Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/zWT7QbfCqoJBwOPNXYBwgEjC3qo.roa
File: zWT7QbfCqoJBwOPNXYBwgEjC3qo.roa (raw, json)
Hash identifier: BImg7LcpK5kHtIAg2fHgka/6drlQ1pAtsBFh0QZpUGQ=
Subject key identifier: CD:64:FB:41:B7:C2:AA:82:41:C0:E3:CD:5D:80:70:80:48:C2:DE:AA
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 05B9CDE0
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/zWT7QbfCqoJBwOPNXYBwgEjC3qo.roa
Signing time: Fri 08 Apr 2022 09:08:11 +0000
ROA not before: Fri 08 Apr 2022 09:08:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
151.216.5.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
2001:7fc:3::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96062944 (0x5b9cde0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Apr 8 09:08:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd64fb41b7c2aa8241c0e3cd5d80708048c2deaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:33:fe:e7:83:95:d8:d0:10:95:cc:33:86:
07:4a:17:c4:7f:70:d9:f0:04:e9:c4:14:a2:26:a3:
33:3f:e5:83:17:37:33:0d:68:1c:32:e4:e9:db:5b:
56:21:9d:19:a8:f1:62:7b:3d:d7:b3:a6:72:17:9e:
34:57:b9:0b:58:fe:81:a8:99:a8:19:4d:9d:34:47:
6b:82:42:ae:2c:97:6c:ec:bb:a9:f8:26:f7:e5:83:
40:29:10:6f:e3:da:68:46:c0:db:20:58:24:bf:48:
dd:9b:f5:11:8f:4c:37:59:8e:74:cf:8b:45:09:dc:
06:7f:54:06:03:c8:8a:9d:a3:69:78:f0:42:d1:62:
18:97:4c:06:c6:89:b8:29:6f:8e:22:a0:4d:dc:51:
37:ec:84:f2:96:d1:28:b3:85:c6:fc:6a:2c:3f:1f:
79:40:9f:0c:5a:12:d9:b0:ba:3d:31:99:44:54:c9:
10:8b:fe:ca:19:9b:7a:e4:66:88:82:77:dc:f4:ef:
47:55:f7:35:5d:2d:cb:d9:c5:f9:bc:fc:7e:00:70:
03:0a:8d:7b:a3:0e:13:26:1b:d8:b4:22:57:6b:50:
a5:72:45:7f:59:77:44:5a:d2:02:0b:ab:06:40:3e:
39:ea:7c:90:9f:c7:b7:72:28:e7:97:b1:81:c6:a0:
d6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:64:FB:41:B7:C2:AA:82:41:C0:E3:CD:5D:80:70:80:48:C2:DE:AA
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/zWT7QbfCqoJBwOPNXYBwgEjC3qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/23
IPv6:
2001:7fc:2::/47
Signature Algorithm: sha256WithRSAEncryption
11:99:64:ad:f9:58:ef:ee:60:5c:e1:7a:a9:ae:e2:b2:d2:f8:
fb:2d:9c:cf:ac:89:a4:3b:b9:00:d3:f9:4f:5d:06:39:7a:0e:
76:de:c5:cd:de:61:aa:6c:d2:04:dc:98:d8:24:79:99:f3:77:
86:a3:47:d6:44:8a:22:25:7e:e5:b5:d8:b4:20:f6:ba:a7:3b:
71:53:32:65:55:06:33:f6:2c:bd:b6:32:72:ca:b3:83:36:34:
9b:0b:61:8d:05:88:06:96:91:cb:13:d1:fb:6e:43:39:5d:8d:
d3:ff:39:f6:e7:3d:f3:6e:87:7f:e4:18:16:9e:9a:4f:ec:00:
59:fc:83:e2:a2:71:cd:0f:85:58:79:33:10:b8:3e:4c:96:8b:
1e:93:88:08:d2:91:c5:6d:76:98:3d:4b:e2:12:d3:cf:b1:7a:
9a:0c:22:9a:4f:7b:fc:65:b9:5d:ff:72:79:66:2f:68:f3:90:
08:7b:d8:81:35:f4:79:00:71:d8:f2:ad:15:1f:34:ad:47:13:
b6:90:e6:99:22:a4:92:d5:89:af:fc:ff:ad:02:5b:c1:7a:87:
61:ae:3c:ea:6f:5a:2e:3f:f4:52:57:85:92:77:bd:3c:f8:6a:
aa:77:ad:75:0e:78:06:46:db:db:39:64:19:be:f6:a8:51:ea:
9e:75:73:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:47 2023 by rpki-client on console-ams.rpki-client.org