Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/c9nN53olj3P1wNAIMdtJzHBUP8o.roa
File: c9nN53olj3P1wNAIMdtJzHBUP8o.roa (raw, json)
Hash identifier: KTYyiVUXWL4MhRXxCJil2ijL7isNv+hqqniAImv3CZs=
Subject key identifier: 73:D9:CD:E7:7A:25:8F:73:F5:C0:D0:08:31:DB:49:CC:70:54:3F:CA
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 02DA41EA
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/c9nN53olj3P1wNAIMdtJzHBUP8o.roa
Signing time: Sat 01 Jan 2022 06:06:13 +0000
ROA not before: Sat 01 Jan 2022 06:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3130
IP address blocks: 151.216.4.0/23 maxlen: 23
2001:7fc:2::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47858154 (0x2da41ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jan 1 06:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73d9cde77a258f73f5c0d00831db49cc70543fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7f:35:96:aa:99:c6:63:39:ab:e6:5e:f7:71:
16:3e:9d:68:1f:42:cf:57:24:c5:98:0f:87:47:58:
bc:a7:bc:d9:a6:b2:01:86:58:7b:a2:e7:96:5c:58:
5e:76:df:bc:2e:5f:13:b8:a2:2c:a1:30:20:4b:11:
18:5a:a0:93:04:e4:2b:9d:2a:91:fc:4f:a9:8c:65:
3d:22:e0:94:0a:0e:75:b9:57:81:f7:e2:55:47:fc:
65:4e:18:2d:fb:0d:e7:db:15:a1:1b:17:21:04:b3:
94:6e:fc:16:98:8d:5f:c2:1e:89:63:1f:fe:74:a1:
05:14:19:5b:e4:f6:e6:a4:a9:c8:fa:ad:b2:18:fa:
6a:c4:04:92:9f:e0:a5:e8:25:22:59:af:e1:d4:a7:
0e:43:97:9e:4b:02:6f:58:e9:7d:35:62:38:72:10:
d5:14:6e:20:2d:b2:bd:c8:37:8c:2f:d0:a1:28:38:
b4:d1:3b:12:69:80:70:d2:ec:43:21:a1:3a:64:dc:
f9:8c:27:90:de:f7:2f:cd:ef:5a:e6:c8:f7:b9:d3:
69:7b:26:66:36:71:1a:bc:91:f6:42:e9:56:3c:5d:
4c:22:ba:4b:d1:ee:57:96:a4:a1:b8:00:2d:84:b8:
e4:f9:f1:b8:2c:39:2d:0c:c7:02:87:8f:fc:0b:96:
29:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D9:CD:E7:7A:25:8F:73:F5:C0:D0:08:31:DB:49:CC:70:54:3F:CA
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/c9nN53olj3P1wNAIMdtJzHBUP8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
20:a8:63:8f:2d:8d:a0:0a:30:0e:2b:c6:44:6c:5b:6f:e3:ca:
24:92:70:17:89:e7:32:75:51:e2:d3:d3:7d:06:69:8c:28:7a:
a3:90:6d:db:ad:70:1f:66:b4:a2:90:6b:45:23:15:66:bb:ed:
6e:3c:d7:cc:52:7d:8e:8b:91:6d:c2:e4:a4:b5:47:d8:ee:d5:
14:b9:b4:14:9e:ba:87:8f:8d:6d:b2:42:aa:77:dd:d5:4f:6e:
5f:4a:88:c7:7f:38:5d:15:7b:a2:5e:82:d1:f0:6e:c4:bd:0d:
18:6b:17:e8:2f:6b:22:c5:55:3e:cc:33:63:80:8a:05:3e:83:
4b:15:9a:56:c4:fb:2b:a4:23:22:f0:2a:cd:84:25:78:81:45:
a9:cc:54:ec:23:55:95:0c:95:cc:11:90:75:85:ce:bb:4a:89:
f4:46:f1:11:99:35:89:4d:13:47:b3:8d:01:c8:c8:5b:cc:11:
27:bf:5e:fd:3a:3f:f7:df:00:46:b7:2b:ce:47:3f:d5:c3:75:
25:fa:4e:55:de:9f:09:f9:b0:9d:9f:52:16:da:27:89:6e:c3:
9a:6c:e7:c2:ac:08:15:3a:90:69:5b:04:31:d9:b4:e1:ee:00:
c7:e9:bd:3f:99:61:2a:4e:22:39:28:45:de:c6:1f:4e:b3:53:
e1:e7:50:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:21 2025 by rpki-client