Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/O8sKDOWIIDmhzFa1gEkPHCLyIwg.roa
File: O8sKDOWIIDmhzFa1gEkPHCLyIwg.roa (raw, json)
Hash identifier: QOkOE0NHbcT8ole8ZpkQgVTpmq0GV9Z8AGRssVIIQVg=
Subject key identifier: 3B:CB:0A:0C:E5:88:20:39:A1:CC:56:B5:80:49:0F:1C:22:F2:23:08
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 069F9551
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/O8sKDOWIIDmhzFa1gEkPHCLyIwg.roa
Signing time: Mon 09 May 2022 00:28:09 +0000
ROA not before: Mon 09 May 2022 00:28:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111121745 (0x69f9551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 9 00:28:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bcb0a0ce5882039a1cc56b580490f1c22f22308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:a2:a1:39:89:03:d8:10:3c:1e:d9:79:b4:
9e:93:d9:0b:a4:f3:c4:d0:5d:cc:a0:00:ee:f7:d4:
9b:61:ad:51:a0:7d:9f:26:f3:04:3d:04:39:83:1e:
8f:0b:fe:3d:df:79:3a:66:f2:bd:97:e3:df:b7:79:
e4:4f:e4:3c:f8:76:f9:b8:a3:d2:b4:52:56:25:fd:
de:9c:87:fc:f0:33:bc:33:c0:c9:b4:cf:38:c1:8e:
e2:b6:13:52:8c:e5:76:ae:3a:67:f8:43:53:b2:9d:
e8:75:a8:25:69:57:f4:96:af:61:63:d4:9e:10:f2:
06:9c:71:d3:6d:7b:fc:ea:ad:be:11:0b:6c:81:9a:
34:10:75:07:76:2d:4c:04:af:61:d2:bb:a1:f3:c5:
1a:b4:cc:44:d3:45:45:a7:38:7b:f1:15:08:46:07:
44:a7:bc:98:ac:59:de:94:d5:1c:31:c3:c6:e1:96:
5b:f7:84:5f:25:af:ea:a6:10:c5:47:85:bb:c1:05:
22:1c:4f:75:38:1e:73:f8:6d:92:f4:ff:be:4b:aa:
c1:14:e7:80:a0:ac:3d:c8:1f:63:da:1e:a3:7e:af:
18:47:c6:d0:a2:2e:6f:a1:cd:67:cc:96:17:66:33:
ff:66:f0:3e:30:b1:dd:08:ad:a3:b5:87:1f:b2:db:
c2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CB:0A:0C:E5:88:20:39:A1:CC:56:B5:80:49:0F:1C:22:F2:23:08
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/O8sKDOWIIDmhzFa1gEkPHCLyIwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
46:06:9e:03:e5:7d:aa:03:6e:f8:27:73:b8:8a:54:2e:bd:5f:
b4:f4:8c:87:d0:7f:3f:0c:52:48:fb:fe:ef:b7:bd:e2:c0:df:
8d:2b:81:5c:1d:90:85:91:d4:eb:0f:4c:05:0e:af:b3:45:eb:
dc:fc:04:8d:20:1a:83:8c:7b:d1:43:e7:6b:4c:14:c6:11:83:
a9:0a:b2:03:75:fb:9b:72:dd:25:fa:26:17:b1:b5:64:e4:5b:
22:5e:d1:7a:32:6d:39:36:00:8b:96:d7:50:fa:44:7c:5d:c1:
8a:73:5b:98:d9:89:dd:09:5c:c0:dd:d5:67:10:06:58:cb:04:
bb:f6:2b:74:45:77:84:e1:4e:86:41:6b:e2:97:63:76:fd:6b:
f5:20:52:e3:ea:d7:78:8c:0f:a9:8b:11:42:71:d8:60:de:3f:
b2:49:16:fe:47:8e:c2:96:88:d3:26:62:db:74:a3:9a:26:6f:
bd:64:8e:e6:6e:13:96:8e:1f:6f:69:af:e3:d6:c9:26:ed:13:
54:d9:a0:11:37:e4:ee:8e:0c:f6:53:49:59:7c:f1:7b:4d:ed:
47:0b:e0:82:c2:a0:58:fe:1b:69:7c:fb:ec:4a:91:f3:12:0c:
1b:49:40:7c:51:cb:dd:1a:d0:04:04:76:08:2f:ba:cd:f4:e5:
97:2b:f2:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:40 2025 by rpki-client