Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/ilKXs-diCydUwvG2dEW3t4r3L4U.roa
File: ilKXs-diCydUwvG2dEW3t4r3L4U.roa (raw, json)
Hash identifier: lnye80P7bWeb7QzTTyRm7Je/2OnJRNc+9NmVcHVP6i4=
Subject key identifier: 8A:52:97:B3:E7:62:0B:27:54:C2:F1:B6:74:45:B7:B7:8A:F7:2F:85
Certificate issuer: /CN=b5bba209d4b1956b956569d72a43154448d4dc03
Certificate serial: 355E9ABF
Authority key identifier: B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/ilKXs-diCydUwvG2dEW3t4r3L4U.roa
Signing time: Mon 04 Jul 2022 20:59:17 +0000
ROA not before: Mon 04 Jul 2022 20:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 5.34.192.0/21 maxlen: 24
5.34.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895392447 (0x355e9abf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5bba209d4b1956b956569d72a43154448d4dc03
Validity
Not Before: Jul 4 20:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a5297b3e7620b2754c2f1b67445b7b78af72f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d5:7e:12:7d:d5:09:44:68:3f:f6:cf:8d:53:
80:a0:5d:50:e4:25:29:d9:90:ad:22:c8:0a:15:83:
29:4c:a7:8d:6f:7c:85:c8:00:c5:41:9b:16:82:52:
4a:18:2d:3e:b4:77:a3:7e:8c:2b:04:3d:0c:51:37:
56:bb:57:2d:76:37:b8:98:6d:0d:d7:0a:e0:38:2d:
74:51:06:88:d4:b9:27:ea:dd:ff:d5:6e:b1:7e:a0:
fc:3f:ef:5f:40:5d:89:30:a4:c5:cd:ae:78:93:38:
e2:44:45:f7:be:b4:da:fe:b4:75:51:3e:37:16:3e:
c2:c2:73:2d:34:9f:2d:9f:6d:39:bc:bc:cf:c5:f8:
07:9f:7b:21:8d:c3:91:e3:85:ec:17:e4:56:bb:93:
4a:e1:49:b8:0b:f5:61:c4:e1:05:66:7c:16:01:ed:
38:a8:25:6d:34:86:e7:d2:0a:c0:a9:f0:c0:ad:ad:
f9:87:75:4b:db:38:26:1d:a5:3b:f7:80:ad:dc:13:
6f:74:ec:10:ba:50:dd:38:eb:e7:ad:d2:68:e6:0d:
54:01:1b:0e:f6:1c:cb:0c:10:9c:91:03:7e:ee:29:
b5:f5:de:82:9b:c0:35:ba:72:02:c5:74:8b:54:f6:
74:dc:0c:b7:01:de:c2:a8:e2:fb:2d:0d:c7:5b:a9:
2b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:52:97:B3:E7:62:0B:27:54:C2:F1:B6:74:45:B7:B7:8A:F7:2F:85
X509v3 Authority Key Identifier:
keyid:B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/ilKXs-diCydUwvG2dEW3t4r3L4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/tbuiCdSxlWuVZWnXKkMVREjU3AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.192.0-5.34.203.255
Signature Algorithm: sha256WithRSAEncryption
55:87:cf:04:38:72:ef:ca:aa:53:99:20:5c:2e:07:bf:f1:55:
63:4c:15:cb:f3:b1:8e:68:14:a3:c4:2e:ef:c5:85:35:19:cc:
ae:82:d2:f6:b3:60:8c:ab:05:2c:48:af:5d:f5:4d:e9:eb:ea:
00:a4:90:10:61:9f:31:74:24:ac:95:38:58:ab:75:05:9f:81:
5a:a8:89:f9:63:79:5c:21:25:ce:da:51:0d:12:bb:19:df:dd:
95:8d:cc:3f:94:ec:14:9a:f1:7d:71:43:77:4b:7d:c5:a6:d6:
00:fc:25:7a:68:aa:a6:40:49:02:0d:1a:48:f3:00:2a:cb:2d:
17:f4:a7:c6:e4:3b:96:01:c8:cf:89:fc:60:a2:68:ec:eb:44:
07:77:4b:c8:a1:40:e4:d4:c8:6f:7a:bb:43:ee:0e:51:db:90:
0c:c7:a5:1c:e3:fd:71:96:42:75:52:83:3a:8a:64:5f:4c:4a:
2f:65:1f:68:c0:be:cb:e9:15:dd:66:97:a7:7d:05:61:13:fc:
de:5d:90:a0:84:e3:99:68:b5:c5:1d:31:6a:77:b4:e9:b8:ea:
35:16:0a:2a:3e:a2:37:ed:f7:b2:09:f5:e1:36:be:5b:8c:b3:
a0:6a:89:0f:ea:52:c7:fe:99:db:15:20:30:23:53:6d:1b:61:
35:bb:c1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:32 2024 by rpki-client on console-fra.rpki-client.org