Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HeyK5MeJt3js19aHoDl2OXwxOAM.roa
File: HeyK5MeJt3js19aHoDl2OXwxOAM.roa (raw, json)
Hash identifier: 8Q2xCAdrMtaIQruDOXqke+Ku4y6hclar7yWUG5XAPUc=
Subject key identifier: 1D:EC:8A:E4:C7:89:B7:78:EC:D7:D6:87:A0:39:76:39:7C:31:38:03
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 085B1C2C
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HeyK5MeJt3js19aHoDl2OXwxOAM.roa
Signing time: Sat 11 Jun 2022 16:17:02 +0000
ROA not before: Sat 11 Jun 2022 16:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140188716 (0x85b1c2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 11 16:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1dec8ae4c789b778ecd7d687a03976397c313803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:38:19:b9:94:e3:11:ab:2e:20:ff:a3:5c:
a7:fb:09:04:7d:a4:43:26:0b:c3:0b:29:3f:c3:3d:
2e:45:ae:78:54:c3:68:d5:e6:52:d5:79:c4:1c:e4:
07:05:02:4d:0b:80:52:8d:6e:ba:5e:86:be:84:61:
28:84:12:a5:c3:68:ec:9e:f9:44:8e:83:19:e1:96:
68:fd:0b:ad:70:bc:0d:a9:6a:3b:e9:dc:4f:e1:9e:
68:54:be:bd:e8:c3:04:71:c7:2b:e6:08:e7:be:eb:
0e:9f:f4:ec:f4:3f:22:95:ad:05:08:a2:c6:95:cc:
8e:1e:9a:1e:72:85:0f:b8:6b:9e:45:48:0a:ed:bf:
02:eb:b1:73:0a:8c:44:02:d2:a7:65:06:4c:64:e9:
98:02:d8:47:f4:d5:ed:4b:71:06:7c:0b:90:33:e4:
3f:3e:b0:0d:e1:86:5d:6d:6b:3c:ed:82:1f:84:4c:
02:d2:42:a9:a8:d1:84:47:38:d9:f7:a3:00:ae:ca:
e5:d2:de:1c:c5:c2:e0:8d:dc:78:6d:b2:0d:4f:e4:
ae:b0:5d:48:db:54:83:24:3b:14:39:f5:de:96:28:
db:54:33:57:e1:4a:f4:14:80:4b:2a:7c:45:70:52:
41:df:5b:20:50:a0:73:cc:16:12:cc:84:58:44:1b:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EC:8A:E4:C7:89:B7:78:EC:D7:D6:87:A0:39:76:39:7C:31:38:03
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/HeyK5MeJt3js19aHoDl2OXwxOAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
29:c4:cb:54:5f:71:69:f3:39:da:32:2a:0d:8b:41:c5:f0:19:
4c:61:52:d0:71:e4:49:89:73:ca:ac:81:26:e4:fd:d4:5f:bb:
84:f9:7f:88:7d:ac:3e:ab:66:27:6d:3b:ab:bd:c2:a4:7f:11:
c2:fa:3f:14:b3:a7:fb:41:07:c2:be:68:f0:03:a8:77:b4:7d:
b4:18:ff:70:62:d7:28:52:cd:fd:17:7d:28:7f:55:19:bf:ed:
f6:ed:34:02:44:c9:10:04:e7:e4:28:16:fb:30:38:cb:fd:ce:
3d:e3:25:1b:b9:60:4b:99:15:23:97:73:cc:46:91:4e:a9:6b:
2b:d5:fd:4a:be:3c:69:95:9a:e1:35:21:f8:0a:46:9f:0e:0f:
0c:41:ae:cc:ec:51:c8:b3:1d:43:4f:c2:cb:00:df:f3:89:ef:
71:8f:55:90:89:9c:f4:31:e9:e7:e8:da:c3:16:ed:fb:ab:13:
ba:83:26:22:bd:2b:ab:de:38:03:16:c9:4c:90:46:4e:73:8c:
49:41:b7:71:aa:7d:ec:3d:fe:93:20:0b:eb:6d:4b:3f:76:f4:
f3:00:1f:33:ca:a6:df:80:89:a4:9d:e2:90:3c:e0:4b:c5:6a:
2d:63:1c:19:14:14:0f:60:e8:63:ef:fe:22:42:aa:a4:01:47:
90:ec:13:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:46 2023 by rpki-client on console-ams.rpki-client.org