Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/MVj_UryY6usDMGQf7jrICRKU9Xc.roa
File: MVj_UryY6usDMGQf7jrICRKU9Xc.roa (raw, json)
Hash identifier: TvJrrNTxB79t+M5iqPy3C87lEZr00PLUFyfmpQY3E3Q=
Subject key identifier: 31:58:FF:52:BC:98:EA:EB:03:30:64:1F:EE:3A:C8:09:12:94:F5:77
Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Certificate serial: 01942521AB5B58857C7EF969A1A1E7AA6B43
Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/MVj_UryY6usDMGQf7jrICRKU9Xc.roa
Signing time: Thu 02 Jan 2025 03:49:10 +0000
ROA not before: Thu 02 Jan 2025 03:49:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202551
IP address blocks: 185.160.208.0/22 maxlen: 22
2a07:c000::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:ab:5b:58:85:7c:7e:f9:69:a1:a1:e7:aa:6b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Validity
Not Before: Jan 2 03:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3158ff52bc98eaeb0330641fee3ac8091294f577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d7:ed:be:43:90:48:2c:fe:da:a7:62:02:82:
76:30:35:b8:2d:a7:ab:9e:ed:1e:f4:6f:21:e9:aa:
35:6a:17:e7:fd:c0:21:c3:1d:cd:81:93:2a:62:a3:
5d:7a:a1:18:41:8f:76:ce:ec:46:87:67:7c:7f:30:
92:54:56:c2:e8:f8:2e:cc:ed:9b:76:c0:ee:99:fc:
bd:3a:93:c0:bc:46:cd:16:f8:d8:5b:3d:08:cb:5e:
1f:1e:a4:ae:27:a6:06:54:05:2f:70:4c:e2:e0:f6:
1c:13:9d:59:c9:86:a9:a7:82:41:bf:52:09:d0:b5:
03:c0:56:e6:b4:9c:86:67:b6:72:ac:4f:2a:f3:57:
15:a3:73:1a:c1:6e:50:33:25:d3:4e:a3:21:0f:3a:
41:1b:d9:e7:32:e1:d5:ee:4e:28:da:20:18:e8:e1:
f0:65:eb:9f:d5:eb:ba:5f:19:02:75:30:f4:5e:fe:
5e:c2:84:d2:04:a2:e3:d4:aa:a5:df:1d:b9:bd:6c:
2c:c2:f0:d7:de:d2:8b:d8:5c:5e:64:f6:4a:12:4b:
18:38:cc:b4:52:bc:d3:76:8b:1e:c8:d8:94:1b:be:
52:95:92:62:02:02:ab:a3:20:24:b2:db:fd:63:73:
ad:a7:ff:56:07:5a:ba:6c:9d:bc:83:63:9b:3f:fb:
ea:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:58:FF:52:BC:98:EA:EB:03:30:64:1F:EE:3A:C8:09:12:94:F5:77
X509v3 Authority Key Identifier:
keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/MVj_UryY6usDMGQf7jrICRKU9Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.208.0/22
IPv6:
2a07:c000::/29
Signature Algorithm: sha256WithRSAEncryption
ab:69:63:3b:aa:76:4f:ca:42:17:34:06:99:e9:21:61:f2:90:
9a:a4:46:19:8c:40:cb:49:8a:dc:cd:bc:27:c3:97:4d:f5:0b:
a7:85:5f:c2:6f:1e:ca:1c:ed:6a:00:22:0f:f6:8f:36:91:f8:
f7:a0:50:2d:8f:3c:5e:3f:ae:6f:a1:54:d8:0d:42:1c:06:6e:
95:e7:1a:ba:15:a7:1c:de:42:a3:e3:8a:64:24:e8:0e:2e:30:
6a:63:6a:b2:31:a3:10:a3:bd:59:f3:44:7b:d3:c3:a1:39:0d:
b7:25:01:b0:17:f0:6c:db:18:f7:56:b2:0b:98:f2:1f:8f:c0:
3a:8a:49:c6:7e:80:d4:ad:52:57:dd:e2:87:ed:d0:ac:b0:63:
69:5a:57:19:df:a3:5f:c1:8b:5b:28:fa:38:3e:d1:f3:c3:9b:
65:43:79:12:a2:66:dc:4b:11:37:c5:a1:8f:ce:fb:dd:8f:02:
c0:e6:9b:49:e5:03:fc:d9:d2:0c:86:77:25:5d:aa:05:1b:0f:
e4:4a:a6:6d:d8:21:7d:b6:bb:ef:98:a4:cf:a1:8a:41:c7:9b:
7e:6f:5e:81:22:db:6a:d5:c5:3a:aa:29:8f:fb:8e:79:10:82:
ff:17:d9:2a:9a:41:81:ae:9b:c4:bd:25:5b:3e:bb:84:b4:c7:
1e:7a:70:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net