Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/Mh0Cdq30e7Ro8GC_HWHX8-dzdMk.roa
File: Mh0Cdq30e7Ro8GC_HWHX8-dzdMk.roa (raw, json)
Hash identifier: 5duq2fhipe9MESFPwKvVHYKzk3i2QX7vKCJumKZnqZc=
Subject key identifier: 32:1D:02:76:AD:F4:7B:B4:68:F0:60:BF:1D:61:D7:F3:E7:73:74:C9
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 048CD25E
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/Mh0Cdq30e7Ro8GC_HWHX8-dzdMk.roa
Signing time: Fri 27 May 2022 20:44:13 +0000
ROA not before: Fri 27 May 2022 20:44:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.213.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76337758 (0x48cd25e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: May 27 20:44:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=321d0276adf47bb468f060bf1d61d7f3e77374c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5e:89:98:56:ca:f2:0a:7d:5f:73:3f:90:c9:
68:9f:dc:f0:a5:7a:cb:75:d6:6c:46:0b:f1:e9:9b:
ff:9b:d0:80:e2:9c:4b:04:0f:c5:d8:16:fe:32:fa:
b3:52:23:27:56:84:02:0a:94:50:0d:22:5c:76:3f:
7e:17:df:88:69:b6:c4:67:1a:0e:dd:cd:29:fe:da:
6e:c1:6b:d5:f0:d5:15:29:76:74:cb:3d:37:4f:a7:
d2:9d:05:36:4c:d1:45:10:2a:50:e6:e7:d2:58:0c:
9e:9a:a2:a3:b6:c2:eb:a7:d5:eb:93:f5:c7:6a:77:
e6:e2:5e:c0:dd:39:b1:63:0e:40:e0:15:80:9c:2a:
4b:8c:d3:46:8c:65:db:9c:80:fc:8d:cb:1b:1d:13:
c6:2e:37:52:7a:e2:fc:d5:23:c8:4e:c8:fb:ef:31:
4e:70:ad:99:94:09:4a:d6:88:01:7c:1d:a9:ed:aa:
a9:04:50:37:43:e5:06:fb:e6:29:31:8e:6d:32:18:
57:a7:f8:65:06:3c:6b:bc:7c:f0:cd:e6:a0:c9:67:
58:37:1c:e8:48:66:8a:5b:cf:ee:67:ba:45:92:3f:
57:06:d5:73:87:01:7b:45:b2:22:2d:ca:e0:0d:77:
de:ed:34:5e:89:e6:c0:3a:7b:9d:b2:69:60:1f:46:
ae:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1D:02:76:AD:F4:7B:B4:68:F0:60:BF:1D:61:D7:F3:E7:73:74:C9
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/Mh0Cdq30e7Ro8GC_HWHX8-dzdMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.243.0/24
Signature Algorithm: sha256WithRSAEncryption
68:db:b5:92:fb:d1:01:b7:ce:07:a2:fc:49:0b:04:5f:84:fb:
41:3d:b8:7a:8a:e7:e9:91:84:dd:ba:88:a7:23:a9:31:fe:87:
ab:28:ac:6c:3c:a7:09:55:92:9b:e2:09:4c:16:c1:c2:94:0c:
cb:71:56:19:c1:d5:8f:5d:91:82:5d:2d:42:c1:4a:fa:2b:11:
1a:12:0d:39:f7:dc:b9:04:6e:4d:d3:b5:49:4d:47:9d:29:3f:
43:ea:c9:3a:b9:d9:de:2b:9c:74:8e:5f:5f:ae:a6:9b:d3:61:
01:74:42:3f:a2:95:f2:e0:d7:e2:8e:34:a7:fa:2b:14:ee:60:
06:bb:61:84:1a:a4:67:b1:ca:81:ef:73:d8:62:f2:39:e4:b9:
58:a9:50:60:ed:50:ac:e2:e6:a0:bc:ee:84:ea:e8:0c:ce:53:
0f:1a:72:f3:21:2d:06:40:53:11:d0:7b:7f:81:50:01:b1:9e:
95:f9:6e:60:19:25:9f:39:c3:d1:d6:9b:e5:86:99:75:aa:bf:
ee:15:57:68:b3:16:7d:1f:f9:54:0a:1c:4b:70:2a:27:44:66:
d1:e3:f5:2e:40:ae:51:f8:bc:d2:c5:a4:62:8d:01:a3:cf:82:
07:5e:eb:04:74:c8:ad:da:7e:ba:4e:06:c0:1d:24:50:57:06:
68:60:82:5e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBIzSXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDg1Mzk3ZjI2YTA0NGNhZWY2YTZiNjY5Mjg3MzMxYWE0ZDY4NjQ1MB4XDTIyMDUy
NzIwNDQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzIxZDAyNzZhZGY0
N2JiNDY4ZjA2MGJmMWQ2MWQ3ZjNlNzczNzRjOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANteiZhWyvIKfV9zP5DJaJ/c8KV6y3XWbEYL8emb/5vQgOKc
SwQPxdgW/jL6s1IjJ1aEAgqUUA0iXHY/fhffiGm2xGcaDt3NKf7absFr1fDVFSl2
dMs9N0+n0p0FNkzRRRAqUObn0lgMnpqio7bC66fV65P1x2p35uJewN05sWMOQOAV
gJwqS4zTRoxl25yA/I3LGx0Txi43Unri/NUjyE7I++8xTnCtmZQJStaIAXwdqe2q
qQRQN0PlBvvmKTGObTIYV6f4ZQY8a7x88M3moMlnWDcc6EhmilvP7me6RZI/VwbV
c4cBe0WyIi3K4A133u00XonmwDp7nbJpYB9GrrECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQyHQJ2rfR7tGjwYL8dYdfz53N0yTAfBgNVHSMEGDAWgBRghTl/JqBEyu9q
a2aShzMapNaGRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lJVTVmeWFnUk1ydmFtdG1rb2N6R3FUV2hrVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvMTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8x
L01oMENkcTMwZTdSbzhHQ19IV0hYOC1kemRNay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
MTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8xL1lJVTVmeWFnUk1y
dmFtdG1rb2N6R3FUV2hrVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnV8zANBgkqhkiG9w0BAQsFAAOC
AQEAaNu1kvvRAbfOB6L8SQsEX4T7QT24eorn6ZGE3bqIpyOpMf6HqyisbDynCVWS
m+IJTBbBwpQMy3FWGcHVj12Rgl0tQsFK+isRGhINOffcuQRuTdO1SU1HnSk/Q+rJ
OrnZ3iucdI5fX66mm9NhAXRCP6KV8uDX4o40p/orFO5gBrthhBqkZ7HKge9z2GLy
OeS5WKlQYO1QrOLmoLzuhOroDM5TDxpy8yEtBkBTEdB7f4FQAbGelfluYBklnznD
0dab5YaZdaq/7hVXaLMWfR/5VAocS3AqJ0Rm0eP1LkCuUfi80sWkYo0Bo8+CB17r
BHTIrdp+uk4GwB0kUFcGaGCCXg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:50 2025 by rpki-client