Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Z-CTU4RrTWxCaUdLqM5i64kaEk8.roa
File: Z-CTU4RrTWxCaUdLqM5i64kaEk8.roa (raw, json)
Hash identifier: xvnFh9azMAJ9Zb6m08rzSOA+VB8tEFkOJTvZLKUUJ9A=
Subject key identifier: 67:E0:93:53:84:6B:4D:6C:42:69:47:4B:A8:CE:62:EB:89:1A:12:4F
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 07D0BB68
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Z-CTU4RrTWxCaUdLqM5i64kaEk8.roa
Signing time: Wed 01 Jun 2022 05:03:13 +0000
ROA not before: Wed 01 Jun 2022 05:03:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17660
IP address blocks: 151.216.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131119976 (0x7d0bb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 1 05:03:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67e09353846b4d6c4269474ba8ce62eb891a124f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d8:48:20:e9:29:73:18:23:9c:00:a8:b4:bd:
2a:d6:00:e4:6c:be:46:6b:84:96:d0:ad:75:1d:19:
f1:ba:cb:d5:24:ea:78:dd:b0:e1:d1:d0:86:68:77:
0c:71:a1:b4:92:ec:58:c7:31:73:01:87:33:e0:dc:
9e:e4:ef:90:35:c2:4f:11:74:c9:4c:4d:69:f5:ac:
ae:3e:9c:d6:f7:af:fa:59:11:a0:3c:7e:8b:55:61:
9e:18:aa:3b:c5:3c:ae:25:ed:14:ce:41:07:23:9f:
6c:55:3d:91:b7:87:35:84:5f:7d:cc:85:08:aa:8c:
aa:f2:d7:4a:61:e0:93:c4:c1:ff:fc:4e:ef:dd:77:
55:f7:ee:b5:23:1d:e5:a4:2b:0a:c4:0a:98:58:3a:
5b:d1:4d:d8:27:76:61:3e:9e:34:bf:4b:a5:17:8c:
5c:37:28:22:d6:14:01:d4:51:64:b3:ce:95:32:3e:
79:35:39:3a:40:f0:dc:74:17:d7:13:4e:24:52:d9:
63:83:6c:16:5f:fd:f6:46:16:73:0c:5d:69:5c:17:
15:ae:60:e8:eb:a9:7d:fc:eb:fc:6b:3f:f4:dc:bc:
90:83:46:12:2d:be:25:7f:59:73:4d:56:91:07:04:
a1:71:6b:74:5e:7b:e3:64:99:46:4c:22:08:80:b7:
68:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E0:93:53:84:6B:4D:6C:42:69:47:4B:A8:CE:62:EB:89:1A:12:4F
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Z-CTU4RrTWxCaUdLqM5i64kaEk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:14:3e:96:e2:d0:21:45:ed:b2:7c:a6:5a:86:35:d4:d7:94:
47:91:53:1b:8d:06:b8:92:7f:7c:93:3a:69:a8:ae:81:73:bf:
bf:d0:93:68:7e:ca:58:49:d3:4f:e5:88:8a:f4:72:5c:c3:19:
9f:c9:77:ae:77:c3:31:31:60:9d:67:5a:d0:22:fa:cd:af:a5:
bf:6a:cf:15:e9:6f:e9:08:de:f8:bb:98:71:a3:af:0d:d5:10:
fb:a0:a8:3a:ef:23:2e:bb:9d:71:af:bf:b6:d2:e5:22:1c:b0:
92:5d:80:72:5b:8a:71:f1:df:be:bf:4a:44:ff:7d:84:14:26:
98:8f:1a:43:06:ec:75:2f:a3:d3:ed:e4:1e:de:67:cd:ac:c8:
60:a5:d5:3c:14:4b:56:34:4d:67:d2:dd:a9:5b:0b:61:68:80:
48:a0:9d:a4:64:cb:b2:af:2e:57:ae:fc:5d:18:fb:41:52:dc:
3b:a2:aa:4a:08:02:9d:2a:d6:c8:7f:a3:65:9d:e5:dc:5d:a4:
a3:e7:f4:62:0e:96:27:08:06:be:ce:89:32:2d:17:0c:fa:11:
52:e3:1a:b1:20:ac:4d:b2:98:33:37:9b:40:66:43:0a:00:52:
ea:d4:cf:63:5b:1f:3f:09:8f:e4:6b:3f:10:b1:71:45:4e:4e:
79:18:40:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:39 2025 by rpki-client