Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OeCaxDfKAaynmjBpSwELsJbz5uo.roa
File: OeCaxDfKAaynmjBpSwELsJbz5uo.roa (raw, json)
Hash identifier: /506b7TvVntavMTvRkxZRcbKoV8nbbQU+XCLmIOMDVM=
Subject key identifier: 39:E0:9A:C4:37:CA:01:AC:A7:9A:30:69:4B:01:0B:B0:96:F3:E6:EA
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01942369CE448C4965BB711E92252624B298
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OeCaxDfKAaynmjBpSwELsJbz5uo.roa
Signing time: Wed 01 Jan 2025 19:48:44 +0000
ROA not before: Wed 01 Jan 2025 19:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 268624
IP address blocks: 170.62.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:ce:44:8c:49:65:bb:71:1e:92:25:26:24:b2:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jan 1 19:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39e09ac437ca01aca79a30694b010bb096f3e6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ee:67:82:79:eb:50:4a:f6:e6:a7:05:ad:8e:
3c:cd:81:78:40:44:80:bd:8f:71:25:04:94:bd:50:
76:e0:b1:27:2f:c5:85:62:e2:d7:81:27:b7:d9:c1:
bf:05:5a:03:1e:20:c7:c4:82:97:5d:2e:84:7b:17:
6d:b4:4f:f6:62:9b:79:f2:6b:d5:ed:88:8d:36:b5:
4d:52:6b:e5:ed:fa:df:f9:21:e7:47:82:c1:98:cf:
53:79:fb:72:a9:f9:44:10:a6:58:74:6e:f7:f5:d1:
a7:7f:fb:68:a0:d4:c5:58:c7:3b:9b:cb:3c:50:19:
01:37:8f:77:25:41:2a:88:d8:75:59:b0:ee:93:56:
c6:88:a8:5e:a0:32:bb:55:b0:ee:c1:09:0d:05:3b:
de:e1:97:12:4f:f0:5d:df:51:35:27:bc:33:dd:7b:
84:ee:d9:72:ef:0a:22:12:37:77:e7:81:e3:70:99:
a7:88:49:23:3c:7e:c7:10:c7:ca:ae:7c:80:03:c1:
a5:ae:19:a2:a5:0b:5d:09:49:fc:60:66:91:ff:b8:
7b:5f:d3:47:f8:bd:ff:aa:00:4d:4a:72:68:8f:1c:
1f:0c:83:58:9f:84:50:ff:20:e3:26:a2:3a:65:ed:
9e:14:d3:9e:55:55:77:00:fd:b9:16:72:cd:d4:6d:
7f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E0:9A:C4:37:CA:01:AC:A7:9A:30:69:4B:01:0B:B0:96:F3:E6:EA
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/OeCaxDfKAaynmjBpSwELsJbz5uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.161.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:9e:61:ab:a2:34:65:7e:db:63:ca:88:bd:26:20:1b:67:5c:
cc:5e:c4:8f:28:cb:0f:58:22:6c:66:04:45:ea:e0:ef:04:42:
6c:0a:81:9e:66:4f:93:83:9c:e3:7d:9c:c8:73:99:4c:1f:bc:
18:37:49:18:9f:69:11:28:be:d1:d6:a0:97:ad:09:a5:21:dd:
57:56:ac:9f:08:eb:33:cb:0a:cd:d8:cc:05:27:90:a9:a7:49:
98:5b:65:47:b6:e4:a0:ad:56:cd:fb:d1:5d:db:c1:f9:57:72:
30:30:ec:18:aa:9c:88:8a:98:fe:f8:89:ec:3a:d3:b2:89:e7:
b3:bd:b7:97:8f:79:38:c8:68:d3:1b:d8:a0:78:d7:47:f7:2b:
40:dc:82:14:88:90:8b:92:3a:86:e5:50:5e:da:14:a9:86:d4:
03:dd:20:97:7e:7c:28:8c:c8:c5:52:bb:70:b7:e1:8f:f8:32:
7a:5b:03:d4:d4:fd:df:3e:86:d2:18:ba:59:20:d2:57:df:24:
0c:99:bd:03:08:a7:69:f0:a2:65:39:c4:11:9f:38:92:4b:f8:
72:65:dd:8d:6d:12:17:9c:af:cb:57:17:d3:78:6e:5c:2b:9f:
2f:f8:a9:84:48:eb:67:45:6f:33:2b:d9:72:1c:d6:de:5f:08:
91:00:a7:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjac5EjEllu3EekiUmJLKYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjUwMTAxMTk0ODQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWUwOWFjNDM3Y2EwMWFjYTc5YTMwNjk0YjAxMGJiMDk2ZjNlNmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+5ngnnrUEr25qcFrY48zYF4QESA
vY9xJQSUvVB24LEnL8WFYuLXgSe32cG/BVoDHiDHxIKXXS6EexdttE/2Ypt58mvV
7YiNNrVNUmvl7frf+SHnR4LBmM9TeftyqflEEKZYdG739dGnf/tooNTFWMc7m8s8
UBkBN493JUEqiNh1WbDuk1bGiKheoDK7VbDuwQkNBTve4ZcST/Bd31E1J7wz3XuE
7tly7woiEjd354HjcJmniEkjPH7HEMfKrnyAA8GlrhmipQtdCUn8YGaR/7h7X9NH
+L3/qgBNSnJojxwfDINYn4RQ/yDjJqI6Ze2eFNOeVVV3AP25FnLN1G1/HQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDngmsQ3ygGsp5owaUsBC7CW8+bqMB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvT2VDYXhEZktBYXlubWpCcFN3RUxzSmJ6NXVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqj6hMA0G
CSqGSIb3DQEBCwUAA4IBAQBcnmGrojRlfttjyoi9JiAbZ1zMXsSPKMsPWCJsZgRF
6uDvBEJsCoGeZk+Tg5zjfZzIc5lMH7wYN0kYn2kRKL7R1qCXrQmlId1XVqyfCOsz
ywrN2MwFJ5Cpp0mYW2VHtuSgrVbN+9Fd28H5V3IwMOwYqpyIipj++InsOtOyieez
vbeXj3k4yGjTG9igeNdH9ytA3IIUiJCLkjqG5VBe2hSphtQD3SCXfnwojMjFUrtw
t+GP+DJ6WwPU1P3fPobSGLpZINJX3yQMmb0DCKdp8KJlOcQRnziSS/hyZd2NbRIX
nK/LVxfTeG5cK58v+KmESOtnRW8zK9lyHNbeXwiRAKd6
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:54 2025 by rpki-client on console.sobornost.net