Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/drdz1XLrgV7LdoQwFFOUqyIn6bU.roa
File: drdz1XLrgV7LdoQwFFOUqyIn6bU.roa (raw, json)
Hash identifier: QqmkewT/aFnnJJJXj+oUM1H6MUsP9iDLpR1R5ZB+kVU=
Subject key identifier: 76:B7:73:D5:72:EB:81:5E:CB:76:84:30:14:53:94:AB:22:27:E9:B5
Certificate issuer: /CN=fa545976a76f0d876ed90fd874837f55d03af534
Certificate serial: 094C2933
Authority key identifier: FA:54:59:76:A7:6F:0D:87:6E:D9:0F:D8:74:83:7F:55:D0:3A:F5:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/drdz1XLrgV7LdoQwFFOUqyIn6bU.roa
Signing time: Sat 01 Jan 2022 14:00:48 +0000
ROA not before: Sat 01 Jan 2022 14:00:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57704
IP address blocks: 5.253.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155986227 (0x94c2933)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa545976a76f0d876ed90fd874837f55d03af534
Validity
Not Before: Jan 1 14:00:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76b773d572eb815ecb768430145394ab2227e9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0f:b7:9e:0c:95:e3:80:8b:6a:a5:34:0b:53:
6b:42:32:73:64:cf:20:15:17:1f:6e:32:78:16:a0:
9a:c0:7c:a8:d6:01:76:e3:e0:4b:ef:9d:a5:bf:55:
c2:47:10:66:64:5b:ae:d9:c9:ae:4a:b9:61:51:ff:
d2:a6:71:24:d9:d7:fa:7c:f7:f4:b7:c1:00:e2:2f:
3b:34:a8:18:f7:a2:45:87:a9:80:c3:84:55:fb:0b:
ab:cf:1a:b4:c2:39:f4:e6:72:f5:c6:33:7c:09:83:
38:fb:ef:b3:4a:80:77:54:12:9b:16:f3:29:bf:a7:
3f:df:be:d3:97:11:4a:57:2e:f5:37:91:55:29:37:
f8:87:cc:bf:32:5e:ac:a7:59:eb:39:d6:e4:cf:3a:
8c:9e:50:63:61:b8:82:37:d4:d1:4c:d0:f7:ff:c1:
72:37:6f:0d:84:b7:c8:85:33:ab:85:3a:25:ca:ef:
ce:a3:95:07:5f:a9:4b:6b:2e:7f:b9:21:57:a1:1c:
5e:26:66:cd:c3:74:e2:4c:aa:44:5d:9f:55:dc:4d:
b6:43:01:81:e7:07:dc:5e:52:98:f9:a5:3b:68:08:
0b:9a:18:f4:da:e5:e3:35:65:c3:ba:6f:96:99:8e:
8a:20:74:7a:9e:e3:39:11:46:18:e7:2d:74:34:71:
6c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B7:73:D5:72:EB:81:5E:CB:76:84:30:14:53:94:AB:22:27:E9:B5
X509v3 Authority Key Identifier:
keyid:FA:54:59:76:A7:6F:0D:87:6E:D9:0F:D8:74:83:7F:55:D0:3A:F5:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/drdz1XLrgV7LdoQwFFOUqyIn6bU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f1a2ff-b7af-422e-989c-64ecf3d0121a/1/1-lRZdqdvDYdu2Q_YdIN_VdA69TQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.68.0/22
Signature Algorithm: sha256WithRSAEncryption
21:66:42:1a:0a:4a:f7:56:9e:63:69:b2:07:ad:5f:69:7e:bc:
32:96:f2:f0:77:eb:b0:41:57:d5:24:4a:ad:16:3e:89:fd:27:
bc:9c:ba:a0:95:97:e9:0b:89:c1:3b:60:a2:69:b9:c3:a7:90:
c0:39:bf:b8:72:3f:3a:b7:51:9d:c3:0a:38:5a:fe:ae:aa:ff:
c4:4e:05:5b:72:0e:d2:75:e6:16:8f:b2:e5:b5:10:6e:5a:d5:
34:b3:eb:65:19:4d:b7:ab:93:cd:98:24:a6:ba:0d:37:63:82:
16:54:3d:b2:51:7d:14:f0:61:dc:e6:d2:0c:a7:32:50:7c:90:
56:3e:a6:b8:82:73:bf:c7:29:44:aa:f1:26:35:ee:a6:b1:d0:
8c:95:8f:39:51:2c:31:73:62:fc:fb:23:ed:b9:e8:af:af:50:
bf:a2:4f:e7:5b:53:d2:3b:5a:7f:2c:fc:f0:40:1f:b7:f4:56:
a9:d3:06:0e:e7:4f:e9:6e:49:3f:19:76:a6:4c:19:e9:f8:51:
2d:d1:dc:64:22:51:c0:f9:3d:29:51:6d:90:c2:c3:a6:bc:b2:
33:78:5c:df:a0:c7:e0:8c:f2:fa:32:cd:b2:0b:ba:18:59:2e:
f5:90:70:26:14:d2:ab:89:91:5e:f4:72:7c:42:7c:f8:69:a0:
e7:0f:af:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:04 2024 by rpki-client on console-ams.rpki-client.org