Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MsGSVtInMRg8oZYvxabQ4tMQyAU.roa
File: MsGSVtInMRg8oZYvxabQ4tMQyAU.roa (raw, json)
Hash identifier: gyCmpbJEiczzfF82roavpKtkiIQasPOpBk3AwHCpmOI=
Subject key identifier: 32:C1:92:56:D2:27:31:18:3C:A1:96:2F:C5:A6:D0:E2:D3:10:C8:05
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0186E4CAE4F9139E95FFC6D2B752E7E6C230
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MsGSVtInMRg8oZYvxabQ4tMQyAU.roa
Signing time: Wed 15 Mar 2023 10:22:27 +0000
ROA not before: Wed 15 Mar 2023 10:22:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 85.237.206.0/23 maxlen: 24
85.237.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:ca:e4:f9:13:9e:95:ff:c6:d2:b7:52:e7:e6:c2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Mar 15 10:22:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32c19256d22731183ca1962fc5a6d0e2d310c805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4c:d8:ee:8f:bb:46:04:34:46:e2:3e:98:75:
ff:60:c7:ed:79:b1:62:71:10:39:8b:91:12:3f:73:
12:4c:ee:22:c7:4d:aa:fd:39:7e:3f:d0:bc:c3:b3:
f7:d9:36:84:56:d9:e2:5a:76:15:e3:16:1d:93:63:
8b:dd:5c:29:d4:8a:76:82:ef:8c:df:c2:9f:54:dd:
8c:44:13:d9:f1:51:63:5f:2d:8f:eb:7a:29:d3:01:
23:b7:bf:c5:49:e8:bf:11:76:05:55:f0:2c:18:24:
71:2b:1f:92:be:14:cc:8a:86:2c:54:5f:3a:a3:b5:
e3:87:d3:38:35:d8:51:5d:7a:12:e1:c3:0d:fb:3a:
0b:f4:fb:db:f5:10:5c:8a:fa:c1:8e:6a:d1:59:9b:
c2:38:a3:3c:b9:cb:34:dd:cc:2e:ec:93:9f:85:53:
d4:24:9b:ee:35:f5:63:d0:d1:a4:0f:9c:54:fb:2c:
74:d3:48:2a:5e:e7:10:61:ea:e4:1e:ab:dc:62:7b:
b7:11:e1:8c:ab:8c:f1:3f:83:8f:bb:2d:06:46:18:
75:3a:7a:67:23:c6:14:3c:2f:0d:20:12:b2:7a:20:
31:61:be:00:e8:4d:70:07:08:a0:54:49:ce:cd:51:
25:cf:dc:21:04:3d:73:e4:5c:d6:cd:1b:1b:7e:1b:
06:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C1:92:56:D2:27:31:18:3C:A1:96:2F:C5:A6:D0:E2:D3:10:C8:05
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/MsGSVtInMRg8oZYvxabQ4tMQyAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.206.0/23
85.237.211.0/24
Signature Algorithm: sha256WithRSAEncryption
52:2b:06:0e:5f:f6:41:4e:2d:51:97:83:03:4b:b4:59:9e:ee:
db:53:bf:af:b9:3c:57:30:52:de:fd:da:b9:81:78:3c:10:97:
84:f7:c7:a3:9b:cc:73:44:35:ef:12:1a:47:1c:8e:98:1c:b7:
66:d7:e5:e8:78:e1:9f:de:15:f9:48:98:95:c6:8e:6d:42:0a:
cf:e8:b7:d0:04:d5:e8:74:c4:50:1b:0a:58:c7:30:f8:c4:0d:
ae:da:6b:76:1f:83:34:83:2a:3b:5e:79:20:9f:1f:b8:b6:78:
49:0b:33:86:d0:8b:ea:16:5b:49:bc:f4:cc:eb:8b:b5:92:89:
4d:cb:0c:3a:14:6c:09:4f:83:3f:69:13:1e:00:fc:6d:57:07:
6e:65:77:eb:43:08:e2:72:a9:69:04:73:ab:3f:4e:95:ec:69:
49:46:ac:7d:0d:2f:06:81:7e:52:89:f6:18:0a:fb:a1:62:ef:
1e:22:c2:a5:f3:c9:90:72:68:d9:07:0f:22:22:91:d2:cb:eb:
ad:23:66:a0:31:0d:bc:3e:89:dd:9f:dc:dd:4e:ea:a3:fe:c6:
0b:f4:5c:f3:55:52:83:0d:e3:51:b4:c3:c3:7a:d3:c5:a2:36:
fd:50:46:aa:5c:b7:b6:c0:c0:f8:1f:18:50:c8:85:f2:cb:5a:
bc:57:74:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:43 2024 by rpki-client on console-ams.rpki-client.org