Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HTzhdkbPwsWNhRvCfVQs0J4BxKI.roa
File: HTzhdkbPwsWNhRvCfVQs0J4BxKI.roa (raw, json)
Hash identifier: Zhsem0oYtPGWw12z02IUYuy2DcSPZXYnhL04+SzS2PM=
Subject key identifier: 1D:3C:E1:76:46:CF:C2:C5:8D:85:1B:C2:7D:54:2C:D0:9E:01:C4:A2
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0791BEC3
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HTzhdkbPwsWNhRvCfVQs0J4BxKI.roa
Signing time: Fri 27 May 2022 03:16:13 +0000
ROA not before: Fri 27 May 2022 03:16:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126992067 (0x791bec3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 27 03:16:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d3ce17646cfc2c58d851bc27d542cd09e01c4a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cf:0b:a7:a3:8a:16:7d:d2:f9:a2:21:b8:5a:
60:f3:98:bc:74:02:cf:30:d2:eb:d4:59:65:89:bd:
5c:37:5e:fa:42:5e:e4:c0:dc:8f:ef:29:93:17:10:
e5:82:73:0d:5f:d0:68:ad:02:bf:4b:88:ee:fa:55:
d6:d8:be:84:fa:50:66:69:e4:0a:8f:a0:cb:04:d4:
b5:9d:3e:bb:5a:3b:9e:af:bb:cd:8d:30:77:75:3b:
9b:a4:cc:94:66:67:d8:75:45:c8:8c:14:5d:e3:1a:
b2:47:29:ae:86:da:8e:61:60:15:ad:94:69:c5:26:
57:53:40:4e:d8:96:41:1b:df:6d:e0:f8:48:df:2b:
b1:3a:e5:d4:7a:13:68:d0:dd:9a:a0:d0:6e:a0:a7:
ee:d0:c1:18:32:76:4b:ff:b2:aa:c6:4b:d9:84:51:
7e:ea:9b:57:c9:f6:f0:bb:77:ce:96:20:93:d4:fe:
57:0e:e6:4b:c6:c5:90:3e:d1:77:57:8c:39:7f:cf:
4e:15:03:56:71:3c:9b:5f:87:d5:c8:27:f9:a1:7a:
94:81:c5:7a:67:ca:bd:a6:e3:56:1c:49:60:df:63:
d5:4d:98:0c:0f:68:f2:3e:b8:4f:bd:ad:7f:1a:cb:
6f:8b:17:08:33:44:d3:a7:e9:d3:46:76:ef:76:8c:
25:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3C:E1:76:46:CF:C2:C5:8D:85:1B:C2:7D:54:2C:D0:9E:01:C4:A2
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HTzhdkbPwsWNhRvCfVQs0J4BxKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ba:77:5f:2f:8c:5a:3f:60:7b:d5:2e:8c:a8:83:58:a7:73:
5d:46:66:17:a3:2f:20:c4:bf:bb:f9:be:d8:16:ba:90:9b:79:
30:9f:9a:c7:12:96:d4:12:5e:b3:39:f4:11:76:40:e1:4c:81:
4f:a3:0f:b5:d1:83:ed:a5:9e:82:f6:db:b7:a6:36:26:7f:f5:
aa:e4:f4:c9:32:32:1c:5e:71:55:9a:6a:d1:a4:68:c3:9c:f1:
34:49:95:17:cb:e0:11:f3:1a:0a:54:7d:1c:1b:ab:37:48:52:
d9:66:6f:43:36:7d:ae:3c:fa:7c:65:a0:22:06:d4:1a:12:14:
cd:21:c4:cb:a6:3a:47:5d:03:b7:e2:cb:19:e8:7c:48:4d:58:
01:28:44:98:71:0e:02:9c:36:7e:9d:17:e9:38:7a:af:b3:28:
dc:29:fc:5e:c1:7d:5e:d6:b7:12:74:4b:0b:d6:1b:1b:f0:f4:
d3:9f:e4:a7:d6:b0:62:8a:f4:4d:a9:61:88:bb:d1:1f:4f:82:
76:1c:9b:53:e1:58:1e:fc:0c:3b:67:97:b8:52:11:4e:d4:22:
4e:d8:b5:f8:f4:22:08:aa:c1:9e:ff:33:be:1b:5d:a8:71:90:
1c:5b:d6:6c:49:28:af:07:31:56:2c:44:ea:9d:a0:f1:73:17:
b1:c4:c3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:46 2023 by rpki-client on console-ams.rpki-client.org