Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/wYZLMfkFwvKRWkS-jjaFMx14nA0.roa
File: wYZLMfkFwvKRWkS-jjaFMx14nA0.roa (raw, json)
Hash identifier: z6Q0V0seqxTNNHp9MVmCUW69X7nZ0eCt5+neFrfQi0M=
Subject key identifier: C1:86:4B:31:F9:05:C2:F2:91:5A:44:BE:8E:36:85:33:1D:78:9C:0D
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 07796925
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/wYZLMfkFwvKRWkS-jjaFMx14nA0.roa
Signing time: Wed 25 May 2022 05:38:13 +0000
ROA not before: Wed 25 May 2022 05:38:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125397285 (0x7796925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: May 25 05:38:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1864b31f905c2f2915a44be8e3685331d789c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:34:5f:3f:ad:81:ae:37:52:b0:c2:28:f6:
07:30:c2:00:ed:fe:83:a1:6d:fd:e3:13:8b:20:69:
cb:dd:5f:f7:a0:cb:95:e3:5a:fc:29:88:de:53:7c:
ca:17:0c:c8:c3:35:19:49:3d:5f:29:6e:17:5f:ce:
d9:9c:f6:33:39:bb:e3:ff:f7:da:56:36:18:9e:b7:
c7:8c:5a:3b:b4:1d:95:35:04:29:e7:d3:fc:04:57:
af:ea:24:6b:3a:8a:f6:4f:17:10:e4:b4:ae:51:d2:
58:85:b3:b9:75:be:b2:6a:ce:71:9d:ff:3c:58:49:
3e:4f:59:7d:83:d6:10:ca:8e:c9:d8:11:7a:78:71:
5a:42:e0:4f:f1:fd:96:38:15:4d:94:2c:41:a7:9c:
c8:e4:51:9e:b4:b5:27:4e:32:22:30:3f:3e:cf:4f:
02:0a:47:b6:17:a5:8b:2b:83:b5:b5:51:5e:aa:bd:
0f:50:38:41:aa:1b:9f:bd:b0:52:b0:64:39:92:2d:
c0:3e:9b:16:b3:77:ec:36:e0:62:5b:c8:b0:b9:bc:
9b:1c:f6:01:38:7b:11:6d:b3:ac:93:b9:36:73:7c:
bb:3b:29:df:81:30:48:48:8c:d6:fe:01:a1:d3:1d:
b4:32:98:55:37:7c:9e:ab:3d:3d:0b:f7:6c:c7:ad:
93:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:86:4B:31:F9:05:C2:F2:91:5A:44:BE:8E:36:85:33:1D:78:9C:0D
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/wYZLMfkFwvKRWkS-jjaFMx14nA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
19:a0:4a:40:6f:c3:cb:25:22:5f:d6:b0:c8:a1:f9:e6:34:30:
b0:df:aa:16:a9:54:1d:c9:c2:0a:1b:cc:b6:77:5c:07:fe:3d:
b1:bd:04:9f:98:a5:88:ff:ec:bd:8e:c4:c5:5f:0a:2d:10:1a:
9b:c9:aa:5c:45:b9:ea:c0:9c:32:bc:71:63:cb:c9:1f:cf:cb:
62:6a:ff:ac:1b:52:9b:3d:85:6f:71:2b:f7:ed:0b:dc:cd:4b:
63:c9:ae:e2:ec:74:3a:b5:0d:76:21:e3:11:6e:77:5a:5b:a4:
a0:01:64:59:33:d9:c2:e6:26:74:1b:e3:70:9f:0d:76:c7:c3:
93:9b:6f:7c:5f:8f:89:06:75:44:24:fc:b0:ed:4c:8a:e7:69:
83:d5:d9:46:75:2b:01:53:cc:47:2c:69:97:c0:ef:09:31:0c:
c6:8b:ce:58:c0:c3:fe:79:79:20:3c:10:ce:3b:24:90:25:3d:
2a:bf:8d:b1:3d:07:86:1b:ae:aa:65:74:c5:3c:12:6d:af:e4:
b7:52:72:9c:71:6e:2e:2b:9c:22:4c:68:00:ad:38:c0:a3:22:
60:24:75:aa:00:e3:81:ba:e6:1e:bb:e9:66:36:c5:c3:82:67:
b6:95:7b:c1:3d:81:1d:f3:f4:e0:1f:9d:eb:7d:fe:24:ff:57:
0a:a3:38:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:36:23 2025 by rpki-client