Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/DRlF7pyZjCa9v9HxheDmiAUqsGg.roa
File: DRlF7pyZjCa9v9HxheDmiAUqsGg.roa (raw, json)
Hash identifier: iSie5oH/KhZwShHgFyJrPcNA64Vw1qa2oDadoH4dZf4=
Subject key identifier: 0D:19:45:EE:9C:99:8C:26:BD:BF:D1:F1:85:E0:E6:88:05:2A:B0:68
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 045BFF24
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/DRlF7pyZjCa9v9HxheDmiAUqsGg.roa
Signing time: Sun 20 Feb 2022 13:05:42 +0000
ROA not before: Sun 20 Feb 2022 13:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73137956 (0x45bff24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Feb 20 13:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d1945ee9c998c26bdbfd1f185e0e688052ab068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:b9:4a:20:03:6e:b6:cf:bc:8d:16:31:e2:
51:83:91:2b:cf:14:6f:2e:9c:b0:a7:a1:54:67:f8:
ed:30:be:4c:a1:6f:c2:b1:86:7c:53:47:80:aa:77:
13:59:6f:bc:d0:18:79:3f:74:f4:b4:c0:14:c1:ed:
e9:9a:3e:9d:fa:5e:0c:bc:a6:71:89:8f:33:7f:14:
94:94:9d:c4:d0:16:70:27:e0:78:90:31:ac:99:96:
61:2b:1d:14:63:d5:5e:6a:31:78:38:81:8f:fc:76:
a1:b8:35:ce:7f:ca:57:a9:12:36:b7:5c:38:17:7f:
9a:2d:d1:24:38:23:c3:19:6f:11:9b:e7:c6:ad:45:
58:aa:be:a4:85:9a:f2:02:45:f7:eb:67:0a:4c:75:
45:6c:5a:42:a8:87:67:a4:94:d1:82:62:45:57:2f:
4a:dc:69:78:4b:25:0a:aa:ee:2f:e5:0e:5a:a2:c0:
db:67:e9:7b:39:ff:91:49:6d:fd:f0:29:b0:d7:f3:
c2:2a:6b:8c:7e:26:e7:01:67:8c:e7:75:a7:fa:48:
f0:16:cf:69:c1:d3:e5:09:44:3f:a1:b8:8a:cd:94:
87:6c:82:4c:7e:7c:a2:b9:07:53:16:d6:81:c4:5f:
0e:e0:5a:00:6d:b6:0a:da:9f:7f:fa:74:81:40:fb:
2a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:19:45:EE:9C:99:8C:26:BD:BF:D1:F1:85:E0:E6:88:05:2A:B0:68
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/DRlF7pyZjCa9v9HxheDmiAUqsGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
08:a2:13:7d:fe:d5:51:dc:e5:9c:43:90:a1:21:4d:7d:2f:83:
8e:c7:72:3b:14:f7:27:3e:36:2c:91:6f:73:34:56:37:b2:e6:
7c:7c:b1:2a:bf:be:33:da:9d:ca:1f:73:33:ca:80:99:67:4c:
21:15:52:c7:3f:f4:52:ca:6b:48:f4:a6:be:cf:71:29:32:2f:
16:d2:0b:2b:07:9f:c3:5a:a7:f3:40:67:61:9b:89:59:da:a1:
db:59:31:de:9c:ed:51:d0:f5:5f:4a:63:89:65:a7:9d:73:d4:
d0:8a:d3:12:2d:fb:3e:a7:ce:85:36:2e:f9:17:57:71:56:d0:
73:0a:cb:98:fd:76:3f:8c:8c:04:f3:90:07:f4:6d:11:26:29:
7a:49:97:9a:79:03:5b:03:71:6f:61:b8:17:54:c7:5c:9f:6a:
1f:f6:1f:6a:bf:5c:2c:2e:39:4e:7d:10:f9:b7:37:76:55:12:
98:d6:3e:10:52:92:f2:64:fe:ec:1a:23:ab:ec:1d:1f:a6:57:
af:0c:be:3b:ee:12:a3:f3:07:0f:2e:96:4a:3e:66:1b:35:1c:
13:4d:11:1d:09:68:90:32:1e:e9:f2:3d:14:f1:ca:a1:90:df:
72:1e:b6:9d:b2:6c:b6:3b:a2:d0:2d:dc:3e:3b:f2:6d:db:53:
23:3f:1f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:25 2025 by rpki-client