Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/OJCjL5f8BregTw8bfbX2S8dDIHI.roa
File: OJCjL5f8BregTw8bfbX2S8dDIHI.roa (raw, json)
Hash identifier: wXAlJKXeP4GGaIHVJ3r5IwDzWlCrw+nijm553RYTEqY=
Subject key identifier: 38:90:A3:2F:97:FC:06:B7:A0:4F:0F:1B:7D:B5:F6:4B:C7:43:20:72
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 076BBDB1
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/OJCjL5f8BregTw8bfbX2S8dDIHI.roa
Signing time: Tue 24 May 2022 04:32:28 +0000
ROA not before: Tue 24 May 2022 04:32:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55722
IP address blocks: 151.216.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124501425 (0x76bbdb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 24 04:32:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3890a32f97fc06b7a04f0f1b7db5f64bc7432072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:19:9a:96:f8:0e:7d:dc:48:e5:7e:4c:e8:57:
b8:8f:35:8f:1f:fb:ae:dd:bd:38:db:fd:a8:91:96:
6d:af:be:6a:f6:11:3b:ae:d2:9b:b5:ba:88:68:ab:
26:2d:b3:e4:9f:b4:66:96:1a:61:fe:cc:ad:32:7e:
3f:8e:1e:67:9b:aa:c5:4f:fb:34:87:97:c7:f0:e9:
b8:f6:6a:eb:e6:33:75:e1:24:e9:f2:8d:e0:99:6f:
8f:ed:46:cf:5f:65:5e:94:80:c3:a3:37:af:cc:69:
f6:3d:86:53:02:aa:b4:61:78:b6:69:db:9b:87:4c:
1c:54:52:e7:e6:04:90:12:ec:65:d4:04:19:89:5d:
be:d8:7d:19:ae:68:db:b6:8f:53:20:8f:e3:f9:81:
30:4d:1c:50:1b:5e:77:b7:79:94:5e:d9:68:aa:f8:
c5:76:28:50:70:4c:41:68:dc:14:5b:c0:74:b3:8f:
59:b7:c7:ae:e1:a4:52:23:cd:ca:27:65:3f:b7:12:
c5:91:7b:6f:2e:75:ef:2b:0b:91:9c:e0:14:68:72:
9b:e8:c5:95:f2:23:a8:17:b6:bb:7a:9a:75:da:0a:
e1:80:9a:15:33:fa:d6:d0:f4:11:e7:a4:28:9d:60:
68:5f:8b:35:46:d5:8d:63:ca:d1:5e:4b:9a:2a:14:
03:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:90:A3:2F:97:FC:06:B7:A0:4F:0F:1B:7D:B5:F6:4B:C7:43:20:72
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/OJCjL5f8BregTw8bfbX2S8dDIHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.33.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:0f:8c:d6:5b:0c:26:f8:b1:20:87:de:ae:e9:3c:00:5f:91:
74:7e:8f:df:59:95:8d:b1:db:5c:44:40:bd:66:7a:da:b1:f7:
c0:b2:a1:9b:27:32:33:41:08:22:d7:ce:af:9e:d0:39:57:c7:
79:14:9a:68:f8:0c:67:e8:7a:e1:67:db:9f:85:08:b0:be:4f:
ae:94:60:c7:f1:32:5a:9f:8e:7d:5c:95:fa:b1:97:70:7e:34:
c1:b8:98:d6:8c:f3:14:95:53:d0:5a:36:f5:05:8d:37:f0:6e:
8d:88:05:c1:e5:03:bb:ad:d0:99:fd:a8:27:f0:03:88:29:b9:
d2:99:ba:c7:f6:fc:fe:66:48:e8:1f:84:a9:06:5b:ea:7d:ae:
f4:5f:1f:b2:85:0b:7e:8d:ee:2f:cf:be:da:06:c3:c4:35:dc:
8e:c3:c4:bd:e5:85:25:ba:28:06:ec:bb:95:14:06:16:f1:6f:
22:62:87:5c:f7:8b:8e:1c:1d:7e:8f:02:9b:c6:f2:1d:c0:38:
e5:a3:f0:ca:fa:fe:d8:4d:69:d5:06:7c:55:2d:52:9b:21:0c:
16:df:09:89:75:09:50:c0:3f:5b:9e:43:f7:6f:f3:d4:ce:35:
4c:83:11:03:99:c5:26:21:c7:b7:5a:b0:cf:6a:81:fd:8a:ae:
0e:65:03:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:12 2025 by rpki-client