Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Hc3quh17EktU91ZilgqZLtI4GsE.roa
File: Hc3quh17EktU91ZilgqZLtI4GsE.roa (raw, json)
Hash identifier: zYhB0AEIR2kRVgdNWxa/Vs4jdhZuBWcX10My8totaT4=
Subject key identifier: 1D:CD:EA:BA:1D:7B:12:4B:54:F7:56:62:96:0A:99:2E:D2:38:1A:C1
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0181E6488D8751705EC7F8CAC5FDEA7213DF
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Hc3quh17EktU91ZilgqZLtI4GsE.roa
Signing time: Sun 10 Jul 2022 04:05:23 +0000
ROA not before: Sun 10 Jul 2022 04:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e6:48:8d:87:51:70:5e:c7:f8:ca:c5:fd:ea:72:13:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jul 10 04:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dcdeaba1d7b124b54f75662960a992ed2381ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:26:7e:64:f7:a3:9f:ca:12:44:7c:89:5a:7e:
b4:18:0d:89:73:dd:69:2f:6f:f2:ba:77:dc:aa:43:
90:08:2c:8d:e2:67:6e:a6:bf:6c:65:a9:a3:9d:4a:
fd:4e:45:10:45:0c:ab:d1:f1:ff:86:c5:af:2f:43:
89:34:05:f7:3e:52:46:c1:fb:4c:74:48:fc:6b:47:
05:22:fe:75:b4:de:ab:32:fd:9d:27:cb:52:5e:63:
2d:67:99:99:2b:27:39:a7:91:36:bc:b1:c8:95:e3:
ed:aa:8c:23:dd:81:5f:ff:47:41:41:21:05:f1:85:
10:a8:42:7b:e6:ca:84:b7:b6:71:ee:02:0a:d6:4e:
5a:c7:e9:39:ef:96:84:09:f7:46:fc:ee:6c:6f:66:
55:a0:45:c0:1d:f5:90:78:05:4d:f2:6d:8e:ad:54:
3b:91:e2:e8:c9:fc:33:01:cd:3d:6e:64:ce:1c:e6:
57:d8:2a:15:9d:57:24:96:ad:c1:b9:57:1a:47:08:
ae:bd:64:ca:66:ac:94:10:95:ad:f7:65:4e:a6:af:
6e:93:a4:76:bf:76:92:79:cf:51:23:08:56:e1:43:
90:bc:a6:d8:60:ed:b6:a4:18:08:18:f3:94:4d:02:
42:73:ca:17:74:37:5e:c1:4b:a4:0b:27:9a:c8:b7:
38:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CD:EA:BA:1D:7B:12:4B:54:F7:56:62:96:0A:99:2E:D2:38:1A:C1
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Hc3quh17EktU91ZilgqZLtI4GsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:a5:63:47:96:2a:25:07:19:df:d0:1a:24:a4:2f:fb:0c:e4:
46:dd:f9:3e:ca:4d:3b:2d:f0:41:45:93:f5:a9:15:2b:f0:ce:
4c:e9:98:39:c7:c7:74:6a:2d:38:cf:0f:10:61:f4:6a:9e:32:
20:a4:6a:15:46:7b:60:b9:2e:fa:81:de:4a:fe:dd:e0:66:a0:
f3:20:f5:d6:85:2e:fc:4a:d9:b0:37:b9:71:1f:5f:c1:1e:10:
72:7f:30:2b:d3:1a:71:61:fd:12:9e:2f:e4:57:ec:06:db:7f:
57:8c:c6:71:71:a9:f5:09:23:df:96:8f:41:64:0c:63:8c:dc:
2c:d0:36:13:43:dc:c5:4c:93:96:23:e9:74:60:af:c4:d5:f9:
ab:c9:38:43:0b:6a:d7:79:12:93:0e:ab:9c:87:17:e5:ff:cc:
00:e4:89:da:1a:5c:f2:ff:83:7b:99:2f:ce:45:36:25:48:28:
bb:c3:d2:13:54:0d:be:40:d8:37:7e:58:b3:fe:a8:58:8c:59:
55:69:62:95:b2:d2:f5:7d:28:5c:8c:c2:18:ba:21:72:c7:15:
e5:d4:ac:98:19:de:ff:28:42:ad:e8:9f:08:3e:b1:cb:ef:59:
86:8d:9c:98:f8:64:4a:17:06:d2:a2:3f:86:b9:16:3e:2e:63:
61:d8:1f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:38 2025 by rpki-client