Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/LFpRKGv8eJnI3BQ-GXJefNTRGaM.roa
File: LFpRKGv8eJnI3BQ-GXJefNTRGaM.roa (raw, json)
Hash identifier: SNT9ymgUEprkVc+xelTgvDJIU9J2OjpFVgwr6ceOqu0=
Subject key identifier: 2C:5A:51:28:6B:FC:78:99:C8:DC:14:3E:19:72:5E:7C:D4:D1:19:A3
Certificate issuer: /CN=fa545976a76f0d876ed90fd874837f55d03af534
Certificate serial: 094C8DF9
Authority key identifier: FA:54:59:76:A7:6F:0D:87:6E:D9:0F:D8:74:83:7F:55:D0:3A:F5:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/LFpRKGv8eJnI3BQ-GXJefNTRGaM.roa
Signing time: Sat 01 Jan 2022 14:00:48 +0000
ROA not before: Sat 01 Jan 2022 14:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199046
IP address blocks: 5.253.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156012025 (0x94c8df9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa545976a76f0d876ed90fd874837f55d03af534
Validity
Not Before: Jan 1 14:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c5a51286bfc7899c8dc143e19725e7cd4d119a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:0e:2e:aa:04:63:cf:cc:9d:9c:57:0b:e4:
db:2a:8e:bb:52:38:11:3a:d7:da:41:82:5c:3c:f9:
4d:3a:07:c8:06:12:08:bd:a6:b8:51:0d:d2:fe:e6:
da:84:fc:c2:87:63:36:4e:bd:31:7a:07:bb:3d:16:
32:bc:de:3a:21:49:3f:ee:26:96:48:c7:1f:b1:79:
59:67:ea:48:e8:62:b5:e4:b4:a0:98:14:e8:3e:1d:
df:cd:38:da:26:d6:80:eb:25:dd:72:9b:14:29:cc:
5c:33:43:9d:28:f6:7f:3b:37:7b:d0:74:ad:c0:b4:
a6:b5:af:87:6c:1e:66:dd:44:7b:8e:e7:43:07:c6:
88:fe:83:36:4a:73:65:35:18:e4:63:d6:8d:65:a1:
60:9e:cd:b0:1d:e5:41:76:65:c2:7c:50:f0:92:29:
8d:07:58:e6:d3:d8:17:da:f2:56:65:a0:d1:b4:95:
d6:1e:f7:47:01:d1:70:15:27:bd:28:bb:c9:d4:17:
90:d4:3a:c3:26:15:7b:8e:70:e1:b9:12:f2:3a:34:
d5:20:72:74:c4:03:da:76:06:c4:58:d0:0c:72:f8:
66:e2:71:54:da:dc:6e:71:41:59:64:29:93:92:ca:
7b:25:dc:d8:a9:4e:e4:51:53:38:d9:17:ed:18:25:
38:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5A:51:28:6B:FC:78:99:C8:DC:14:3E:19:72:5E:7C:D4:D1:19:A3
X509v3 Authority Key Identifier:
keyid:FA:54:59:76:A7:6F:0D:87:6E:D9:0F:D8:74:83:7F:55:D0:3A:F5:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/LFpRKGv8eJnI3BQ-GXJefNTRGaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.68.0/22
Signature Algorithm: sha256WithRSAEncryption
31:71:1e:8c:a7:54:c3:d1:32:4a:df:0d:22:75:45:a0:03:1b:
39:4a:95:42:6b:4c:ac:14:ca:ac:a5:4b:a5:26:e4:3f:8f:93:
fb:e5:79:23:34:ff:34:98:94:ba:13:ef:d2:22:b3:7f:c7:75:
86:22:f7:fe:93:0d:e9:27:0a:bd:5d:f9:fc:bc:4c:14:97:8e:
9c:73:7e:01:09:52:89:c8:fd:f0:0b:6e:e6:00:91:10:c8:88:
17:1b:db:c8:52:2d:a8:73:f9:86:62:43:76:8f:fe:fa:b1:cc:
0d:c0:6d:0f:bc:7b:49:e6:2c:d4:11:66:f6:14:44:dd:0a:66:
3b:b4:bc:9e:71:f1:88:4e:f6:8e:df:0c:30:f9:7e:0f:40:15:
53:c7:c0:b6:d0:b1:13:ec:e0:cb:6b:ed:69:e8:2f:49:e4:5f:
d5:a5:cf:85:eb:df:55:15:2f:a6:c8:37:10:42:3b:78:72:2b:
94:9a:1f:be:7d:92:fc:84:61:19:dc:4c:61:61:3d:df:54:9e:
ec:8f:e5:40:6e:ee:84:13:25:8a:64:aa:57:4e:f5:d1:21:18:
c3:3b:4e:d0:80:3c:81:27:5d:d8:a3:13:9c:0b:5d:cd:09:a9:
b4:e1:48:66:81:b7:24:81:8e:d3:93:69:4e:f2:74:c5:b8:2b:
ca:66:d6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:50 2023 by rpki-client on console-fra.rpki-client.org