Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/lq7nXUJWtdpijZ0qLuaDsZlR3Jc.roa
File: lq7nXUJWtdpijZ0qLuaDsZlR3Jc.roa (raw, json)
Hash identifier: R/Q0F2fmvTg/nki1m953xmAULbrMLrs9MPTC6ttogbU=
Subject key identifier: 96:AE:E7:5D:42:56:B5:DA:62:8D:9D:2A:2E:E6:83:B1:99:51:DC:97
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 084AF652
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/lq7nXUJWtdpijZ0qLuaDsZlR3Jc.roa
Signing time: Fri 10 Jun 2022 04:33:02 +0000
ROA not before: Fri 10 Jun 2022 04:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55722
IP address blocks: 151.216.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139130450 (0x84af652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 10 04:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96aee75d4256b5da628d9d2a2ee683b19951dc97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:8b:6e:02:1c:e7:5d:62:f5:28:32:c1:89:
91:7c:d3:13:9c:05:01:44:9a:ff:3b:19:8c:eb:e5:
c0:77:11:74:50:f5:4e:3b:b1:79:90:a3:13:04:f7:
fe:95:12:89:09:60:8b:f9:14:a0:45:0e:bc:a3:bb:
57:98:59:c6:6e:2c:e1:59:0c:dd:78:6c:27:c9:e7:
68:2b:9a:38:8b:dd:05:ca:4e:93:5d:cc:e9:96:72:
82:4d:b6:92:9f:0c:44:a4:25:a8:0a:10:6e:4b:3f:
5f:85:a5:05:a2:64:df:fb:22:e8:f0:43:4b:60:51:
bb:a2:06:73:bf:9b:9c:4b:cc:bb:e1:7b:05:4f:5c:
04:37:fb:74:be:3c:f8:7e:de:e3:6c:20:43:90:d4:
23:59:68:95:08:4a:cf:20:95:17:97:b5:3b:ef:69:
12:aa:9f:a7:d0:02:c3:30:70:45:60:76:3c:a5:45:
9c:1a:ad:b3:49:9f:7a:82:08:21:44:01:9f:9b:74:
1a:65:2d:44:c7:70:44:28:b1:fe:c4:8e:15:b8:14:
00:e0:c2:8f:4f:1f:3a:59:16:16:d4:67:99:de:ed:
87:5b:d6:c8:e9:53:77:20:73:1f:98:9c:41:7f:1f:
83:84:7b:16:a4:6f:a4:c2:f3:80:2d:08:f3:df:f2:
21:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AE:E7:5D:42:56:B5:DA:62:8D:9D:2A:2E:E6:83:B1:99:51:DC:97
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/lq7nXUJWtdpijZ0qLuaDsZlR3Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.33.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:f3:5f:32:ce:d3:54:cb:3f:bd:6b:5b:5c:66:34:41:89:3b:
df:1f:d0:c6:08:40:a3:97:63:7f:8c:53:09:2c:fa:28:0b:5a:
bf:fe:3b:19:5e:32:e3:d5:4a:1e:c5:45:6b:7d:21:fe:40:a8:
d2:da:6f:52:ad:85:7b:7c:41:b8:98:29:3b:ca:04:a6:9a:3f:
28:30:24:38:88:4c:06:bd:0f:99:89:b4:11:2c:9a:7d:75:71:
99:87:3c:c0:44:dc:35:5b:0b:58:67:16:6e:52:90:92:16:39:
a1:44:12:5a:8a:d2:94:c7:3b:8b:c4:06:5d:d0:5c:78:ce:d7:
32:b9:bb:da:99:18:ae:6e:9f:9d:4d:07:a3:fb:44:4d:b4:7e:
ce:9a:c5:12:b9:cb:ca:99:c2:11:6e:f9:93:3f:80:81:73:21:
44:e1:f4:03:59:a9:ae:6c:53:00:e3:34:5d:48:e2:a8:42:91:
43:2f:a1:af:1b:63:c5:59:5d:e7:b7:62:5f:08:5e:c3:16:a1:
49:02:59:0b:6f:65:2f:7b:3c:84:8d:08:7d:2c:30:6f:1d:2c:
7b:68:1b:ff:01:d5:68:fc:4b:3a:51:fe:2a:10:b1:77:78:b0:
d1:34:80:ab:ef:de:e6:e4:1e:e9:e4:47:6b:dc:67:d8:2b:57:
c4:25:fb:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:28 2024 by rpki-client on console-fra.rpki-client.org