Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/MHgro3rXC3LA-ZCKp8QuaVCuDNM.roa
File: MHgro3rXC3LA-ZCKp8QuaVCuDNM.roa (raw, json)
Hash identifier: sXYt7ycXFJCXAbuucaVo5/ccp47LCDa9LjtriRMFWXQ=
Subject key identifier: 30:78:2B:A3:7A:D7:0B:72:C0:F9:90:8A:A7:C4:2E:69:50:AE:0C:D3
Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560
Certificate serial: 01942825D5E5B0B1B33FA1414FD9DD895059
Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/MHgro3rXC3LA-ZCKp8QuaVCuDNM.roa
Signing time: Thu 02 Jan 2025 17:52:35 +0000
ROA not before: Thu 02 Jan 2025 17:52:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49860
IP address blocks: 176.96.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:d5:e5:b0:b1:b3:3f:a1:41:4f:d9:dd:89:50:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560
Validity
Not Before: Jan 2 17:52:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=30782ba37ad70b72c0f9908aa7c42e6950ae0cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ea:4c:97:b1:82:dd:d1:bb:f9:e4:c4:95:76:
a6:b1:46:7b:bd:ec:e6:e1:e2:d9:56:e0:43:71:a8:
7e:11:07:7a:9b:7b:01:b2:5d:52:4a:c4:38:f0:93:
d6:e0:d3:16:3f:ec:a7:d6:23:3b:65:90:4e:31:79:
64:95:cc:53:9d:9f:01:2f:7a:60:e9:b1:1d:46:8d:
b3:77:fa:fc:d5:aa:22:8d:54:d2:40:86:f6:53:dd:
3f:4f:c9:3c:4f:d7:01:21:bc:9c:77:0d:70:fd:b2:
29:6a:95:37:1e:44:2f:b1:35:e3:e9:d1:ac:f7:18:
7f:fc:e9:eb:2a:b5:d0:2f:47:78:65:6c:9b:22:f2:
83:75:1e:3f:dd:86:5f:2a:d2:65:0b:32:c7:d5:69:
08:ea:14:d2:50:ac:29:57:35:0b:eb:26:ef:03:75:
ab:12:fb:e0:3c:5c:66:cf:11:b6:85:af:a9:20:01:
08:fa:d1:87:46:10:8d:94:cb:bb:e6:7e:c4:37:95:
45:1a:39:46:85:62:e1:6e:2f:55:2a:bd:1c:fb:f2:
9e:0e:9f:6d:63:bd:cd:b0:e7:22:34:86:25:d0:bd:
44:e2:51:62:b6:f7:3b:1e:48:6c:ec:06:ea:27:b8:
39:89:41:5a:1f:9d:55:1e:be:31:7b:f7:1c:41:31:
7b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:78:2B:A3:7A:D7:0B:72:C0:F9:90:8A:A7:C4:2E:69:50:AE:0C:D3
X509v3 Authority Key Identifier:
keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/MHgro3rXC3LA-ZCKp8QuaVCuDNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.234.0/24
Signature Algorithm: sha256WithRSAEncryption
08:6c:cf:89:4f:b7:dc:2b:5e:a6:63:5b:be:e8:db:75:1c:96:
9f:e8:8c:05:43:b1:f8:4f:c9:6d:ab:a9:43:b6:22:14:8b:4c:
a2:76:66:f1:7b:01:d6:d7:1b:e6:46:da:0b:6f:ea:0f:96:01:
79:c3:d7:6c:d4:4d:87:14:e2:e6:2a:7b:05:e1:38:a2:57:9b:
a4:a3:8f:bd:8d:37:85:90:fd:fe:40:93:cf:e7:9e:5d:f3:ca:
fd:31:1d:ce:26:d2:0c:a1:83:56:40:63:d5:32:dc:b3:b4:cb:
ca:a4:72:13:f8:df:bd:aa:f8:e2:67:9b:dd:18:49:cb:09:c0:
97:a4:27:93:9d:42:b3:ff:24:46:c3:57:b4:61:83:5c:9d:94:
53:a4:14:5d:69:22:ce:66:3e:81:94:94:0a:2a:e1:f0:e2:b8:
10:fc:88:92:15:12:d7:53:2b:8e:28:58:23:f2:90:00:05:3a:
6c:45:05:79:1a:25:7a:d5:ed:ab:79:44:5c:85:77:a3:c1:70:
a4:32:d9:ab:d2:06:a5:54:7d:2c:69:9f:7e:d5:ff:bc:b0:ce:
aa:cd:90:ec:75:d5:a0:14:a8:ed:9f:e0:5d:50:cf:18:66:04:
72:e2:48:a4:22:23:37:f3:f3:df:8d:76:9e:cc:59:1f:33:b5:
83:c0:34:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJdXlsLGzP6FBT9ndiVBZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2MDhkYjQzOTY0YjY5ODZlYzc0MGYwYjVlMzNmNjI3NTg5
YWM1NjAwHhcNMjUwMTAyMTc1MjM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDc4MmJhMzdhZDcwYjcyYzBmOTkwOGFhN2M0MmU2OTUwYWUwY2QzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6upMl7GC3dG7+eTElXamsUZ7vezm
4eLZVuBDcah+EQd6m3sBsl1SSsQ48JPW4NMWP+yn1iM7ZZBOMXlklcxTnZ8BL3pg
6bEdRo2zd/r81aoijVTSQIb2U90/T8k8T9cBIbycdw1w/bIpapU3HkQvsTXj6dGs
9xh//OnrKrXQL0d4ZWybIvKDdR4/3YZfKtJlCzLH1WkI6hTSUKwpVzUL6ybvA3Wr
EvvgPFxmzxG2ha+pIAEI+tGHRhCNlMu75n7EN5VFGjlGhWLhbi9VKr0c+/KeDp9t
Y73NsOciNIYl0L1E4lFitvc7Hkhs7AbqJ7g5iUFaH51VHr4xe/ccQTF7WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDB4K6N61wtywPmQiqfELmlQrgzTMB8GA1UdIwQY
MBaAFKYI20OWS2mG7HQPC14z9idYmsVgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGdqYlE1WkxhWWJzZEE4TFhqUDJKMWlheFdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi81MDAxNTAtMTU1MS00N2RlLWI1MDQt
ZDY0NjgzY2VlMTZmLzEvTUhncm8zclhDM0xBLVpDS3A4UXVhVkN1RE5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi81MDAxNTAtMTU1MS00N2RlLWI1MDQtZDY0NjgzY2VlMTZm
LzEvcGdqYlE1WkxhWWJzZEE4TFhqUDJKMWlheFdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGDqMA0G
CSqGSIb3DQEBCwUAA4IBAQAIbM+JT7fcK16mY1u+6Nt1HJaf6IwFQ7H4T8ltq6lD
tiIUi0yidmbxewHW1xvmRtoLb+oPlgF5w9ds1E2HFOLmKnsF4TiiV5uko4+9jTeF
kP3+QJPP555d88r9MR3OJtIMoYNWQGPVMtyztMvKpHIT+N+9qvjiZ5vdGEnLCcCX
pCeTnUKz/yRGw1e0YYNcnZRTpBRdaSLOZj6BlJQKKuHw4rgQ/IiSFRLXUyuOKFgj
8pAABTpsRQV5GiV61e2reURchXejwXCkMtmr0galVH0saZ9+1f+8sM6qzZDsddWg
FKjtn+BdUM8YZgRy4kikIiM38/PfjXaezFkfM7WDwDSN
-----END CERTIFICATE-----
Generated at Fri Apr 25 07:50:31 2025 by rpki-client