Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/9DVH9Z4ibR2tycVtTuKwm1kCuQQ.roa
File: 9DVH9Z4ibR2tycVtTuKwm1kCuQQ.roa (raw, json)
Hash identifier: pZ0iJwGrjgOyu+sNnkMvfSQHOT2/2hxXNLmE9/299AQ=
Subject key identifier: F4:35:47:F5:9E:22:6D:1D:AD:C9:C5:6D:4E:E2:B0:9B:59:02:B9:04
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 05A191CB
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/9DVH9Z4ibR2tycVtTuKwm1kCuQQ.roa
Signing time: Tue 05 Apr 2022 16:40:42 +0000
ROA not before: Tue 05 Apr 2022 16:40:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3970
IP address blocks: 151.216.4.0/24 maxlen: 24
2001:7fc:2::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94474699 (0x5a191cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Apr 5 16:40:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f43547f59e226d1dadc9c56d4ee2b09b5902b904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:30:af:55:a4:c9:a0:03:54:8d:b6:78:31:e8:
08:50:62:aa:b4:3f:1b:64:7e:ce:8f:f0:c6:4d:29:
4a:b4:80:cd:a1:6b:11:4f:97:1c:4a:4a:fd:42:75:
26:ee:04:23:ae:1e:5e:55:a2:d4:08:b5:18:6b:98:
a5:e8:35:57:a0:ed:3b:6f:f9:d0:02:61:4f:9d:eb:
2f:e0:0f:7e:55:32:75:94:c9:69:6e:e0:3f:d0:a6:
36:f5:05:3b:ab:3a:30:75:9a:de:03:1d:e9:42:d2:
25:39:e1:30:6f:0a:04:2b:88:a6:6c:5f:f6:2a:a8:
fd:2b:ff:2f:fc:8e:e5:64:8d:61:2a:77:79:ca:fc:
2a:de:c8:02:8a:11:48:d3:f5:1e:c2:5a:93:3d:b7:
62:56:88:8f:ae:62:85:04:e2:0b:c0:8d:8a:30:01:
41:a0:fb:24:0c:e6:19:46:4a:59:49:31:05:c1:70:
4f:1f:1e:e8:48:ed:38:85:a2:45:fa:c5:ab:24:e9:
31:e7:1f:6f:ec:01:c8:c4:b8:78:9f:c4:bf:b0:9f:
68:a4:60:e5:5e:25:55:be:0f:09:8a:93:d8:3c:69:
b2:1b:55:ed:0e:c7:51:bf:fc:39:e3:8c:9d:0b:f6:
c3:e4:2b:15:6a:f3:41:13:9c:8a:bb:9e:8f:d5:7c:
08:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:35:47:F5:9E:22:6D:1D:AD:C9:C5:6D:4E:E2:B0:9B:59:02:B9:04
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/9DVH9Z4ibR2tycVtTuKwm1kCuQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.4.0/24
IPv6:
2001:7fc:2::/48
Signature Algorithm: sha256WithRSAEncryption
27:11:66:b1:2b:aa:bb:43:cb:86:c1:82:9d:23:ab:f4:9a:f9:
da:fb:55:e8:5e:36:05:11:31:50:67:cd:e3:4a:65:2b:2a:e1:
1c:2d:58:9a:82:99:30:18:68:8d:9f:65:59:2f:8d:0a:b2:84:
13:ab:27:40:56:41:d6:b9:bb:de:66:38:04:46:7a:33:ab:36:
51:6e:ef:3d:ba:3b:48:ff:01:2f:ba:36:4c:9d:d5:89:4e:e6:
c0:5c:30:13:7d:38:ab:a1:cd:49:f5:23:be:d8:ab:4a:dd:59:
1d:76:b6:1c:60:23:ac:91:24:1a:b6:27:d1:8c:e0:ce:3b:3d:
39:12:1e:b6:d9:d3:c6:17:97:25:b1:a4:e4:0a:78:b9:e3:56:
60:19:07:cf:97:2a:f4:56:e1:05:d6:c0:cf:e3:90:7b:9b:d2:
00:41:b8:b0:3e:0e:93:f0:b2:7f:ea:32:39:37:f5:14:9a:c8:
48:8f:35:b0:82:44:e6:a9:9e:65:59:fa:6c:98:21:18:9d:3d:
8f:e8:7f:ec:1b:53:80:e9:82:4c:e6:a4:46:30:8f:0f:52:ea:
ab:33:00:8e:bd:ec:ba:3c:9e:f2:23:3a:b9:fd:22:f8:3a:b7:
55:f8:7d:9f:f2:b1:dc:b9:8b:ca:41:52:12:bb:b7:0e:05:c6:
a7:f8:d6:98
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBaGRyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YjNkYTZlOTljNjY2NTEzYTJjZWU1ZjBlMGQzYWI3NDVmMTY3ZGMzMB4XDTIyMDQw
NTE2NDA0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjQzNTQ3ZjU5ZTIy
NmQxZGFkYzljNTZkNGVlMmIwOWI1OTAyYjkwNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMcwr1WkyaADVI22eDHoCFBiqrQ/G2R+zo/wxk0pSrSAzaFr
EU+XHEpK/UJ1Ju4EI64eXlWi1Ai1GGuYpeg1V6DtO2/50AJhT53rL+APflUydZTJ
aW7gP9CmNvUFO6s6MHWa3gMd6ULSJTnhMG8KBCuIpmxf9iqo/Sv/L/yO5WSNYSp3
ecr8Kt7IAooRSNP1HsJakz23YlaIj65ihQTiC8CNijABQaD7JAzmGUZKWUkxBcFw
Tx8e6EjtOIWiRfrFqyTpMecfb+wByMS4eJ/Ev7CfaKRg5V4lVb4PCYqT2DxpshtV
7Q7HUb/8OeOMnQv2w+QrFWrzQROciruej9V8CB8CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBT0NUf1niJtHa3JxW1O4rCbWQK5BDAfBgNVHSMEGDAWgBRLPabpnGZlE6LO
5fDg06t0XxZ9wzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1N6Mm02WnhtWlJPaXp1WHc0Tk9yZEY4V2ZjTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvNmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8x
LzlEVkg5WjRpYlIydHljVnRUdUt3bTFrQ3VRUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
NmYyMzJlLTIyNzUtNDRlOS05MWMwLWM3Mzk3YTI2NjlhOS8xL1N6Mm02WnhtWlJP
aXp1WHc0Tk9yZEY4V2ZjTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAJfYBDAPBAIAAjAJAwcAIAEH/AAC
MA0GCSqGSIb3DQEBCwUAA4IBAQAnEWaxK6q7Q8uGwYKdI6v0mvna+1XoXjYFETFQ
Z83jSmUrKuEcLViagpkwGGiNn2VZL40KsoQTqydAVkHWubveZjgERnozqzZRbu89
ujtI/wEvujZMndWJTubAXDATfTiroc1J9SO+2KtK3VkddrYcYCOskSQatifRjODO
Oz05Eh622dPGF5clsaTkCni541ZgGQfPlyr0VuEF1sDP45B7m9IAQbiwPg6T8LJ/
6jI5N/UUmshIjzWwgkTmqZ5lWfpsmCEYnT2P6H/sG1OA6YJM5qRGMI8PUuqrMwCO
vey6PJ7yIzq5/SL4OrdV+H2f8rHcuYvKQVISu7cOBcan+NaY
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net