Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/mh6Gt_cRrSNcIXpvvnYJAtTvPg0.roa
File: mh6Gt_cRrSNcIXpvvnYJAtTvPg0.roa (raw, json)
Hash identifier: FJp6LFTiVLBuGnJR/pw1AzR3NbAbfMOV7+2c7Qi+WiU=
Subject key identifier: 9A:1E:86:B7:F7:11:AD:23:5C:21:7A:6F:BE:76:09:02:D4:EF:3E:0D
Certificate issuer: /CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Certificate serial: 03B18D43
Authority key identifier: 24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/mh6Gt_cRrSNcIXpvvnYJAtTvPg0.roa
Signing time: Sat 01 Jan 2022 12:00:44 +0000
ROA not before: Sat 01 Jan 2022 12:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41531
IP address blocks: 185.214.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61967683 (0x3b18d43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Validity
Not Before: Jan 1 12:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a1e86b7f711ad235c217a6fbe760902d4ef3e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:93:8d:8c:18:75:eb:01:57:1d:01:e4:60:
06:c5:51:a3:d3:cd:61:4a:9a:c0:68:12:5a:ee:b2:
c2:0e:4a:d7:21:a2:94:2c:9a:b5:11:22:89:20:b8:
01:4f:fe:aa:3d:ed:8a:7a:49:87:8f:bd:53:a1:8c:
55:ab:7f:85:02:c3:d2:19:8b:06:4a:30:1d:20:dc:
17:6f:1b:00:0b:cd:4d:61:37:0c:63:c7:12:60:55:
9d:a3:ea:ea:33:d7:14:e4:22:f5:77:57:20:7c:19:
af:68:ac:b3:60:47:94:b3:e5:8c:ff:e5:e3:c3:e1:
34:5a:06:e8:db:07:02:85:cd:79:96:fe:e4:f0:10:
0d:e9:a4:f7:15:a1:fe:15:5a:91:a6:31:2a:ea:9b:
43:b1:19:d9:4c:1d:68:c4:19:a7:0e:cc:ce:d6:02:
1b:39:20:42:de:c9:03:30:8d:01:84:56:53:a7:02:
5a:76:4e:84:b9:07:e7:f7:bd:a6:44:a4:23:88:42:
63:cb:e5:2d:8a:7d:4b:66:a0:3e:9e:b2:00:cc:f7:
2d:99:d5:c5:02:72:f5:91:10:ce:0e:a3:24:6c:ab:
2b:13:fa:63:a0:0c:c5:59:a0:b2:be:2c:54:9a:ae:
e8:8f:16:ec:ec:fe:69:1d:0d:48:3c:36:58:a6:d9:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1E:86:B7:F7:11:AD:23:5C:21:7A:6F:BE:76:09:02:D4:EF:3E:0D
X509v3 Authority Key Identifier:
keyid:24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/mh6Gt_cRrSNcIXpvvnYJAtTvPg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.12.0/22
Signature Algorithm: sha256WithRSAEncryption
35:8d:58:00:a5:0f:c3:c3:90:7b:7b:7b:71:a8:13:b5:8e:37:
e6:7e:df:6f:45:62:e3:28:ee:db:c2:98:c1:35:96:53:65:25:
26:44:a8:cc:1b:6f:90:78:00:7e:90:5e:df:a8:26:0a:5c:a0:
ff:c2:f4:0e:9b:39:e5:83:17:88:a2:fc:b8:70:be:f8:a0:b7:
1b:3d:fc:15:70:83:6f:43:c9:f0:13:ec:55:2c:32:42:4c:af:
a7:88:31:e7:2c:ef:56:21:4d:39:56:74:b0:2b:6d:4a:52:ea:
b6:c2:99:28:d2:51:f9:da:2d:f9:cd:36:a5:af:28:82:cf:b4:
01:3e:9b:80:0e:a0:18:43:6c:32:16:fe:f0:00:b1:46:3d:4b:
3e:3e:da:d8:11:d4:79:b8:d7:c9:11:da:5f:a1:71:16:b8:9e:
51:b9:a5:8b:2e:ae:c3:33:e2:e0:e9:c7:04:97:57:d5:38:f0:
22:ba:bc:19:c3:06:8d:05:80:e0:ef:29:76:87:bd:1d:d9:fb:
8c:bd:af:3b:a1:55:b1:7e:c6:4b:37:71:ca:e7:2f:4e:75:1b:
e4:ca:eb:13:3e:fa:72:0a:5a:0b:e3:20:5a:9a:4b:47:55:5c:
72:1b:06:a6:b9:29:fc:0b:0e:6c:01:e3:6e:52:6a:9c:8e:86:
b6:90:5a:e0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7GNQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NGM2NDI3MmIwYjNhZWI4MTI1NDlkZWU3ZWM1OGEzZWFmNmZhNTc2MB4XDTIyMDEw
MTEyMDA0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWExZTg2YjdmNzEx
YWQyMzVjMjE3YTZmYmU3NjA5MDJkNGVmM2UwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALUrk42MGHXrAVcdAeRgBsVRo9PNYUqawGgSWu6ywg5K1yGi
lCyatREiiSC4AU/+qj3tinpJh4+9U6GMVat/hQLD0hmLBkowHSDcF28bAAvNTWE3
DGPHEmBVnaPq6jPXFOQi9XdXIHwZr2iss2BHlLPljP/l48PhNFoG6NsHAoXNeZb+
5PAQDemk9xWh/hVakaYxKuqbQ7EZ2UwdaMQZpw7MztYCGzkgQt7JAzCNAYRWU6cC
WnZOhLkH5/e9pkSkI4hCY8vlLYp9S2agPp6yAMz3LZnVxQJy9ZEQzg6jJGyrKxP6
Y6AMxVmgsr4sVJqu6I8W7Oz+aR0NSDw2WKbZQPcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSaHoa39xGtI1whem++dgkC1O8+DTAfBgNVHSMEGDAWgBQkxkJysLOuuBJU
ne5+xYo+r2+ldjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pNWkNjckN6cnJnU1ZKM3Vmc1dLUHE5dnBYWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvZTBkMGIyLTliOWEtNDdmOC04NGVjLTE0NjBjNzhlYTc1ZC8x
L21oNkd0X2NSclNOY0lYcHZ2bllKQXRUdlBnMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
ZTBkMGIyLTliOWEtNDdmOC04NGVjLTE0NjBjNzhlYTc1ZC8xL0pNWkNjckN6cnJn
U1ZKM3Vmc1dLUHE5dnBYWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArnWDDANBgkqhkiG9w0BAQsFAAOC
AQEANY1YAKUPw8OQe3t7cagTtY435n7fb0Vi4yju28KYwTWWU2UlJkSozBtvkHgA
fpBe36gmClyg/8L0Dps55YMXiKL8uHC++KC3Gz38FXCDb0PJ8BPsVSwyQkyvp4gx
5yzvViFNOVZ0sCttSlLqtsKZKNJR+dot+c02pa8ogs+0AT6bgA6gGENsMhb+8ACx
Rj1LPj7a2BHUebjXyRHaX6FxFrieUbmliy6uwzPi4OnHBJdX1TjwIrq8GcMGjQWA
4O8pdoe9Hdn7jL2vO6FVsX7GSzdxyucvTnUb5MrrEz76cgpaC+MgWppLR1VcchsG
prkp/AsObAHjblJqnI6GtpBa4A==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:37:05 2025 by rpki-client