Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/NyKv-JIJkN1-4eHSDDrPK1OOw7s.roa
File: NyKv-JIJkN1-4eHSDDrPK1OOw7s.roa (raw, json)
Hash identifier: YgXdt4ym8bK7hh/52mcqSwUred5nJkSqRbMATVQRvFM=
Subject key identifier: 37:22:AF:F8:92:09:90:DD:7E:E1:E1:D2:0C:3A:CF:2B:53:8E:C3:BB
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 049E3D82
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/NyKv-JIJkN1-4eHSDDrPK1OOw7s.roa
Signing time: Tue 01 Mar 2022 02:55:56 +0000
ROA not before: Tue 01 Mar 2022 02:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77479298 (0x49e3d82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Mar 1 02:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3722aff8920990dd7ee1e1d20c3acf2b538ec3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:19:ae:67:16:8e:8d:4e:41:5d:b6:1a:31:
62:86:06:80:89:a8:47:c0:23:a1:2b:f3:a1:4a:5a:
11:b8:d0:10:c0:ba:19:a8:b5:2e:ba:e4:b9:ba:22:
6e:c2:82:16:0c:e7:df:02:a4:3c:97:0a:9f:7a:54:
80:9e:58:cd:28:ff:13:1e:fb:d4:ed:75:28:7d:da:
49:7c:6f:17:c6:b7:2e:5f:d4:3d:ba:a4:7e:b7:f0:
f6:06:4b:93:b6:e9:ab:d9:87:1f:fc:ae:28:97:4d:
61:3f:41:3b:51:99:cb:ef:26:53:8d:de:63:2d:74:
42:dc:91:f2:48:f5:6f:cb:a9:50:12:5b:e5:b7:39:
8d:6e:cb:e4:df:6d:03:c1:2d:4e:2b:02:70:e3:0c:
30:77:ff:e3:34:96:16:b2:0d:7c:4e:37:96:9c:7a:
65:03:63:72:9e:ba:47:6a:96:83:1d:90:92:4d:97:
31:13:0d:eb:15:eb:68:51:63:c0:a4:d7:d3:13:dd:
23:bd:0f:da:46:89:0c:de:33:05:b8:58:36:8f:0a:
33:ac:52:c0:c6:9c:45:00:83:b9:c7:ec:38:36:2a:
ce:2c:d4:0f:07:7f:3f:b5:b3:89:3c:f2:87:1c:55:
e1:f5:b7:91:8b:5d:88:f1:c5:6f:6b:96:59:62:33:
ca:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:22:AF:F8:92:09:90:DD:7E:E1:E1:D2:0C:3A:CF:2B:53:8E:C3:BB
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/NyKv-JIJkN1-4eHSDDrPK1OOw7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
3b:60:b4:84:5e:f7:a5:59:21:34:4e:04:c3:08:af:65:1d:cc:
8e:74:b6:fd:c3:a3:f3:74:db:c2:cb:72:b4:d6:d2:58:bd:5e:
a5:be:9c:d0:6c:62:30:3f:17:55:b3:ee:77:e0:58:d2:03:f5:
3d:b6:fc:f6:9c:c1:4e:1e:38:d6:f2:67:45:a2:f2:b7:18:67:
08:8b:a4:4a:a8:f7:1f:30:1d:ab:f3:a3:77:03:4d:1f:cd:cb:
a4:f9:92:8c:1f:69:b3:6a:c6:c2:ae:04:7f:77:6c:dc:72:85:
15:30:30:fc:71:f7:87:45:e3:1d:d8:fc:a5:e7:42:85:70:07:
85:38:c0:55:e0:fa:01:9e:96:28:ee:2b:47:5d:fa:ca:4d:53:
fc:a5:d1:9c:52:c1:f9:b3:0f:e3:27:a3:d1:5b:6c:dd:8a:78:
b8:5c:69:76:8c:17:25:11:31:9e:4b:e6:00:cc:ba:1c:80:10:
5f:e8:c6:4d:c6:f6:78:d5:2b:2b:59:fc:23:0a:fe:2e:3c:1e:
34:00:b1:b0:d3:05:26:c3:0d:9d:60:d3:f4:3f:57:37:e4:15:
35:69:94:99:97:39:82:29:6c:90:56:af:80:49:b4:94:14:bc:
d7:32:cc:3e:7e:d6:4d:e9:7a:f5:9a:fd:10:1f:b8:1b:e0:aa:
5b:43:db:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:54 2024 by rpki-client on console-ams.rpki-client.org