Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/rHizMrXGR42UvvLxQOGXEwIqMA0.roa
File: rHizMrXGR42UvvLxQOGXEwIqMA0.roa (raw, json)
Hash identifier: KxQ0up/vZ5f1+6Hd8VihjslqV/lFiGSDGd/Q3Amw77Q=
Subject key identifier: AC:78:B3:32:B5:C6:47:8D:94:BE:F2:F1:40:E1:97:13:02:2A:30:0D
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 08DD3DA6
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/rHizMrXGR42UvvLxQOGXEwIqMA0.roa
Signing time: Tue 21 Jun 2022 05:02:44 +0000
ROA not before: Tue 21 Jun 2022 05:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148716966 (0x8dd3da6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 21 05:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac78b332b5c6478d94bef2f140e19713022a300d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ef:ad:e8:8c:2e:10:8a:43:e9:6b:26:15:8a:
98:45:c4:f2:e9:b0:c6:9a:26:d7:85:64:0f:11:86:
16:a2:3f:39:bc:e0:24:36:1a:d3:e9:05:86:f6:cf:
0b:a0:6a:4b:3b:47:7c:69:64:8d:13:8a:39:40:ea:
7d:0f:2d:e3:26:cb:58:60:45:11:ec:6e:61:39:e5:
e7:d6:18:22:d3:4e:92:c3:34:90:ae:b0:1a:46:48:
62:6b:08:fe:48:a2:38:04:b5:38:9e:e6:7e:d8:5d:
40:b7:3d:05:90:07:c9:ca:28:db:1e:28:ea:4f:a5:
53:90:47:21:26:48:a6:97:b5:de:84:85:13:36:f3:
0b:51:06:73:e4:2d:a4:04:46:31:7e:24:24:cb:b0:
f8:e1:75:c9:ff:b9:55:52:08:5d:a1:df:f8:fc:7f:
0a:f1:21:87:fc:a6:8b:d2:84:99:c9:1d:12:5a:f5:
0b:2c:66:2b:4b:69:67:ad:2a:92:b5:f8:9b:67:39:
b8:83:ee:0e:90:db:d3:a0:b3:a3:43:3a:d4:a0:7a:
71:10:e5:f4:55:fa:dc:7d:f3:55:6f:28:a7:09:71:
85:bc:6e:dd:16:10:b9:b2:21:41:08:53:c1:e8:ad:
6e:ed:2f:59:32:e3:cc:91:6d:d6:c7:cb:41:04:7e:
d2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:78:B3:32:B5:C6:47:8D:94:BE:F2:F1:40:E1:97:13:02:2A:30:0D
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/rHizMrXGR42UvvLxQOGXEwIqMA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
28:8a:c8:36:b3:fd:53:82:1e:5c:f0:af:40:ad:97:90:0c:da:
03:09:29:64:d7:fb:7a:25:73:33:17:f8:da:da:b4:e6:5e:15:
53:4d:52:1e:87:26:56:ae:44:61:bd:c4:57:66:49:f0:13:f9:
18:6d:69:d6:b6:70:60:04:83:c9:cf:52:82:f5:86:ba:48:43:
37:24:3a:27:94:3e:b3:54:1d:61:2d:fd:bb:bc:b0:28:5e:b8:
e6:59:a2:d5:86:46:79:53:40:c5:38:50:ce:fc:01:ad:62:8c:
82:de:ed:31:05:5d:35:ff:cb:91:b8:ff:b1:76:23:f8:ef:74:
6d:6a:b7:30:dc:7f:2d:43:32:67:39:29:3a:25:82:85:25:96:
02:f1:34:8e:b4:c1:9c:9b:22:fb:96:06:92:e0:d6:2e:9c:0a:
cd:d9:c8:b4:dc:5d:56:ef:74:b4:8e:35:47:91:6e:24:fc:50:
52:45:bd:b7:6b:f7:45:92:a3:a7:aa:cd:d8:f6:cc:e1:af:eb:
a4:8f:2d:35:8d:6d:56:1d:c3:f5:9f:5a:be:16:fc:47:c9:5d:
d8:c8:64:72:d6:b1:cb:d9:bb:c6:af:fa:dc:1a:b8:08:fb:47:
1b:8d:96:f3:11:a4:80:cb:f5:22:a3:d1:da:e9:2f:05:9d:fc:
8f:1d:30:1c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECN09pjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjNkYTZlOTljNjY2NTEzYTJjZWU1ZjBlMGQzYWI3NDVmMTY3ZGMzMB4XDTIyMDYy
MTA1MDI0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWM3OGIzMzJiNWM2
NDc4ZDk0YmVmMmYxNDBlMTk3MTMwMjJhMzAwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALLvreiMLhCKQ+lrJhWKmEXE8umwxpom14VkDxGGFqI/Obzg
JDYa0+kFhvbPC6BqSztHfGlkjROKOUDqfQ8t4ybLWGBFEexuYTnl59YYItNOksM0
kK6wGkZIYmsI/kiiOAS1OJ7mfthdQLc9BZAHycoo2x4o6k+lU5BHISZIppe13oSF
EzbzC1EGc+QtpARGMX4kJMuw+OF1yf+5VVIIXaHf+Px/CvEhh/ymi9KEmckdElr1
CyxmK0tpZ60qkrX4m2c5uIPuDpDb06Czo0M61KB6cRDl9FX63H3zVW8opwlxhbxu
3RYQubIhQQhTweitbu0vWTLjzJFt1sfLQQR+0psCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSseLMytcZHjZS+8vFA4ZcTAiowDTAfBgNVHSMEGDAWgBRLPabpnGZlE6LO
5fDg06t0XxZ9wzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N6Mm02WnhtWlJPaXp1WHc0Tk9yZEY4V2ZjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8x
L3JIaXpNclhHUjQyVXZ2THhRT0dYRXdJcU1BMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8xL1N6Mm02WnhtWlJP
aXp1WHc0Tk9yZEY4V2ZjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJfYIDANBgkqhkiG9w0BAQsFAAOC
AQEAKIrINrP9U4IeXPCvQK2XkAzaAwkpZNf7eiVzMxf42tq05l4VU01SHocmVq5E
Yb3EV2ZJ8BP5GG1p1rZwYASDyc9SgvWGukhDNyQ6J5Q+s1QdYS39u7ywKF645lmi
1YZGeVNAxThQzvwBrWKMgt7tMQVdNf/Lkbj/sXYj+O90bWq3MNx/LUMyZzkpOiWC
hSWWAvE0jrTBnJsi+5YGkuDWLpwKzdnItNxdVu90tI41R5FuJPxQUkW9t2v3RZKj
p6rN2PbM4a/rpI8tNY1tVh3D9Z9avhb8R8ld2Mhkctaxy9m7xq/63Bq4CPtHG42W
8xGkgMv1IqPR2ukvBZ38jx0wHA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:57 2023 by rpki-client on console-fra.rpki-client.org