Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/dNicmFYsSCJYlVZFGg_gPTpZUEs.roa
File: dNicmFYsSCJYlVZFGg_gPTpZUEs.roa (raw, json)
Hash identifier: sp37cFg6C62PJnckjdKIiaef6JyAz+OD6QUy17kI7kA=
Subject key identifier: 74:D8:9C:98:56:2C:48:22:58:95:56:45:1A:0F:E0:3D:3A:59:50:4B
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 05468866
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/dNicmFYsSCJYlVZFGg_gPTpZUEs.roa
Signing time: Wed 23 Mar 2022 05:31:40 +0000
ROA not before: Wed 23 Mar 2022 05:31:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88508518 (0x5468866)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Mar 23 05:31:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74d89c98562c4822589556451a0fe03d3a59504b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:18:e7:e5:a9:43:52:86:74:69:40:10:2e:
57:d2:7f:68:86:61:0d:f4:2f:32:44:3a:e9:c0:0b:
78:f4:43:0d:a9:35:4d:d2:6f:0d:4e:61:de:c6:1b:
cf:c6:e1:0f:f7:bb:bd:11:7e:98:07:d7:80:76:65:
f0:d4:c8:c7:3d:e5:68:a7:37:4c:98:f0:b7:2e:b5:
e6:7d:ef:ce:7d:6f:9e:a4:cf:ff:72:d2:1d:c7:1d:
0a:e7:71:98:2c:3f:6a:08:aa:29:0a:d0:87:e4:ba:
eb:e1:58:39:e0:a1:c0:32:2c:70:f6:e2:91:70:ed:
19:80:e4:b0:2b:7b:b2:16:91:8c:4f:26:ed:37:ba:
a9:90:96:ba:4d:74:92:20:aa:79:4e:3b:c0:f4:db:
5f:24:eb:38:85:2d:c1:1c:13:2e:57:46:b6:a8:52:
15:81:66:ae:b6:00:3c:56:cf:db:c6:f9:ea:5a:91:
38:49:55:03:b6:ad:48:1c:91:cb:2d:01:a7:07:c6:
27:1b:e5:4f:ac:bf:e5:52:af:d3:4b:d7:83:58:98:
28:36:48:17:d4:d6:16:24:24:ee:e0:70:9c:91:ae:
4c:e3:03:cf:be:44:21:4e:1e:22:cf:f7:ce:5d:65:
bb:01:19:e5:93:7c:6c:93:36:be:6a:82:91:40:dd:
e7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D8:9C:98:56:2C:48:22:58:95:56:45:1A:0F:E0:3D:3A:59:50:4B
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/dNicmFYsSCJYlVZFGg_gPTpZUEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
12:7d:34:fa:2b:23:81:04:98:9b:66:bf:d8:05:ce:34:2c:3b:
04:93:ed:28:63:aa:95:2d:24:cd:14:53:58:89:d1:96:28:a0:
95:4b:eb:8d:ae:e4:55:fb:d6:aa:d8:db:77:d2:86:a2:ea:bd:
b3:a2:52:60:68:64:16:72:9f:d1:e3:11:d9:ac:86:1f:c6:5e:
46:c4:06:3f:cf:6d:3d:fa:fa:27:a0:f8:bf:81:75:50:6f:f4:
38:6c:0f:3f:da:2b:44:94:53:ba:7d:03:c8:32:6a:04:69:41:
7a:c0:74:e5:62:c9:1e:df:f0:df:b2:0f:df:67:6a:ae:1e:39:
50:d0:a4:8f:ef:af:1b:73:63:e3:99:2a:6d:d6:59:16:2e:62:
60:e6:0e:7e:af:34:7a:fb:ed:e0:0b:3a:8b:06:0b:ec:03:7f:
ea:82:42:80:91:bb:1a:7e:e4:ed:33:0a:3c:b2:82:24:58:48:
fc:78:6e:ee:db:2a:83:5b:ad:3c:97:a8:e7:ae:36:11:cb:ca:
5c:df:a9:04:9b:c4:66:bb:f8:cf:15:df:2b:9a:76:dd:4f:56:
e1:66:b0:cf:0f:dd:38:8f:3a:66:f9:37:74:c0:8d:88:b6:29:
25:7f:99:dc:18:b8:fa:44:6e:31:f1:35:63:62:29:cb:e7:99:
1b:59:a5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:15 2025 by rpki-client