Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/MJhgLu59YXAjx2CDwZQ7L8x1uhk.roa
File: MJhgLu59YXAjx2CDwZQ7L8x1uhk.roa (raw, json)
Hash identifier: oBmd+orh6Kz8QYSvJuroMg2z2WEqmWjCN/qb8cgW+K0=
Subject key identifier: 30:98:60:2E:EE:7D:61:70:23:C7:60:83:C1:94:3B:2F:CC:75:BA:19
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 01962485DB3C4BB91003664CE7B111F8E83B
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/MJhgLu59YXAjx2CDwZQ7L8x1uhk.roa
Signing time: Fri 11 Apr 2025 11:04:34 +0000
ROA not before: Fri 11 Apr 2025 11:04:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209372
IP address blocks: 78.136.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:24:85:db:3c:4b:b9:10:03:66:4c:e7:b1:11:f8:e8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Apr 11 11:04:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3098602eee7d617023c76083c1943b2fcc75ba19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:14:a1:cb:24:12:89:ed:44:37:7a:04:67:42:
b2:43:a5:5f:74:e2:2a:09:21:96:6b:de:18:dd:d7:
d0:13:31:be:c0:5f:98:09:63:90:e1:25:cf:56:44:
5b:1d:5f:8c:21:d5:1b:9f:e9:9e:4f:8c:45:2c:eb:
db:34:59:fb:b1:bd:78:58:13:8c:4f:48:8d:a0:60:
4b:62:cd:79:81:d5:9f:e5:60:8f:a0:c5:e4:2a:92:
ef:95:8b:cd:92:63:2c:bf:e9:09:a7:b7:ce:5d:d6:
3e:b4:c2:4d:75:47:19:82:71:13:b2:d5:3e:5f:33:
7c:14:f6:95:f7:63:69:3a:8b:46:74:9a:59:7c:20:
ca:47:81:19:e3:98:99:0a:70:22:59:dc:ed:a0:e5:
ac:27:83:8c:4f:11:d8:0a:37:d6:94:cb:b3:b5:a1:
43:85:9e:2e:84:1f:9b:8c:20:39:30:67:bf:0a:27:
f3:b4:77:e6:42:e6:89:70:ed:c5:b0:d0:61:f1:73:
5c:a0:44:8b:08:7d:85:b1:50:46:3c:56:ea:d9:65:
6b:0f:fc:9c:37:26:5d:b0:0f:11:fb:28:7b:a5:c2:
42:8d:6a:9c:dc:ec:45:39:c7:63:24:c1:69:be:9b:
6f:b6:40:b3:79:1a:ea:84:29:71:c1:c0:2f:00:20:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:98:60:2E:EE:7D:61:70:23:C7:60:83:C1:94:3B:2F:CC:75:BA:19
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/MJhgLu59YXAjx2CDwZQ7L8x1uhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.255.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:4c:af:5f:38:19:50:b1:6f:00:ea:b0:28:f7:d7:28:93:62:
4f:7d:0f:66:3f:69:07:06:55:31:6a:df:f8:31:37:c5:5b:88:
77:2c:47:53:9a:b6:7d:fc:cb:17:c1:4b:e7:fc:3c:35:51:c1:
10:be:30:d1:94:70:34:66:a4:7b:5c:e0:f2:e9:33:d8:80:07:
f8:e4:88:60:71:8f:7d:db:01:cb:2a:fc:b6:24:89:eb:5f:b3:
a6:d8:a1:35:ed:c7:b5:5d:e7:bd:78:d9:21:6a:66:6b:3b:c8:
fb:eb:9c:4c:eb:a8:7f:3f:e6:31:8f:82:7a:35:8d:7f:d1:03:
9a:2f:6b:47:fc:f9:9d:c3:b1:5a:29:4f:92:32:a6:bf:2c:eb:
7a:fb:3d:fe:dd:06:46:bd:e0:be:4c:75:71:24:01:6a:4e:84:
1b:19:87:ab:48:65:9d:15:c7:ca:07:c7:87:6e:54:ee:01:3b:
66:f7:26:46:06:ca:ba:0d:1e:d7:35:e1:99:d8:2d:93:fa:c5:
c4:13:a2:7c:b4:ce:bf:af:1c:d0:39:c1:0c:fa:e5:d1:6e:f1:
bf:f6:6b:d8:06:68:be:a1:19:e9:26:88:f8:a1:ef:df:3a:4f:
95:6d:32:1c:b8:73:4f:0c:68:fe:91:7b:37:ec:04:87:87:80:
5f:c3:7c:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYkhds8S7kQA2ZM57ER+Og7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyOWMyNzMwOThiNTI3NjhjYTBlNDRhM2EyYzE2ZWZlZDRh
NjVjYTAwHhcNMjUwNDExMTEwNDM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDk4NjAyZWVlN2Q2MTcwMjNjNzYwODNjMTk0M2IyZmNjNzViYTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RShyyQSie1EN3oEZ0KyQ6VfdOIq
CSGWa94Y3dfQEzG+wF+YCWOQ4SXPVkRbHV+MIdUbn+meT4xFLOvbNFn7sb14WBOM
T0iNoGBLYs15gdWf5WCPoMXkKpLvlYvNkmMsv+kJp7fOXdY+tMJNdUcZgnETstU+
XzN8FPaV92NpOotGdJpZfCDKR4EZ45iZCnAiWdztoOWsJ4OMTxHYCjfWlMuztaFD
hZ4uhB+bjCA5MGe/CifztHfmQuaJcO3FsNBh8XNcoESLCH2FsVBGPFbq2WVrD/yc
NyZdsA8R+yh7pcJCjWqc3OxFOcdjJMFpvptvtkCzeRrqhClxwcAvACDJowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDCYYC7ufWFwI8dgg8GUOy/MdboZMB8GA1UdIwQY
MBaAFFKcJzCYtSdoyg5Eo6LBbv7UplygMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMt
ZjMzZDNiYjM2NDg0LzEvTUpoZ0x1NTlZWEFqeDJDRHdaUTdMOHgxdWhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS82ZDkzNTktYWZlZi00NTM1LTljOTMtZjMzZDNiYjM2NDg0
LzEvVXB3bk1KaTFKMmpLRGtTam9zRnVfdFNtWEtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAToj/MA0G
CSqGSIb3DQEBCwUAA4IBAQA6TK9fOBlQsW8A6rAo99cok2JPfQ9mP2kHBlUxat/4
MTfFW4h3LEdTmrZ9/MsXwUvn/Dw1UcEQvjDRlHA0ZqR7XODy6TPYgAf45IhgcY99
2wHLKvy2JInrX7Om2KE17ce1Xee9eNkhamZrO8j765xM66h/P+Yxj4J6NY1/0QOa
L2tH/Pmdw7FaKU+SMqa/LOt6+z3+3QZGveC+THVxJAFqToQbGYerSGWdFcfKB8eH
blTuATtm9yZGBsq6DR7XNeGZ2C2T+sXEE6J8tM6/rxzQOcEM+uXRbvG/9mvYBmi+
oRnpJoj4oe/fOk+VbTIcuHNPDGj+kXs37ASHh4Bfw3wl
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net