C0:EC:12:DC
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 079F3D0A
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/CNFM1efXDQS227l0w5znD8DsEtw.roa
Signing time: Sat 28 May 2022 03:14:13 +0000
ROA not before: Sat 28 May 2022 03:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17660
IP address blocks: 151.216.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127876362 (0x79f3d0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 28 03:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08d14cd5e7d70d04b6dbb974c39ce70fc0ec12dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:eb:ee:38:c5:41:e6:3f:02:74:a7:2f:ce:
86:fb:92:3a:6c:e5:e9:f0:ef:61:21:47:cc:f4:d2:
17:61:96:b4:5a:f2:b1:72:2b:3f:96:1e:d4:07:29:
05:a0:62:c4:8e:cc:06:90:96:d4:03:cf:19:8d:e8:
80:c5:b8:6d:06:3a:f3:64:86:3b:18:67:c0:9e:3d:
6f:24:de:4f:78:f8:57:f1:e8:41:dc:c9:ca:50:09:
6d:73:f8:35:03:a3:5f:bc:2e:94:d4:3b:7f:26:1f:
3c:60:db:2d:65:82:4d:f1:93:0a:ee:37:81:b4:e0:
08:c6:f0:b3:9d:37:bf:03:02:94:58:b7:d8:c2:66:
43:4c:65:eb:fe:69:83:43:74:05:43:b9:ea:0a:98:
4c:97:4a:28:1f:56:2b:a8:f6:65:d8:08:f0:6c:6c:
a1:ad:52:0e:2c:fc:8a:c2:4b:35:2a:ee:38:c0:a7:
fb:a6:87:1e:2a:30:09:8a:36:4a:59:b1:9e:67:c7:
c5:84:5c:96:61:f7:2a:92:19:1e:f5:bb:a1:b5:d2:
63:9e:08:d1:ee:a5:2e:83:fc:25:c8:7d:43:9d:dd:
35:be:90:5e:9b:32:19:8c:64:08:38:fb:32:3c:5c:
38:57:5c:fc:ba:c6:6f:90:ab:cc:e9:f2:e8:34:9e:
86:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D1:4C:D5:E7:D7:0D:04:B6:DB:B9:74:C3:9C:E7:0F:C0:EC:12:DC
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/CNFM1efXDQS227l0w5znD8DsEtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
45:88:ba:38:a0:2b:3d:77:1e:7d:08:64:2f:f0:a2:e7:d9:38:
72:e6:05:59:06:77:50:32:5c:1f:93:e1:22:8e:b1:76:f0:a8:
3c:5e:05:e2:c8:68:ea:6d:36:08:26:9b:4b:5a:b1:de:6a:fe:
83:ff:ad:73:f0:a3:5f:0c:74:74:b2:50:aa:cf:70:ad:a2:ac:
46:04:15:a8:64:87:c4:fb:91:d8:1c:a9:a0:76:88:32:b5:31:
3f:6a:9b:1a:e8:76:f3:27:e8:a7:22:cd:f5:a5:6e:94:14:3b:
11:74:63:e0:0c:6d:0f:ed:d8:d7:b0:5b:11:e3:81:38:94:5b:
74:a7:74:d7:33:35:31:bf:67:13:4d:34:5e:8e:0c:e4:c1:95:
f9:59:99:65:9d:fa:ac:41:0a:0c:ae:83:b4:9d:9c:2b:22:44:
87:7e:98:15:2f:40:23:bc:97:91:4d:04:07:c7:ed:90:60:41:
ae:21:34:78:06:a4:72:a8:0d:6a:bc:6e:33:b0:5d:0d:6d:15:
a2:69:be:91:f9:ab:f3:30:5f:e9:ec:b4:0f:a4:b7:46:cd:db:
cc:90:a5:2d:8d:82:4b:60:e5:ab:87:c5:a3:6c:c1:69:be:9f:
72:9a:09:ce:85:23:c5:37:2f:6a:f5:50:0c:04:ad:f1:b6:43:
4c:0b:40:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:46 2023 by rpki-client on console-ams.rpki-client.org