Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/FqRLy1zf3mZmViVSrc_yes0bXS8.roa
File: FqRLy1zf3mZmViVSrc_yes0bXS8.roa (raw, json)
Hash identifier: JNr9idNrgGAGgDLeEtQnn9j61DwGrdRQJCMma6OqQq4=
Subject key identifier: 16:A4:4B:CB:5C:DF:DE:66:66:56:25:52:AD:CF:F2:7A:CD:1B:5D:2F
Certificate issuer: /CN=cc04ccbb587a6c2615c131b1b849130d9de92e41
Certificate serial: 01839DBDD92F6584D832E376F0E594528FEC
Authority key identifier: CC:04:CC:BB:58:7A:6C:26:15:C1:31:B1:B8:49:13:0D:9D:E9:2E:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zATMu1h6bCYVwTGxuEkTDZ3pLkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/FqRLy1zf3mZmViVSrc_yes0bXS8.roa
Signing time: Mon 03 Oct 2022 12:06:48 +0000
ROA not before: Mon 03 Oct 2022 12:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 5.42.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:bd:d9:2f:65:84:d8:32:e3:76:f0:e5:94:52:8f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc04ccbb587a6c2615c131b1b849130d9de92e41
Validity
Not Before: Oct 3 12:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16a44bcb5cdfde6666562552adcff27acd1b5d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0a:a3:12:b4:45:34:89:73:17:22:55:2a:70:
82:62:92:f6:48:13:e9:53:73:d3:02:b7:f4:4e:37:
75:6c:2e:c3:10:f1:a9:30:11:d2:02:2c:b3:b9:df:
76:49:e6:e6:18:62:1b:85:54:c1:29:a5:cc:f0:9b:
0e:e2:ee:0d:83:19:68:0a:29:7e:a0:05:7e:24:d6:
39:5d:5e:3d:d1:51:e9:fc:ba:6b:19:7e:e9:9a:f8:
7a:0d:ae:28:48:eb:05:e7:76:65:07:c9:75:80:14:
4f:bc:5a:72:89:6d:e0:e1:10:cc:a7:71:ab:4e:35:
09:6a:07:e9:7e:be:cd:39:9d:50:79:3f:ce:75:dd:
05:d6:51:c6:f8:58:6e:78:9d:7c:42:25:c2:76:f9:
5d:e6:ac:23:58:f5:b1:f5:94:f9:d1:16:05:40:a8:
d4:bc:4b:6f:68:52:fa:93:59:d0:e3:df:26:ea:c4:
6d:13:4c:34:81:58:7a:38:c0:1a:1a:d3:23:e9:67:
c8:da:ea:4c:aa:a2:9e:4e:64:4a:0d:91:7d:6b:4d:
68:0b:9f:4a:00:e4:ac:af:a6:6e:eb:f3:89:6e:fe:
76:ec:9e:df:70:26:5b:eb:89:29:19:d0:0f:03:3c:
e1:58:bf:8e:1d:6b:93:7a:04:13:4e:71:3b:b1:33:
53:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A4:4B:CB:5C:DF:DE:66:66:56:25:52:AD:CF:F2:7A:CD:1B:5D:2F
X509v3 Authority Key Identifier:
keyid:CC:04:CC:BB:58:7A:6C:26:15:C1:31:B1:B8:49:13:0D:9D:E9:2E:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zATMu1h6bCYVwTGxuEkTDZ3pLkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/FqRLy1zf3mZmViVSrc_yes0bXS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/zATMu1h6bCYVwTGxuEkTDZ3pLkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.216.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cf:92:3c:22:1c:ec:34:8f:12:91:fa:48:a0:38:5b:e0:3e:
4c:d2:d4:f0:cb:51:10:c3:6b:ab:42:4a:aa:78:f8:0b:5a:1d:
78:89:92:1f:25:cc:17:db:c5:49:e9:33:d6:7d:ef:74:4d:82:
96:1b:49:5e:a1:5f:93:46:d1:3d:ce:87:d6:7f:60:6e:a6:3b:
8f:20:01:7f:a8:88:7b:d5:02:ee:d6:5e:69:55:a0:1e:2f:4d:
f9:f2:81:4c:44:d2:0e:79:68:fe:98:d6:68:0b:5e:5a:c8:6a:
b5:2c:12:75:34:06:a7:96:80:46:58:6c:0b:2c:1d:3c:e1:5c:
28:0b:04:fe:5c:be:00:28:59:f0:0d:a0:9a:a3:0a:ed:cc:d6:
e4:f3:31:0f:0a:64:b8:ba:8b:1a:41:74:45:12:4a:dc:b9:f9:
1e:4f:22:6b:dd:33:5c:f6:06:58:35:b5:a4:15:07:38:5f:5c:
f9:67:84:67:4a:eb:17:d3:9b:e4:97:35:8b:3d:5a:67:e5:40:
85:5b:48:5c:f1:bc:67:09:8b:ae:f3:b8:26:83:89:36:d6:84:
b6:f1:69:9a:eb:57:72:2b:da:16:f1:e5:f7:07:0d:6e:56:f6:
4a:33:61:41:4a:c4:7e:27:1f:f0:e3:a8:d6:28:ef:a1:63:9d:
ab:c5:75:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:36 2024 by rpki-client on console-ams.rpki-client.org