Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/RYMcwgDuPUfL0kVryNbbkNLjz8I.roa
File: RYMcwgDuPUfL0kVryNbbkNLjz8I.roa (raw, json)
Hash identifier: /CtY6qij4gqU0h0N+ndaMohaJ5JpfFBAQv3ucuMf/WM=
Subject key identifier: 45:83:1C:C2:00:EE:3D:47:CB:D2:45:6B:C8:D6:DB:90:D2:E3:CF:C2
Certificate issuer: /CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Certificate serial: 096213EC
Authority key identifier: 4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/RYMcwgDuPUfL0kVryNbbkNLjz8I.roa
Signing time: Fri 01 Jul 2022 04:47:04 +0000
ROA not before: Fri 01 Jul 2022 04:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17660
IP address blocks: 151.216.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157422572 (0x96213ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3da6e99c666513a2cee5f0e0d3ab745f167dc3
Validity
Not Before: Jul 1 04:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45831cc200ee3d47cbd2456bc8d6db90d2e3cfc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e9:bc:fa:09:77:86:b1:18:f9:e4:30:f6:82:
b8:1a:61:f4:99:b0:95:26:ec:a1:18:d2:dd:06:1c:
db:de:4d:e8:b7:c4:6d:d0:39:0e:9b:8a:ca:25:54:
f0:f6:8f:95:c3:45:14:05:4b:78:8d:05:5d:3e:c1:
99:45:d6:cc:e4:b6:b0:d2:01:6c:95:ef:6a:46:03:
45:81:68:f7:96:eb:6a:29:36:35:c1:fa:47:b2:74:
ae:c1:7c:32:bd:96:66:93:cc:9b:ea:e1:6a:3c:b6:
b7:b2:2d:d2:14:bf:5b:b3:50:09:69:09:fe:92:82:
ea:91:f1:4e:95:62:74:e1:01:59:88:2e:3c:33:20:
70:ec:bb:f8:aa:a9:5f:8f:ee:02:4a:e2:f9:0a:f5:
2b:94:b5:73:cb:fc:ce:72:31:22:4b:e4:ed:47:4e:
56:01:12:dd:37:ff:ee:fe:1b:0a:39:26:db:33:20:
42:86:13:a5:a3:50:72:19:79:5f:6f:d9:33:50:6d:
55:78:6c:00:7e:3b:6d:98:0f:90:7e:a3:13:20:76:
7b:4e:2d:2d:80:24:67:75:40:1a:d9:35:7d:18:58:
c5:af:fd:b1:ba:8d:a1:8d:6e:67:76:7a:43:c0:db:
8b:f4:b6:00:df:7c:d7:1a:c5:aa:e8:72:27:1c:4b:
0d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:83:1C:C2:00:EE:3D:47:CB:D2:45:6B:C8:D6:DB:90:D2:E3:CF:C2
X509v3 Authority Key Identifier:
keyid:4B:3D:A6:E9:9C:66:65:13:A2:CE:E5:F0:E0:D3:AB:74:5F:16:7D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz2m6ZxmZROizuXw4NOrdF8WfcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/RYMcwgDuPUfL0kVryNbbkNLjz8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6f232e-2275-44e9-91c0-c7397a2669a9/1/Sz2m6ZxmZROizuXw4NOrdF8WfcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
31:4b:94:e7:27:fe:df:7b:4f:dc:34:9c:fe:f1:b9:84:ef:31:
30:1b:0f:6f:3d:e8:2e:f1:aa:fb:73:7f:a3:14:f1:92:49:90:
9c:96:09:fa:2b:ca:bb:d1:9f:47:de:ec:71:25:77:43:7d:60:
01:49:14:4c:5c:bd:23:2b:61:55:2b:a2:d7:fd:e3:56:47:c7:
3b:29:82:76:48:ee:1e:51:42:5d:5a:f4:fb:e3:29:06:12:20:
b4:dd:76:2c:f5:f7:b4:d7:c0:98:6e:b6:60:33:7c:a3:89:21:
4e:03:7b:aa:1b:7c:6c:cc:74:64:5c:d7:50:be:de:a3:5d:66:
4c:be:86:ef:c8:0d:10:bd:47:24:37:70:06:a2:f9:0a:63:d1:
36:c5:7c:32:5e:91:c7:2d:b4:25:9e:8c:74:2e:ed:f1:be:8f:
92:1a:1b:61:50:bd:46:4e:66:24:2c:4d:cf:b3:63:11:3c:24:
3b:81:fd:fa:96:3f:b5:75:07:7c:ca:4a:2c:6a:d5:a6:11:84:
5a:bf:31:ce:23:82:3c:a1:8d:18:b2:a8:dd:e3:01:a6:1c:01:
55:2c:36:56:6d:de:4e:c6:fe:13:9a:5f:45:ff:68:bf:59:74:
8e:88:12:24:58:2a:8f:7b:ae:89:59:f7:d2:bc:56:79:a6:78:
bf:e5:ad:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:47:40 2025 by rpki-client