Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/UooMZEf7ufLS4oeVn3FykV4zYzo.roa
File: UooMZEf7ufLS4oeVn3FykV4zYzo.roa (raw, json)
Hash identifier: kdr4fcmpcxjmSoxSJyMAX3St7YKwxLkTFNxn2Cgto+w=
Subject key identifier: 52:8A:0C:64:47:FB:B9:F2:D2:E2:87:95:9F:71:72:91:5E:33:63:3A
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0802FFA2
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/UooMZEf7ufLS4oeVn3FykV4zYzo.roa
Signing time: Sat 04 Jun 2022 17:58:22 +0000
ROA not before: Sat 04 Jun 2022 17:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134414242 (0x802ffa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 4 17:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=528a0c6447fbb9f2d2e287959f7172915e33633a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8c:7f:79:1e:87:1d:2d:35:9c:be:ee:5f:ae:
77:9e:27:2a:b4:9b:8a:ce:7d:d5:ed:88:47:e8:86:
4d:61:4b:f8:8a:d3:03:1f:9d:32:d7:e9:b3:27:16:
13:dc:00:6d:63:2c:d7:3d:59:65:30:ba:f3:49:33:
40:0f:a3:7e:e4:06:ce:58:44:a1:a0:df:e0:66:46:
6f:8d:45:43:52:f0:c2:7b:4e:2d:be:1f:fe:90:31:
33:39:b3:d4:a5:99:e2:a0:2f:2c:08:bd:f4:7d:43:
40:9d:c9:44:8a:5f:1f:97:78:43:31:b2:00:81:a3:
9e:0a:03:a0:b5:63:fd:d4:16:84:4f:39:37:bd:2d:
e4:0a:25:47:66:aa:d6:00:6a:40:cd:5c:55:2e:c0:
4e:8e:2e:73:b5:64:d1:c6:30:34:6e:94:35:cf:d8:
2d:20:ef:81:18:4b:ed:6b:f1:e0:15:1c:2f:2b:ae:
96:63:bd:3f:6d:21:16:b6:9b:26:9d:9e:16:97:78:
3f:48:ef:c7:e9:75:9a:fb:33:17:ed:06:2d:7d:d7:
dd:63:49:ed:c5:f9:75:fd:bb:26:bc:12:16:8c:d9:
67:b8:b6:7c:1d:c7:b9:8f:3a:34:2e:29:ac:9b:56:
7f:e3:38:a8:09:17:b5:07:c6:d9:db:5c:54:00:16:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8A:0C:64:47:FB:B9:F2:D2:E2:87:95:9F:71:72:91:5E:33:63:3A
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/UooMZEf7ufLS4oeVn3FykV4zYzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
9d:33:df:63:8b:3f:ad:c7:94:77:57:76:3a:c8:6b:53:1f:43:
19:cf:36:2c:95:13:a3:bc:a7:49:89:62:1d:3b:bd:69:65:e4:
ed:d8:ee:6f:1b:18:66:02:b8:5f:52:02:5e:2d:70:77:20:c0:
7f:73:16:c0:90:cd:c9:3b:06:8d:2a:7d:f2:3e:8c:c5:2f:5b:
af:88:52:23:25:4b:14:72:ec:f5:1a:71:24:ac:b0:3d:12:b1:
c5:62:0a:6e:cd:66:3d:c4:29:2e:a7:8e:76:8a:94:6e:7e:a5:
ee:b8:c2:61:37:ba:b7:ec:5a:af:06:d6:a5:d5:27:c8:03:14:
0c:72:87:a5:1f:f1:cf:21:f6:f2:d0:2f:87:f6:85:e3:65:c4:
ba:e5:86:aa:29:c1:51:cb:26:14:d0:3a:02:82:15:47:6d:83:
4f:2d:61:14:16:a5:1b:3e:bc:23:97:0a:76:c6:d1:86:c2:f6:
c2:55:1b:bf:3b:3c:48:ee:34:d0:4d:13:7a:93:71:da:2c:a7:
fe:86:6f:29:71:6c:f9:00:f5:a2:cb:fb:af:3e:f5:c6:9f:6d:
e9:61:91:22:ce:13:ec:d8:03:a3:2b:f1:f6:dc:23:1e:c6:69:
6e:1a:9f:fc:05:13:37:3f:c3:d7:68:84:55:8c:34:0a:58:7e:
b5:be:da:4d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECAL/ojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjNkYTZlOTljNjY2NTEzYTJjZWU1ZjBlMGQzYWI3NDVmMTY3ZGMzMB4XDTIyMDYw
NDE3NTgyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTI4YTBjNjQ0N2Zi
YjlmMmQyZTI4Nzk1OWY3MTcyOTE1ZTMzNjMzYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALCMf3kehx0tNZy+7l+ud54nKrSbis591e2IR+iGTWFL+IrT
Ax+dMtfpsycWE9wAbWMs1z1ZZTC680kzQA+jfuQGzlhEoaDf4GZGb41FQ1LwwntO
Lb4f/pAxMzmz1KWZ4qAvLAi99H1DQJ3JRIpfH5d4QzGyAIGjngoDoLVj/dQWhE85
N70t5AolR2aq1gBqQM1cVS7ATo4uc7Vk0cYwNG6UNc/YLSDvgRhL7Wvx4BUcLyuu
lmO9P20hFrabJp2eFpd4P0jvx+l1mvszF+0GLX3X3WNJ7cX5df27JrwSFozZZ7i2
fB3HuY86NC4prJtWf+M4qAkXtQfG2dtcVAAWt2sCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRSigxkR/u58tLih5WfcXKRXjNjOjAfBgNVHSMEGDAWgBRLPabpnGZlE6LO
5fDg06t0XxZ9wzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N6Mm02WnhtWlJPaXp1WHc0Tk9yZEY4V2ZjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8x
L1Vvb01aRWY3dWZMUzRvZVZuM0Z5a1Y0ell6by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8xL1N6Mm02WnhtWlJP
aXp1WHc0Tk9yZEY4V2ZjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAJfYBDAPBAIAAjAJAwcAIAEH/AAC
MA0GCSqGSIb3DQEBCwUAA4IBAQCdM99jiz+tx5R3V3Y6yGtTH0MZzzYslROjvKdJ
iWIdO71pZeTt2O5vGxhmArhfUgJeLXB3IMB/cxbAkM3JOwaNKn3yPozFL1uviFIj
JUsUcuz1GnEkrLA9ErHFYgpuzWY9xCkup452ipRufqXuuMJhN7q37FqvBtal1SfI
AxQMcoelH/HPIfby0C+H9oXjZcS65YaqKcFRyyYU0DoCghVHbYNPLWEUFqUbPrwj
lwp2xtGGwvbCVRu/OzxI7jTQTRN6k3HaLKf+hm8pcWz5APWiy/uvPvXGn23pYZEi
zhPs2AOjK/H23CMexmluGp/8BRM3P8PXaIRVjDQKWH61vtpN
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:06:44 2025 by rpki-client