Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/bF7klxmXAkSBp1nUSyaW5AAFNFg.roa
File: bF7klxmXAkSBp1nUSyaW5AAFNFg.roa (raw, json)
Hash identifier: bjhDIa5v5SirTq+SGxvPbmDV4kS0BqxSASraX27+rxI=
Subject key identifier: 6C:5E:E4:97:19:97:02:44:81:A7:59:D4:4B:26:96:E4:00:05:34:58
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 07ED558E
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/bF7klxmXAkSBp1nUSyaW5AAFNFg.roa
Signing time: Fri 03 Jun 2022 04:05:20 +0000
ROA not before: Fri 03 Jun 2022 04:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55722
IP address blocks: 151.216.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132994446 (0x7ed558e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 3 04:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c5ee4971997024481a759d44b2696e400053458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:91:89:ed:b7:1c:34:26:01:06:9a:25:4f:
ef:e1:27:06:08:09:ad:6d:d0:5a:44:96:9f:02:02:
ce:b3:ed:1d:a8:4f:57:92:29:d8:91:52:6e:46:f6:
d3:b1:fa:1e:82:d0:fb:c1:b5:75:fd:8c:7f:3e:01:
29:f2:7e:ee:f5:dc:c9:c7:aa:cc:f2:ff:ce:6e:0f:
ca:63:b1:19:c8:65:45:a7:de:a8:b4:ad:dc:c8:86:
a4:b7:e5:20:30:56:95:80:4f:44:db:64:b4:c3:e7:
12:18:c3:78:f1:3b:87:30:30:69:97:80:29:e2:90:
22:18:83:90:06:ff:0d:0c:c0:73:0b:d8:e2:e2:4e:
5d:00:6f:77:53:f0:82:d2:09:37:fc:85:f8:68:2f:
f5:43:d0:6e:71:e3:e6:a5:db:12:a8:fc:f4:f5:8e:
e4:58:94:47:49:07:12:70:0e:77:5d:5b:85:92:27:
c6:8c:ac:6c:0d:34:a2:59:26:52:f5:b6:1e:88:b8:
e9:a5:ef:02:9e:34:18:c2:47:b2:6b:6f:48:6a:10:
1c:e3:38:e4:4a:9a:4c:28:f6:b3:6a:e7:f2:14:93:
1f:f5:16:96:dc:34:9d:5f:9a:ea:2d:a1:4b:55:8d:
cc:eb:84:42:2f:e7:cb:86:9e:48:f8:9c:cd:54:b0:
e9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5E:E4:97:19:97:02:44:81:A7:59:D4:4B:26:96:E4:00:05:34:58
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/bF7klxmXAkSBp1nUSyaW5AAFNFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.33.0/24
Signature Algorithm: sha256WithRSAEncryption
17:4b:af:c6:d7:f3:a8:52:c7:f4:a9:c1:73:3c:bc:84:87:27:
2d:47:e9:24:d9:4c:40:87:91:57:78:c9:c1:8f:0c:a3:fd:27:
d8:44:6b:bd:77:7b:56:3c:ee:d1:53:ee:ab:02:c5:a2:a6:8b:
88:d2:23:9f:44:c8:8e:05:8b:75:dc:f3:f5:ed:5a:7b:a2:d6:
08:4c:73:0f:9c:2b:d6:ce:87:d5:fa:6b:ab:79:a4:44:0e:48:
c3:b4:fd:7e:10:5c:35:53:c1:ba:bd:de:85:05:a8:4a:95:72:
e9:5b:ec:e5:0c:95:c1:db:a2:7c:cc:36:f5:33:92:67:2c:de:
2a:3c:8e:bb:bf:1c:4b:22:6e:82:b0:ab:36:8a:8f:8b:13:54:
e9:ea:86:74:dd:ed:67:8a:b3:37:8d:3d:f9:27:10:e9:75:5e:
f6:7d:38:2c:0e:c3:32:15:b7:af:b1:8b:c6:76:4d:9f:3f:c5:
59:37:2b:81:72:ef:6c:2a:33:0a:b4:07:47:4e:a4:72:00:fb:
af:1c:92:eb:38:a8:d6:ac:7e:d2:00:4b:e2:8d:ba:5f:a8:43:
81:09:ab:df:5c:b7:5c:46:50:6e:9e:99:b1:e9:de:02:50:26:
12:d7:83:e6:99:d8:32:82:9f:db:13:33:d4:79:8d:f9:fe:ab:
71:a8:0a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:56 2023 by rpki-client on console-fra.rpki-client.org