Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/mnHgi1ZQffLq7O38J9cvkg3KXno.roa
File: mnHgi1ZQffLq7O38J9cvkg3KXno.roa (raw, json)
Hash identifier: vSDq9lTNGBVeXvNCDYG5aU4fveLYLQWUJ/V/UkFXeXY=
Subject key identifier: 9A:71:E0:8B:56:50:7D:F2:EA:EC:ED:FC:27:D7:2F:92:0D:CA:5E:7A
Certificate issuer: /CN=b5bba209d4b1956b956569d72a43154448d4dc03
Certificate serial: 35508818
Authority key identifier: B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/mnHgi1ZQffLq7O38J9cvkg3KXno.roa
Signing time: Tue 28 Jun 2022 09:03:02 +0000
ROA not before: Tue 28 Jun 2022 09:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15828
IP address blocks: 5.34.204.0/24 maxlen: 24
5.34.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 894470168 (0x35508818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5bba209d4b1956b956569d72a43154448d4dc03
Validity
Not Before: Jun 28 09:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a71e08b56507df2eaecedfc27d72f920dca5e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:29:5b:71:90:42:d6:81:43:6a:57:f6:6b:
7e:ab:5b:96:33:50:3c:8a:87:97:7e:56:79:a3:16:
87:9b:d5:28:52:cd:0c:4d:d1:82:7c:94:d0:52:35:
d0:fc:f4:da:b1:a0:cc:0d:95:23:60:a5:f9:3b:f1:
f5:3b:7e:05:c1:30:0c:11:d7:1b:33:ba:8e:32:87:
4d:bb:a3:a0:9e:32:77:e5:46:37:4e:89:cc:54:00:
ec:33:c8:dd:1e:88:45:56:c6:ff:d1:5f:57:a4:28:
d1:51:fa:40:bf:68:3c:94:08:6b:dc:11:01:70:0d:
30:16:86:78:73:6b:eb:23:92:d9:ca:0b:4d:8f:1c:
56:4b:53:e6:4d:07:ca:d5:78:90:ad:5a:7b:ba:64:
b9:63:0a:ee:9f:ac:e3:56:de:39:7d:71:62:20:53:
c2:1e:89:62:d7:5a:f3:0e:a5:62:db:7a:51:34:12:
3b:c2:d5:5d:18:c8:a2:30:55:f8:c3:c3:55:b3:5d:
15:3c:49:3c:cf:86:ea:d2:9c:78:b4:c8:71:f1:7f:
ba:87:ed:58:17:94:06:8a:cd:84:f7:a7:f9:3a:58:
df:f2:b4:75:84:e2:7f:39:f1:8e:16:59:a5:41:b9:
c5:86:be:f4:30:d7:44:4e:8a:54:be:b9:93:f7:e8:
6d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:71:E0:8B:56:50:7D:F2:EA:EC:ED:FC:27:D7:2F:92:0D:CA:5E:7A
X509v3 Authority Key Identifier:
keyid:B5:BB:A2:09:D4:B1:95:6B:95:65:69:D7:2A:43:15:44:48:D4:DC:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tbuiCdSxlWuVZWnXKkMVREjU3AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/mnHgi1ZQffLq7O38J9cvkg3KXno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/b49202-6904-42fb-86f7-746400ae2f5e/1/tbuiCdSxlWuVZWnXKkMVREjU3AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.34.204.0/24
5.34.207.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:d8:a0:62:c5:16:9e:a6:31:90:c1:a7:8f:21:30:65:3d:a5:
ac:bf:0c:06:58:0d:35:c2:75:56:0a:8d:4a:db:41:9d:f8:97:
b6:80:a9:8e:83:37:51:6f:04:6e:f3:d6:7d:bc:4e:36:43:56:
cf:d6:2b:79:5b:db:5c:3e:15:62:1f:69:0a:60:c8:3f:95:78:
f5:f7:ab:8d:22:44:ad:e5:29:19:ef:2b:97:48:b6:9d:4d:15:
77:77:04:4c:15:34:1a:d1:a1:4a:02:84:16:ab:16:a3:7b:c3:
e6:b1:0f:0b:44:a2:b6:19:c3:92:7c:04:85:2c:56:6f:f3:68:
41:69:be:31:97:3e:bc:e1:23:6d:15:17:dd:57:48:99:e8:05:
91:40:15:2f:ae:04:f6:1d:21:af:2c:45:6d:02:11:61:4f:4c:
2e:77:28:7f:30:54:62:f1:86:bf:d8:7f:ac:39:6c:e7:41:c0:
3f:ed:0b:6e:7c:6a:58:7c:92:be:fd:31:61:87:e4:74:ab:89:
13:36:47:a1:01:0b:f7:c4:3e:5f:fa:a2:c3:f6:8e:8d:ec:29:
a2:56:c4:97:58:0e:de:f8:54:1f:9b:fb:f0:6c:7a:a9:5d:ce:
fd:a3:61:b5:33:1f:18:c0:73:da:a4:60:2b:47:bb:34:84:34:
fa:e0:4c:fd
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIENVCIGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NWJiYTIwOWQ0YjE5NTZiOTU2NTY5ZDcyYTQzMTU0NDQ4ZDRkYzAzMB4XDTIyMDYy
ODA5MDMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWE3MWUwOGI1NjUw
N2RmMmVhZWNlZGZjMjdkNzJmOTIwZGNhNWU3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALS0KVtxkELWgUNqV/ZrfqtbljNQPIqHl35WeaMWh5vVKFLN
DE3RgnyU0FI10Pz02rGgzA2VI2Cl+Tvx9Tt+BcEwDBHXGzO6jjKHTbujoJ4yd+VG
N06JzFQA7DPI3R6IRVbG/9FfV6Qo0VH6QL9oPJQIa9wRAXANMBaGeHNr6yOS2coL
TY8cVktT5k0HytV4kK1ae7pkuWMK7p+s41beOX1xYiBTwh6JYtda8w6lYtt6UTQS
O8LVXRjIojBV+MPDVbNdFTxJPM+G6tKceLTIcfF/uoftWBeUBorNhPen+TpY3/K0
dYTifznxjhZZpUG5xYa+9DDXRE6KVL65k/fobYECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSaceCLVlB98urs7fwn1y+SDcpeejAfBgNVHSMEGDAWgBS1u6IJ1LGVa5Vl
adcqQxVESNTcAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RidWlDZFN4bFd1VlpXblhLa01WUkVqVTNBTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmEvYjQ5MjAyLTY5MDQtNDJmYi04NmY3LTc0NjQwMGFlMmY1ZS8x
L21uSGdpMVpRZmZMcTdPMzhKOWN2a2czS1huby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmEv
YjQ5MjAyLTY5MDQtNDJmYi04NmY3LTc0NjQwMGFlMmY1ZS8xL3RidWlDZFN4bFd1
VlpXblhLa01WUkVqVTNBTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAAUizAMEAAUizzANBgkqhkiG9w0B
AQsFAAOCAQEAuNigYsUWnqYxkMGnjyEwZT2lrL8MBlgNNcJ1VgqNSttBnfiXtoCp
joM3UW8EbvPWfbxONkNWz9YreVvbXD4VYh9pCmDIP5V49ferjSJEreUpGe8rl0i2
nU0Vd3cETBU0GtGhSgKEFqsWo3vD5rEPC0SithnDknwEhSxWb/NoQWm+MZc+vOEj
bRUX3VdImegFkUAVL64E9h0hryxFbQIRYU9MLncofzBUYvGGv9h/rDls50HAP+0L
bnxqWHySvv0xYYfkdKuJEzZHoQEL98Q+X/qiw/aOjewpolbEl1gO3vhUH5v78Gx6
qV3O/aNhtTMfGMBz2qRgK0e7NIQ0+uBM/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:52 2024 by rpki-client on console-ams.rpki-client.org