Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/YpEW_Fj3SD-JbDY4IICtfV5qVxE.roa
File: YpEW_Fj3SD-JbDY4IICtfV5qVxE.roa (raw, json)
Hash identifier: gnPcRzN/crrnnuQgL7HW/zN4U5+TQOuRwvPCb1QlohE=
Subject key identifier: 62:91:16:FC:58:F7:48:3F:89:6C:36:38:20:80:AD:7D:5E:6A:57:11
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0181DB55355976929E821BBC378D88E0119C
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/YpEW_Fj3SD-JbDY4IICtfV5qVxE.roa
Signing time: Fri 08 Jul 2022 01:03:23 +0000
ROA not before: Fri 08 Jul 2022 01:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:db:55:35:59:76:92:9e:82:1b:bc:37:8d:88:e0:11:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jul 8 01:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=629116fc58f7483f896c36382080ad7d5e6a5711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:01:13:29:b1:4c:02:d6:a8:fe:c7:45:f3:
0e:0e:f0:bf:9d:62:e2:2f:d2:1c:b8:ba:35:2c:ea:
ad:d3:1c:3f:66:44:7a:8d:ad:24:2c:31:ac:85:8f:
5f:1f:f2:01:c9:c2:74:ca:ab:79:91:1d:4e:7b:d5:
b6:f8:61:2f:e4:4d:2c:f8:bd:fd:03:72:bd:9a:e5:
44:15:57:2c:83:c4:74:25:4e:d9:06:37:cd:21:8b:
06:44:35:d6:7a:71:02:44:68:2a:65:af:1c:a2:f4:
81:fe:72:2a:00:2b:58:c8:07:5f:0c:ea:09:ed:f4:
0d:10:b9:0b:f4:1c:6f:1f:2d:75:e6:3f:71:2d:fa:
91:21:71:a4:a8:3d:81:4c:a6:25:21:c8:36:12:92:
c4:f5:36:5e:d6:10:ef:3a:a2:a5:d3:70:a4:93:bb:
2e:ac:4f:17:0a:10:21:b4:08:0b:d8:6e:2f:91:13:
6b:45:73:54:4c:2b:03:db:5c:5f:b4:e2:83:9d:9b:
22:a1:13:e7:c0:ea:69:fb:16:28:14:9d:5f:36:8d:
b6:81:72:f7:1a:7e:0d:d9:96:ec:6d:8f:e4:44:aa:
0e:3e:cf:98:40:b1:11:c8:c6:fa:8d:4f:ef:a7:d0:
93:f1:e7:ad:90:f8:a1:b2:75:9b:a7:02:d3:53:59:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:91:16:FC:58:F7:48:3F:89:6C:36:38:20:80:AD:7D:5E:6A:57:11
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/YpEW_Fj3SD-JbDY4IICtfV5qVxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
43:0a:ca:4d:a9:ec:aa:d1:9e:db:4e:93:49:71:0e:df:7f:a1:
a4:12:5e:17:eb:bb:9a:7e:00:d6:3e:ed:5d:dd:cd:e3:6d:29:
74:74:7c:c9:67:c8:ea:26:3e:39:0e:4f:29:bf:5f:b7:61:c3:
00:23:3d:76:0f:e8:df:13:32:ff:2a:e5:e7:ab:8c:b0:bb:0b:
d5:e9:ee:24:b8:38:f1:78:93:26:90:5d:6d:0b:d6:32:93:15:
e6:1a:de:52:81:e8:dd:76:94:56:79:6d:25:41:74:b6:c9:ab:
d4:53:cf:30:17:ff:3b:50:b8:ec:8d:b3:b6:d8:4d:4e:20:50:
e9:d1:5c:a1:d4:3b:31:76:6b:69:52:0d:92:d4:48:86:26:f5:
c7:4b:96:6f:b2:39:c8:af:f8:ce:a9:2d:33:ba:aa:b6:5f:16:
47:6b:43:d1:4a:3d:7a:a9:90:a6:b4:7b:d6:f6:6f:a3:69:b1:
9a:ae:28:63:4b:b7:4c:e5:a6:5b:0a:74:b3:4a:34:bb:4e:f7:
ee:6d:59:79:57:a9:86:2b:71:4c:0d:81:58:d5:31:0e:98:69:
c2:90:ff:3f:f3:86:c0:e4:1a:60:d2:57:bb:7e:6c:2b:6d:b8:
d4:b4:bb:91:78:2b:97:b0:fd:a4:dd:fe:8f:bf:e6:cc:78:35:
15:39:ec:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHbVTVZdpKeghu8N42I4BGcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiM2RhNmU5OWM2NjY1MTNhMmNlZTVmMGUwZDNhYjc0NWYx
NjdkYzMwHhcNMjIwNzA4MDEwMzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjkxMTZmYzU4Zjc0ODNmODk2YzM2MzgyMDgwYWQ3ZDVlNmE1NzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWQBEymxTALWqP7HRfMODvC/nWLi
L9IcuLo1LOqt0xw/ZkR6ja0kLDGshY9fH/IBycJ0yqt5kR1Oe9W2+GEv5E0s+L39
A3K9muVEFVcsg8R0JU7ZBjfNIYsGRDXWenECRGgqZa8covSB/nIqACtYyAdfDOoJ
7fQNELkL9BxvHy115j9xLfqRIXGkqD2BTKYlIcg2EpLE9TZe1hDvOqKl03Ckk7su
rE8XChAhtAgL2G4vkRNrRXNUTCsD21xftOKDnZsioRPnwOpp+xYoFJ1fNo22gXL3
Gn4N2ZbsbY/kRKoOPs+YQLERyMb6jU/vp9CT8eetkPihsnWbpwLTU1maswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGKRFvxY90g/iWw2OCCArX1ealcRMB8GA1UdIwQY
MBaAFEs9pumcZmUTos7l8ODTq3RfFn3DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3oybTZaeG1aUk9penVYdzROT3JkRjhXZmNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi82ZjIzMmUtMjI3NS00NGU5LTkxYzAt
YzczOTdhMjY2OWE5LzEvWXBFV19GajNTRC1KYkRZNElJQ3RmVjVxVnhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi82ZjIzMmUtMjI3NS00NGU5LTkxYzAtYzczOTdhMjY2OWE5
LzEvU3oybTZaeG1aUk9penVYdzROT3JkRjhXZmNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl9ggMA0G
CSqGSIb3DQEBCwUAA4IBAQBDCspNqeyq0Z7bTpNJcQ7ff6GkEl4X67uafgDWPu1d
3c3jbSl0dHzJZ8jqJj45Dk8pv1+3YcMAIz12D+jfEzL/KuXnq4ywuwvV6e4kuDjx
eJMmkF1tC9YykxXmGt5SgejddpRWeW0lQXS2yavUU88wF/87ULjsjbO22E1OIFDp
0Vyh1DsxdmtpUg2S1EiGJvXHS5ZvsjnIr/jOqS0zuqq2XxZHa0PRSj16qZCmtHvW
9m+jabGarihjS7dM5aZbCnSzSjS7TvfubVl5V6mGK3FMDYFY1TEOmGnCkP8/84bA
5Bpg0le7fmwrbbjUtLuReCuXsP2k3f6Pv+bMeDUVOey5
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:45 2025 by rpki-client