Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/vG2m6bGQ97ywizRQgUsTV1BqO08.roa
File: vG2m6bGQ97ywizRQgUsTV1BqO08.roa (raw, json)
Hash identifier: FjYbRcqZRdJq8GGCEwzmoXMFSoHkIo9hsZbaKou9CCg=
Subject key identifier: BC:6D:A6:E9:B1:90:F7:BC:B0:8B:34:50:81:4B:13:57:50:6A:3B:4F
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 08E4380D
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/vG2m6bGQ97ywizRQgUsTV1BqO08.roa
Signing time: Wed 22 Jun 2022 02:19:44 +0000
ROA not before: Wed 22 Jun 2022 02:19:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23676
IP address blocks: 151.216.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149174285 (0x8e4380d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jun 22 02:19:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc6da6e9b190f7bcb08b3450814b1357506a3b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:13:d1:b1:29:97:d9:13:81:f5:ac:b6:56:
25:89:8b:77:37:7a:0b:44:43:da:49:ba:a2:1e:0c:
cd:0d:20:81:a2:73:59:2e:93:c7:fd:14:38:6f:22:
7b:8a:2e:c1:e0:c1:55:37:45:fa:0d:b7:36:12:1c:
20:b6:0a:fd:ce:62:70:b6:a6:0d:e4:8e:b3:74:14:
37:67:8d:52:bc:da:4e:0f:5d:1a:e7:d2:ca:38:1e:
7f:66:ff:96:1a:e9:4c:2a:94:f7:7d:70:af:c2:ae:
83:95:d4:a5:c1:77:a2:cf:8b:06:53:cf:1d:6e:e9:
d2:1f:ca:6a:05:2a:e4:22:0e:90:db:26:69:f6:f4:
af:52:9d:33:b2:05:25:9f:66:05:f8:8a:7d:38:31:
d9:4a:4e:17:3d:72:54:c5:96:50:38:72:f1:05:2f:
ab:7e:57:e4:16:4c:ca:57:79:93:3e:ed:a0:d3:7e:
ec:28:ea:bc:48:6f:9d:4d:36:55:45:5b:3a:fe:08:
97:9f:2b:ec:eb:79:7e:3c:7e:5e:d4:af:3e:87:d7:
6e:d2:3f:a8:55:70:7d:96:b0:64:7c:df:e2:52:0d:
0f:57:90:8b:50:9b:ab:5d:ec:ab:76:e8:26:09:a0:
fa:46:4a:e9:c1:f0:17:80:bd:5c:3a:66:91:fe:79:
88:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:6D:A6:E9:B1:90:F7:BC:B0:8B:34:50:81:4B:13:57:50:6A:3B:4F
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/vG2m6bGQ97ywizRQgUsTV1BqO08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.32.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f4:06:9c:94:86:76:02:b2:55:9c:fd:c0:46:6e:70:f6:93:
13:82:fa:6e:45:0b:32:f8:19:a4:1c:37:c8:97:dd:99:c2:f4:
f5:90:05:95:0f:94:0a:25:4c:0b:44:99:d3:7f:da:cf:1d:c1:
ca:d5:49:41:6b:92:19:f1:fa:3a:71:a0:f0:85:19:63:77:c1:
0b:b7:d5:96:49:d2:78:2d:31:5d:ef:f1:e1:ab:20:f1:60:61:
12:3d:46:64:74:ae:6e:3a:42:50:2b:e6:19:a3:46:44:89:bc:
e4:17:2c:33:92:7d:a8:1d:86:a5:32:74:11:52:d9:86:67:89:
09:39:0f:01:c2:3e:a6:df:68:df:e8:f6:b5:66:64:3b:05:c7:
2f:a9:47:97:a7:d4:c2:8e:7b:dd:e1:c5:9a:6c:71:2c:1b:52:
89:90:90:91:99:ec:99:e2:8d:16:61:4f:78:00:c1:ec:81:c0:
3d:67:b9:c1:d0:88:54:1e:90:54:d1:e6:94:0f:bc:2f:f3:7e:
a4:89:ed:12:b9:9a:bc:21:21:b9:06:36:63:e0:e4:6e:2c:a2:
c0:9b:12:6f:aa:23:62:cc:aa:dc:5c:28:35:ff:95:c1:6a:94:
a6:91:fc:ab:af:d4:91:dc:be:6f:54:54:16:ee:8c:c8:6b:08:
c4:52:b6:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:25 2025 by rpki-client