Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/S8azgh-fhkeNLYxNFwwwa0_Baqg.roa
File: S8azgh-fhkeNLYxNFwwwa0_Baqg.roa (raw, json)
Hash identifier: tLZEwQZDqvMo/iDp8iUft/xqY8F9vh5jCBBJqHEAokk=
Subject key identifier: 4B:C6:B3:82:1F:9F:86:47:8D:2D:8C:4D:17:0C:30:6B:4F:C1:6A:A8
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 072ED2F0
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/S8azgh-fhkeNLYxNFwwwa0_Baqg.roa
Signing time: Fri 20 May 2022 00:34:29 +0000
ROA not before: Fri 20 May 2022 00:34:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17660
IP address blocks: 151.216.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120509168 (0x72ed2f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 20 00:34:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bc6b3821f9f86478d2d8c4d170c306b4fc16aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d1:2c:92:af:fa:78:f7:be:24:db:5b:8d:60:
7a:92:f8:9c:1a:49:02:2d:c6:ad:fd:6d:9c:3c:30:
17:ce:f4:6f:2f:f0:67:9b:a9:9f:d7:84:e4:01:76:
6f:42:a4:f0:e0:cc:ff:5c:cf:5b:38:d2:4c:32:30:
cf:d3:42:b8:a7:20:57:f5:8d:a2:69:ba:f1:4f:a1:
2a:ea:6a:32:12:d9:86:3d:ac:04:06:42:e2:33:0f:
b0:3a:ab:b6:46:f3:25:ca:e7:b9:89:e0:85:b7:56:
c8:08:b2:6c:d1:03:e8:21:9d:1e:c1:c2:af:c4:f5:
bc:28:b9:fd:34:b1:29:76:8a:29:8d:e2:b4:be:3a:
14:55:db:d0:b1:4f:a7:8f:c0:11:76:f0:c1:6c:19:
49:dd:d8:7d:4e:1f:9e:68:e1:c6:d9:1e:9c:a7:80:
0c:d7:9e:71:e0:8f:c9:2c:0b:b8:bc:17:11:de:91:
dd:08:68:98:ea:5b:cd:05:1b:cf:be:72:77:e3:8f:
82:31:35:67:f7:2c:b4:05:88:58:e3:5d:4d:3b:d4:
46:75:bd:dd:3d:d4:82:c1:66:db:76:27:bf:7a:62:
a8:52:7d:85:c6:8d:09:f4:40:ad:8e:b7:9c:f9:ee:
6a:0b:4c:6f:be:b7:30:d4:b1:77:55:e7:ab:fe:83:
a7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C6:B3:82:1F:9F:86:47:8D:2D:8C:4D:17:0C:30:6B:4F:C1:6A:A8
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/S8azgh-fhkeNLYxNFwwwa0_Baqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6c:c5:97:9a:cf:14:41:a1:c5:9c:ff:04:4d:07:15:99:ed:
c3:08:74:cf:0a:0a:cf:b0:94:e0:80:f0:9a:aa:34:19:4b:2d:
95:7b:5f:63:11:d2:9c:31:1e:40:04:f8:ff:01:1b:f6:2a:17:
88:49:f1:ec:17:f1:38:bf:79:30:0d:09:12:2a:c2:7e:6d:4e:
82:9a:d4:0f:ca:61:da:ee:98:9f:ad:17:e9:ff:0a:5c:13:3a:
d6:79:3f:56:2e:2e:1a:f3:58:5b:a0:e0:03:0c:7d:49:4b:41:
d7:0b:40:1d:6b:2f:61:e9:92:1c:72:07:90:9c:bf:9f:d5:15:
d8:bc:ff:d9:d7:12:f0:5f:9d:51:09:16:c5:2a:fc:22:e8:0d:
0b:80:8b:04:85:a5:eb:72:3c:ff:29:a3:6e:3e:99:a2:7f:8d:
fd:1e:0b:07:c7:2f:95:a1:c5:ef:c5:b2:b2:9a:75:b0:aa:f2:
d7:5b:d8:76:b4:4a:ba:74:95:bd:40:86:37:57:5d:eb:e9:53:
f6:9a:49:af:cf:a0:2e:bb:49:5f:47:ed:f4:51:95:15:e4:46:
25:bf:67:b1:f1:ee:84:a5:80:81:b0:aa:fa:62:66:6a:9c:b6:
c2:3b:a4:01:a2:84:b5:c4:fe:84:1f:21:14:4f:86:6a:72:c6:
a2:e1:88:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:46 2023 by rpki-client on console-ams.rpki-client.org