Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/cFZf4-pVnQrY0PahJxY0KkcRZKQ.roa
File: cFZf4-pVnQrY0PahJxY0KkcRZKQ.roa (raw, json)
Hash identifier: hUftMSbkDPukqGjTJWz1h/+Y/ockBQ2XLL9VjQiUjqo=
Subject key identifier: 70:56:5F:E3:EA:55:9D:0A:D8:D0:F6:A1:27:16:34:2A:47:11:64:A4
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 079A1BDE
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/cFZf4-pVnQrY0PahJxY0KkcRZKQ.roa
Signing time: Fri 27 May 2022 15:37:14 +0000
ROA not before: Fri 27 May 2022 15:37:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127540190 (0x79a1bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 27 15:37:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70565fe3ea559d0ad8d0f6a12716342a471164a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4a:aa:95:23:84:84:70:08:3d:5e:92:d5:2b:
bc:08:96:f5:06:68:e7:be:b7:16:8f:37:ac:a3:73:
74:04:24:2e:11:09:c7:b9:78:31:96:ed:89:52:6e:
85:4c:7c:90:dd:01:0a:31:28:7a:6e:a2:de:9d:27:
02:83:4e:61:ed:7e:2d:69:fe:2b:c5:d9:88:46:b8:
01:c0:3e:c0:1d:94:16:0f:2a:a0:9e:37:72:be:e7:
a0:00:54:3b:d9:80:e2:36:3a:dd:b6:e3:ac:0a:fe:
cc:aa:13:0c:16:b9:04:35:cd:55:18:e9:4e:6a:35:
a8:d7:2e:fd:af:30:07:32:04:0d:58:19:1c:b6:69:
8c:5c:86:7d:fd:e3:f4:8c:8f:27:60:f2:32:84:8a:
ea:c2:a8:67:ed:7e:95:69:88:30:4f:ff:47:e9:15:
e4:71:85:e7:47:ac:b6:a4:f6:1e:7b:f5:45:5c:a7:
96:7f:32:42:ff:a8:91:f4:d0:68:fa:7e:95:c3:62:
e7:0f:86:49:06:67:d3:30:0d:3b:ee:65:5b:00:42:
66:b8:19:76:cf:a7:51:1f:b3:6b:d7:3b:cb:68:60:
88:8b:30:8a:7c:bf:48:5c:cd:e2:f2:10:b9:10:e8:
4c:4f:2a:a4:3b:2a:56:98:aa:8b:74:f8:b7:8f:73:
ba:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:56:5F:E3:EA:55:9D:0A:D8:D0:F6:A1:27:16:34:2A:47:11:64:A4
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/cFZf4-pVnQrY0PahJxY0KkcRZKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
16:db:a7:8b:ec:56:4f:dc:ba:e4:37:bf:fe:1e:0c:e0:68:bb:
35:91:82:6e:00:2e:c6:a1:ce:be:68:b4:96:bd:9f:11:e7:b4:
2f:7f:19:56:6f:36:b4:dd:0f:b9:b9:e0:7e:93:09:38:72:0b:
fc:7a:d5:b4:cc:30:9e:70:18:3c:76:ea:36:98:d9:c1:01:d8:
bb:65:a1:fd:ee:c8:54:4b:dd:72:65:70:cd:09:8e:d7:50:8b:
57:b2:02:cc:9b:f7:55:16:35:dd:37:68:81:70:62:2d:81:0f:
e7:28:49:68:c9:32:bb:17:36:8e:ec:9f:ce:46:33:51:e2:f5:
bd:8e:a8:48:67:39:26:23:ac:b0:1f:2f:48:7f:63:fb:a1:ad:
a6:ad:b4:be:27:9f:eb:24:6d:b8:af:f3:5a:60:b3:94:4b:90:
25:54:d9:b5:0a:9a:51:36:6c:e7:66:59:0f:84:9a:60:f1:b2:
1b:24:62:63:eb:c5:58:ee:17:26:e7:26:7e:7e:b0:60:e1:cd:
06:6c:dd:3f:59:f2:0d:de:56:aa:6a:33:c6:a8:33:bf:c9:fb:
5e:8d:98:5c:da:93:59:7f:7e:e5:52:d0:4f:73:00:e2:89:1d:
67:9b:b9:f1:72:ea:3a:7d:61:d3:a1:27:37:76:3c:85:35:4b:
b3:f6:bf:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:41 2025 by rpki-client