Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/nBfTuYd9cB5FlbX6fpswd4sIKyg.roa
File: nBfTuYd9cB5FlbX6fpswd4sIKyg.roa (raw, json)
Hash identifier: 3OY7GuQjxK0uAG0kN880GO22xZNirJbmHo0l2uSRaN8=
Subject key identifier: 9C:17:D3:B9:87:7D:70:1E:45:95:B5:FA:7E:9B:30:77:8B:08:2B:28
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 06991F59
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/nBfTuYd9cB5FlbX6fpswd4sIKyg.roa
Signing time: Sun 08 May 2022 04:03:45 +0000
ROA not before: Sun 08 May 2022 04:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110698329 (0x6991f59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 8 04:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c17d3b9877d701e4595b5fa7e9b30778b082b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bf:b4:07:a2:54:40:76:eb:dc:a6:5f:e0:7e:
c2:b9:5f:9b:c1:f5:4e:6f:d2:de:77:54:4b:ee:5d:
78:04:dd:93:24:98:2a:a0:72:6a:ca:33:4b:fb:4e:
ee:91:84:77:2d:a9:7d:6d:14:1a:37:48:e9:9b:a6:
dc:0e:28:d4:32:a8:e9:33:4a:73:95:53:61:4a:a9:
2f:c8:a6:69:6f:fb:ea:21:8f:e9:d7:07:2a:bf:3a:
c5:25:ba:ad:45:9e:43:b0:e9:af:49:a1:a1:c0:3d:
f7:4c:02:b9:91:df:91:b8:4e:05:9b:96:38:a9:66:
a3:31:b3:86:65:62:7b:81:55:61:ff:f0:46:5f:cb:
f2:8e:b9:36:9d:59:b6:49:e1:7e:62:a4:ee:c4:89:
33:5c:6c:91:5f:2f:3d:dd:f6:11:75:6c:76:b1:a8:
97:bd:75:df:e4:c7:ee:01:c2:24:ea:0f:c4:08:b7:
d3:33:41:2f:4b:88:2c:06:bf:70:1b:90:ed:10:c4:
39:d0:33:e1:cb:dc:b8:fd:8d:ca:33:aa:d3:40:6b:
c2:3b:cf:cd:c2:69:2b:f1:49:7d:d4:93:81:b5:8f:
f4:35:a2:cf:3b:47:da:8d:48:3a:7f:15:c1:6d:30:
fc:a5:5d:30:62:f2:f3:96:7f:ec:c2:17:d2:5f:d2:
27:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:17:D3:B9:87:7D:70:1E:45:95:B5:FA:7E:9B:30:77:8B:08:2B:28
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/nBfTuYd9cB5FlbX6fpswd4sIKyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
94:4c:02:66:c5:9f:99:09:8f:54:7c:6f:f4:6f:48:23:9c:6d:
3c:92:75:76:34:7d:aa:e5:94:69:d2:65:88:32:ad:98:c0:62:
86:dd:53:b3:c3:a1:8a:c8:be:79:4d:33:19:a1:e7:0a:b2:80:
84:95:a5:d2:45:92:ea:62:b3:06:39:0e:b6:e2:df:41:e4:e0:
b6:d9:ed:bf:15:12:fc:c1:c5:68:2d:18:46:d7:0d:2a:5c:d3:
3b:24:26:42:96:f4:c1:fe:84:04:26:c6:88:e6:b6:6b:5f:df:
58:a8:6e:71:a2:ff:91:12:c7:f2:e0:d0:8e:f7:6d:70:1f:a6:
79:7d:b9:33:88:8b:8b:5e:8f:36:9e:03:e1:a1:22:bf:63:79:
1a:67:95:d0:ed:6f:aa:9f:49:cc:f8:62:90:db:a6:38:38:f0:
62:59:88:ce:08:96:69:6c:eb:5f:89:9f:cc:72:89:36:7c:ef:
1a:65:f5:fc:0a:71:42:6e:02:2e:6b:69:04:b8:52:21:3b:16:
5c:3f:93:9e:bf:65:54:01:c6:44:50:87:22:77:aa:57:90:4b:
3d:e2:53:6d:dc:17:08:ef:cd:e9:2b:54:7c:f3:88:7a:67:ce:
7f:4b:13:33:64:f3:ed:a6:30:6c:d7:8e:14:ab:5d:65:d4:0b:
b7:e9:05:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:47 2023 by rpki-client on console-ams.rpki-client.org