Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/TcrH08vsKNf4NhOZGuHAQQ-2aX8.roa
File: TcrH08vsKNf4NhOZGuHAQQ-2aX8.roa (raw, json)
Hash identifier: CccY4hPyO07LxG/Cqeyv4ZhQ0JxvjvKosfq9xj6uKVc=
Subject key identifier: 4D:CA:C7:D3:CB:EC:28:D7:F8:36:13:99:1A:E1:C0:41:0F:B6:69:7F
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 07D45039
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/TcrH08vsKNf4NhOZGuHAQQ-2aX8.roa
Signing time: Wed 01 Jun 2022 05:28:09 +0000
ROA not before: Wed 01 Jun 2022 05:28:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131354681 (0x7d45039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 1 05:28:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dcac7d3cbec28d7f83613991ae1c0410fb6697f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b2:7a:ac:48:8d:2d:e9:c2:0e:39:0d:c7:7b:
ce:d6:34:a3:18:2f:4d:32:a8:7e:ab:0c:84:36:0a:
62:ca:5f:8e:f0:5f:a9:d7:da:ac:b8:64:0a:f6:16:
1c:24:25:b9:01:c9:bf:ec:32:b5:7c:ed:9c:22:7a:
ea:d2:b6:69:b5:6c:81:99:9d:ee:75:d1:64:61:47:
8c:e6:b2:5a:59:ef:29:1f:88:b1:60:50:21:00:fd:
de:ee:86:c4:fb:ca:59:22:3d:54:25:c3:98:e5:e3:
5f:f9:f4:1d:fd:7d:fc:2f:52:d1:f0:8f:ee:92:0c:
08:8b:7a:09:a6:97:2c:72:3d:3c:f4:39:1d:64:a8:
4e:5e:04:7b:96:a1:b9:16:19:e6:85:90:0b:96:4e:
84:5c:4b:35:4a:38:b5:2f:8d:0c:bb:e8:90:20:a9:
c9:5c:b4:14:c3:e2:27:68:aa:37:d1:99:8f:74:48:
e0:e4:e2:93:63:a7:00:37:c9:38:ad:7e:f5:78:05:
1f:39:8e:6b:c7:88:eb:69:f7:a7:c6:f0:af:b9:fa:
63:5b:3e:d4:5d:6d:38:f9:e4:73:fd:3a:d7:38:cb:
62:c9:ac:95:8b:54:e2:f2:0c:a4:d1:60:5c:af:ef:
bf:4c:2d:35:9e:53:cb:4f:f9:7b:e8:e0:0a:73:f5:
6d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CA:C7:D3:CB:EC:28:D7:F8:36:13:99:1A:E1:C0:41:0F:B6:69:7F
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/TcrH08vsKNf4NhOZGuHAQQ-2aX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ce:2a:f6:c1:aa:2d:c1:7f:72:1b:a5:ef:3a:71:d8:bf:9f:
68:fe:75:41:a5:c4:f5:cc:4b:9d:8d:e0:bc:39:9b:c3:53:ec:
30:57:7f:8a:cf:84:fc:fa:ac:8d:c3:a5:78:1a:79:f5:fa:96:
74:8b:5a:55:9f:e4:d8:29:4b:09:72:61:d8:54:a3:82:82:d4:
9e:af:ec:38:9a:80:af:6f:2c:3f:e9:52:52:49:fa:e1:43:ef:
f9:78:20:f5:b8:b2:f1:66:ae:49:41:12:a8:f3:e0:d6:cb:fc:
14:63:ac:4f:92:c4:d1:0f:bc:d1:1b:55:85:e4:a9:6a:5c:f5:
d5:d3:45:33:8c:df:b1:59:ae:91:fc:74:79:f8:36:5f:4c:ff:
1a:17:2d:c8:f0:62:4c:52:6b:42:ad:f7:2f:65:16:e6:3c:07:
9a:3e:4c:96:60:b3:0a:4d:2f:da:8c:2f:f8:88:6a:1a:5d:08:
17:71:bb:da:e8:5a:bc:1b:fa:3a:d6:89:8b:38:ce:e5:5a:70:
d5:bc:fb:91:54:ed:bd:62:0e:52:83:7c:a2:ca:5c:17:ff:68:
25:be:ad:02:fa:d8:f3:4a:c9:ca:5d:40:90:aa:2a:0e:72:35:
11:f5:db:ea:91:91:a0:a6:86:6d:04:d1:e5:ee:5f:95:c1:24:
66:c5:7e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:56 2023 by rpki-client on console-fra.rpki-client.org