Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/yCsJm1zEUKNFfTjmE4bcZRm69sw.roa
File: yCsJm1zEUKNFfTjmE4bcZRm69sw.roa (raw, json)
Hash identifier: 4B4XBuVssMFywfrIkoNW6PfULJrpzb+0sOlyth+bfvg=
Subject key identifier: C8:2B:09:9B:5C:C4:50:A3:45:7D:38:E6:13:86:DC:65:19:BA:F6:CC
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 0524D432
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/yCsJm1zEUKNFfTjmE4bcZRm69sw.roa
Signing time: Sat 19 Mar 2022 04:50:46 +0000
ROA not before: Sat 19 Mar 2022 04:50:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86299698 (0x524d432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Mar 19 04:50:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c82b099b5cc450a3457d38e61386dc6519baf6cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c7:ed:f1:f0:6b:fb:5b:aa:bc:a6:f6:65:94:
46:19:73:4d:a6:00:76:6c:05:ec:70:11:a7:de:87:
23:c0:d8:36:2f:ac:39:61:fd:8e:08:6a:9e:09:6b:
71:4e:8c:74:05:84:02:75:55:4a:b2:43:d4:70:f0:
89:8f:14:33:be:40:7d:54:a9:78:69:d4:39:19:1d:
c1:05:98:d1:09:cb:a1:ec:60:f2:fd:08:91:9a:46:
f5:b4:3f:0e:65:69:6f:ae:ae:f3:12:de:36:a4:f3:
dc:0f:45:11:bc:7f:2d:e4:66:05:f5:42:56:aa:08:
a5:27:cb:3c:1f:11:68:8e:2d:e4:46:7f:32:de:91:
a8:67:b4:60:80:d9:13:01:a5:0e:94:1c:73:2b:af:
f4:f3:2f:9f:22:e8:64:72:12:f5:23:87:d7:4b:bf:
34:a1:d7:21:1a:3b:91:16:8c:7b:cf:e7:d7:4d:fb:
86:d8:13:6a:d7:74:e4:a2:02:c3:2a:17:bb:58:c1:
34:27:27:86:70:cc:1e:d5:6b:a2:0d:96:83:ee:48:
d2:9c:a3:51:4f:d3:3e:05:14:b0:57:f2:f0:e8:48:
43:5e:9b:83:93:05:ac:0a:77:26:8a:d3:5c:a7:5a:
33:e5:63:aa:26:f1:7a:c0:16:ff:b5:84:aa:22:ab:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2B:09:9B:5C:C4:50:A3:45:7D:38:E6:13:86:DC:65:19:BA:F6:CC
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/yCsJm1zEUKNFfTjmE4bcZRm69sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
51:a6:a2:55:1e:0d:b9:1b:93:4a:71:e4:5c:ca:c3:c4:c3:30:
3b:fc:54:d5:88:29:47:61:60:b5:90:31:11:f4:a7:b9:17:97:
78:46:0e:56:4f:be:35:fe:5f:e7:38:cf:31:2b:d4:d2:e2:80:
4b:66:fd:c7:b1:35:2a:a5:b1:93:00:73:af:55:c1:54:4f:3e:
3f:bd:23:c9:0d:26:27:55:21:dd:a9:53:9c:e9:f6:9e:fb:79:
a3:39:12:5c:21:cc:d2:7a:00:de:f2:39:a5:cb:83:2f:83:37:
58:36:09:3b:d8:c8:04:90:76:70:61:2b:1e:b1:af:0e:b1:11:
74:f0:58:64:53:78:41:a3:6a:97:5f:68:22:81:bb:eb:72:58:
71:a4:0e:bc:69:6f:db:80:4b:04:09:ae:70:97:6b:d5:a6:e9:
08:5c:de:22:1c:32:2a:54:e7:1f:d9:53:2f:0c:1a:ed:82:92:
25:01:8f:ef:31:00:37:87:4e:a8:d3:a1:a1:54:a4:e0:33:58:
07:46:9b:a1:63:c2:e1:20:03:6d:2e:dd:4e:e6:ac:53:bb:de:
bc:23:f9:a8:72:ee:8e:e2:8f:e8:43:40:ba:df:2f:1f:ee:e4:
49:44:0c:5c:23:57:90:84:d1:94:6a:30:e1:48:37:ad:a8:d7:
ad:1c:df:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:21 2025 by rpki-client