Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/MbvG-b7Uj1AvQr6q_-VE7rsfPZc.roa
File: MbvG-b7Uj1AvQr6q_-VE7rsfPZc.roa (raw, json)
Hash identifier: SYpr34AbUK827TS99Nem/crzX1anI7e+0hqU8dIXGn0=
Subject key identifier: 31:BB:C6:F9:BE:D4:8F:50:2F:42:BE:AA:FF:E5:44:EE:BB:1F:3D:97
Certificate issuer: /CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Certificate serial: 01DFBDDE
Authority key identifier: 71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/MbvG-b7Uj1AvQr6q_-VE7rsfPZc.roa
Signing time: Wed 20 Apr 2022 14:56:12 +0000
ROA not before: Wed 20 Apr 2022 14:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 185.2.160.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31440350 (0x1dfbdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71e0b873cc1a78d43bb70319ffa5495057901a64
Validity
Not Before: Apr 20 14:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31bbc6f9bed48f502f42beaaffe544eebb1f3d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4e:94:c0:01:98:1a:7f:6f:69:c2:cb:fa:71:
60:16:44:71:59:25:e5:72:ab:8a:56:f7:d1:7d:5a:
37:aa:d8:d4:c7:09:d9:c3:33:1c:e0:6c:e5:7c:9a:
d2:1b:12:75:91:88:c0:47:14:18:9a:19:1b:94:94:
64:97:5b:82:01:a5:b1:e6:d5:15:c9:07:e3:c0:8e:
6d:bb:8d:2e:5d:86:63:5f:4d:a5:7a:90:d8:58:b1:
cc:74:b3:5d:00:26:50:c9:ef:bf:df:67:dc:c5:84:
75:0a:75:ef:11:82:bd:ab:f9:33:e4:32:b1:5e:aa:
0f:a1:d9:ca:b2:6e:25:02:70:19:9f:45:90:34:99:
95:26:b1:a1:38:e6:40:3a:2c:50:96:07:ce:9d:28:
af:d7:70:27:f5:5f:86:a6:2a:a9:b1:61:58:bb:71:
17:6e:d5:55:27:45:1f:82:dd:ef:a4:2a:52:95:27:
77:06:7e:64:a2:c0:34:05:89:60:d3:52:32:94:bb:
29:e0:e1:a6:ef:7a:6f:ce:54:2e:6d:48:93:ce:5e:
c1:77:e7:2a:e0:28:79:26:9e:fb:f4:12:dd:87:dd:
0f:b9:4f:c3:c0:8d:43:4a:d7:bc:d0:c1:b8:f0:ed:
d7:62:b8:74:7b:21:7a:e0:e4:a2:f9:33:24:d2:6e:
b7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BB:C6:F9:BE:D4:8F:50:2F:42:BE:AA:FF:E5:44:EE:BB:1F:3D:97
X509v3 Authority Key Identifier:
keyid:71:E0:B8:73:CC:1A:78:D4:3B:B7:03:19:FF:A5:49:50:57:90:1A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/MbvG-b7Uj1AvQr6q_-VE7rsfPZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cc2c-7ea1-4cbb-84d5-e0ca4d166f1f/1/ceC4c8waeNQ7twMZ_6VJUFeQGmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.2.160.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:61:a6:f5:82:dd:07:4c:91:43:a0:4c:3c:2d:54:7b:3c:b5:
de:40:c8:dc:86:39:51:9d:b5:3b:5d:91:85:a1:95:61:ea:23:
1e:31:68:b8:59:69:7a:a1:c0:a2:6f:08:51:ea:66:02:f3:42:
af:be:22:85:f1:ab:36:f3:37:0e:cb:8a:72:cf:ce:92:64:f6:
11:b1:09:84:e0:fb:a9:05:b7:bc:7d:d1:fa:ba:01:6d:f3:36:
c6:08:90:49:ff:e5:82:2f:4b:43:ca:f9:79:46:33:67:34:df:
0d:32:21:07:ea:d9:aa:02:4b:03:08:ef:8e:6e:43:0c:72:24:
90:bd:a1:f7:77:f0:72:f3:d8:35:a6:50:22:86:c2:90:06:43:
d8:52:46:1b:4a:68:e2:d2:aa:dd:ca:c0:33:40:72:da:29:55:
68:5d:a0:c9:f5:de:e0:24:7b:99:aa:d0:83:5f:ed:5c:a1:72:
8c:3d:45:ad:f3:7c:32:56:b0:4a:a1:e6:98:eb:db:f3:3e:b2:
08:47:8e:23:45:8d:33:32:eb:a6:77:a4:57:ee:46:66:e7:91:
86:27:85:81:fd:88:dc:40:e5:d5:92:90:70:36:b9:27:e0:75:
ca:28:a6:de:ef:77:64:a5:ed:05:4e:fa:7d:6e:b1:e4:54:da:
91:f5:3b:87
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAd+93jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MWUwYjg3M2NjMWE3OGQ0M2JiNzAzMTlmZmE1NDk1MDU3OTAxYTY0MB4XDTIyMDQy
MDE0NTYxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzFiYmM2ZjliZWQ0
OGY1MDJmNDJiZWFhZmZlNTQ0ZWViYjFmM2Q5NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ5OlMABmBp/b2nCy/pxYBZEcVkl5XKrilb30X1aN6rY1McJ
2cMzHOBs5Xya0hsSdZGIwEcUGJoZG5SUZJdbggGlsebVFckH48CObbuNLl2GY19N
pXqQ2FixzHSzXQAmUMnvv99n3MWEdQp17xGCvav5M+QysV6qD6HZyrJuJQJwGZ9F
kDSZlSaxoTjmQDosUJYHzp0or9dwJ/VfhqYqqbFhWLtxF27VVSdFH4Ld76QqUpUn
dwZ+ZKLANAWJYNNSMpS7KeDhpu96b85ULm1Ik85ewXfnKuAoeSae+/QS3YfdD7lP
w8CNQ0rXvNDBuPDt12K4dHsheuDkovkzJNJut+ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQxu8b5vtSPUC9Cvqr/5UTuux89lzAfBgNVHSMEGDAWgBRx4LhzzBp41Du3
Axn/pUlQV5AaZDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NlQzRjOHdhZU5RN3R3TVpfNlZKVUZlUUdtUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTIvMTBjYzJjLTdlYTEtNGNiYi04NGQ1LWUwY2E0ZDE2NmYxZi8x
L01idkctYjdVajFBdlFyNnFfLVZFN3JzZlBaYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIv
MTBjYzJjLTdlYTEtNGNiYi04NGQ1LWUwY2E0ZDE2NmYxZi8xL2NlQzRjOHdhZU5R
N3R3TVpfNlZKVUZlUUdtUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbkCoDANBgkqhkiG9w0BAQsFAAOC
AQEAX2Gm9YLdB0yRQ6BMPC1Uezy13kDI3IY5UZ21O12RhaGVYeojHjFouFlpeqHA
om8IUepmAvNCr74ihfGrNvM3DsuKcs/OkmT2EbEJhOD7qQW3vH3R+roBbfM2xgiQ
Sf/lgi9LQ8r5eUYzZzTfDTIhB+rZqgJLAwjvjm5DDHIkkL2h93fwcvPYNaZQIobC
kAZD2FJGG0po4tKq3crAM0By2ilVaF2gyfXe4CR7marQg1/tXKFyjD1FrfN8Mlaw
SqHmmOvb8z6yCEeOI0WNMzLrpnekV+5GZueRhieFgf2I3EDl1ZKQcDa5J+B1yiim
3u93ZKXtBU76fW6x5FTakfU7hw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:33:13 2025 by rpki-client