Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/FmJw1-cfPMORt7WEezpbTI-sito.roa
File: FmJw1-cfPMORt7WEezpbTI-sito.roa (raw, json)
Hash identifier: OQIyXCqWW0UFupDFBUZBH4oHue+ZolTknNyZkG20rVQ=
Subject key identifier: 16:62:70:D7:E7:1F:3C:C3:91:B7:B5:84:7B:3A:5B:4C:8F:AC:8A:DA
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01877000BB8F8F5E75280E703077A9DC6DD7
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/FmJw1-cfPMORt7WEezpbTI-sito.roa
Signing time: Tue 11 Apr 2023 11:08:28 +0000
ROA not before: Tue 11 Apr 2023 11:08:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 85.237.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:00:bb:8f:8f:5e:75:28:0e:70:30:77:a9:dc:6d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Apr 11 11:08:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=166270d7e71f3cc391b7b5847b3a5b4c8fac8ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7a:7c:7d:ca:f6:c1:39:00:06:a1:4f:e7:24:
5d:03:58:0f:4c:78:df:0a:61:9d:78:1d:c0:0c:0b:
9f:aa:a8:ed:9f:04:19:7f:66:e9:24:32:b6:8d:20:
c3:86:66:23:38:37:a6:a5:5c:6e:09:51:87:c4:34:
7f:9d:05:b4:28:cc:02:9c:b0:41:86:58:29:17:22:
3e:f6:78:67:79:62:5a:ab:a9:01:7d:62:5b:ef:d2:
39:2f:d0:b6:36:97:7d:30:dd:ae:1e:a8:5d:14:1b:
72:4b:c3:ed:6f:01:2c:8b:44:34:00:a9:8c:67:6e:
85:8a:48:fd:6a:e1:55:dc:40:42:e3:7a:d9:68:5b:
5d:44:62:d2:f7:15:b3:8d:b2:46:93:5a:65:bb:78:
c9:8e:69:cc:01:96:8c:44:a0:a8:53:53:24:47:f9:
d8:3c:76:03:79:45:e8:d4:10:aa:fc:7c:30:79:c8:
df:fc:bf:93:6d:7a:5b:0c:76:69:7d:24:dc:94:4b:
75:ee:e0:52:a8:53:67:c0:e1:23:12:b2:77:a4:f9:
ea:69:4a:80:96:1c:79:f1:53:54:b1:3c:1e:08:ee:
72:15:4a:04:4a:f5:2f:2c:18:64:05:0c:c6:4c:bd:
d0:17:77:fc:0b:6e:06:2e:0b:52:e8:21:de:f7:e7:
7a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:62:70:D7:E7:1F:3C:C3:91:B7:B5:84:7B:3A:5B:4C:8F:AC:8A:DA
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/FmJw1-cfPMORt7WEezpbTI-sito.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7e:91:6b:0f:ca:c6:f0:84:1d:cc:b4:18:ea:00:6b:ad:7f:
6f:c1:7a:8e:82:04:45:a1:62:4f:d9:86:25:c1:b0:28:c6:21:
d2:03:2b:c0:51:68:12:bc:ca:ea:53:e9:8c:88:78:93:28:9d:
fb:e7:35:bd:e3:f6:d1:6e:2f:0a:5a:75:ff:4f:89:12:54:2a:
f2:79:16:f6:fd:bf:96:8f:74:b3:06:8c:9e:c3:46:72:ae:50:
29:36:16:3c:37:35:23:3f:84:85:d3:f5:9d:01:0e:d7:ae:f2:
ee:6c:35:d5:91:4c:25:db:26:c3:65:5b:0f:ce:e7:b0:05:c6:
04:84:33:7b:15:75:03:f0:e3:68:0d:54:ce:c7:62:fc:e7:6a:
7d:98:8c:4a:0e:ec:65:5c:1b:14:41:35:fc:27:8f:38:35:5e:
8b:3e:90:b6:8f:39:b1:3f:bd:34:ae:b4:3f:79:c2:86:e7:b1:
53:90:ec:7b:0a:d7:90:86:9d:21:8c:ae:f0:c6:7c:23:6e:3a:
a6:90:15:da:6a:e7:0c:b4:fd:5d:b7:9b:92:e3:4e:1f:bd:58:
c8:b7:d8:8b:57:f9:59:1c:9a:f5:d4:41:7f:4f:e6:03:91:73:
85:b3:da:d7:79:70:67:df:d9:77:3d:8d:bd:c1:7e:9e:1e:5b:
b0:64:4e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:43 2024 by rpki-client on console-ams.rpki-client.org