Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/Cok080lNDCaybvKWe4GT_e4T2fg.roa
File: Cok080lNDCaybvKWe4GT_e4T2fg.roa (raw, json)
Hash identifier: gLmqv3OUfOHXyniL8/hqBHI1COPu3ZKh0UNByZSngkM=
Subject key identifier: 0A:89:34:F3:49:4D:0C:26:B2:6E:F2:96:7B:81:93:FD:EE:13:D9:F8
Certificate issuer: /CN=b5bba209d4b1956b956569d72a43154448d4dc03
Certificate serial: 33A4F856
Authority key identifier: B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/Cok080lNDCaybvKWe4GT_e4T2fg.roa
Signing time: Sat 01 Jan 2022 06:59:29 +0000
ROA not before: Sat 01 Jan 2022 06:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15828
IP address blocks: 5.34.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 866449494 (0x33a4f856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5bba209d4b1956b956569d72a43154448d4dc03
Validity
Not Before: Jan 1 06:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a8934f3494d0c26b26ef2967b8193fdee13d9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:3f:ef:84:51:e1:20:2e:40:42:14:c7:79:
da:81:1e:ce:29:ba:3a:65:0c:67:45:91:d8:92:a4:
fb:04:ad:95:7d:7d:03:38:db:91:db:1b:28:90:8a:
60:36:3e:73:7b:36:2c:50:4b:8b:5f:1c:83:7d:27:
f3:b9:62:f1:aa:f1:91:e3:14:33:a7:5a:fe:84:32:
7e:c7:07:af:7d:40:ac:ee:38:4b:17:9d:d5:a2:ea:
13:d3:de:d1:dd:9c:f1:8a:e2:d2:ef:5b:da:d0:a0:
e5:a3:8e:40:98:1b:81:aa:7d:a1:fb:d4:52:e7:35:
81:ec:95:29:30:13:b7:02:96:3b:14:dd:42:cf:69:
ad:f2:ce:83:1c:09:6e:aa:b0:7c:7d:00:25:dc:c3:
84:fe:3e:7e:4a:ee:75:6d:c7:f3:62:ba:b3:20:88:
d4:08:a0:b8:4e:34:03:c5:7b:bd:60:d2:a4:8f:c5:
7e:91:12:7c:96:fa:54:05:7a:a5:fa:ba:d2:f2:38:
b4:6e:2f:68:9c:75:58:d4:70:12:42:86:be:7a:d7:
d4:fc:67:ca:6b:9d:1d:a4:b6:61:9e:36:99:33:ba:
fd:ba:e8:ee:ac:e3:3c:f5:9e:c7:15:ad:6f:58:26:
ea:07:aa:ac:9d:15:7f:70:be:1d:56:07:41:37:c6:
bc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:89:34:F3:49:4D:0C:26:B2:6E:F2:96:7B:81:93:FD:EE:13:D9:F8
X509v3 Authority Key Identifier:
keyid:B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/Cok080lNDCaybvKWe4GT_e4T2fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/tbuiCdSxlWuVZWnXKkMVREjU3AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.204.0/22
Signature Algorithm: sha256WithRSAEncryption
73:ec:e8:22:59:ee:30:0f:fb:1c:a0:c6:bc:6e:36:85:e9:c6:
1f:54:97:61:1e:c4:7b:74:ab:1a:22:a9:e5:a6:56:8a:dc:65:
30:fa:5b:9f:a3:c8:05:86:b8:17:a6:6e:64:d4:8a:a5:bf:76:
bc:7b:08:f5:d8:ad:2d:58:29:a2:34:c2:00:6a:27:1f:57:83:
2f:65:4f:69:cb:74:b9:06:ba:44:7c:a7:d2:af:cb:9a:ed:18:
4e:5b:cd:2f:fa:dd:f2:c9:42:bb:43:81:ed:03:c6:ca:17:36:
8c:61:05:83:69:78:92:eb:2c:87:8c:2e:91:97:c7:43:0a:10:
a8:60:8a:03:ac:66:84:b9:8b:76:f8:da:c3:c9:b8:7f:cb:0a:
65:66:8e:e5:87:93:b5:49:72:83:92:71:d0:c5:e6:8e:e9:a1:
a0:09:88:a7:d9:92:cb:21:59:34:4a:0c:25:82:b5:d6:50:5d:
cd:d6:04:db:27:e9:f6:b2:6b:10:82:71:c8:5b:98:0e:50:d4:
78:06:47:80:00:f1:00:f8:94:1c:f6:8a:db:83:35:0a:27:cd:
4a:be:42:07:9b:28:e5:46:87:dd:ac:94:c2:b4:e7:a8:04:55:
b4:99:0b:ff:37:da:91:5c:54:48:0c:e0:cd:1a:79:56:03:5c:
f3:1d:16:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:52 2024 by rpki-client on console-ams.rpki-client.org