Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/OjaH7K6CfyojVS6c46fulaH1p-M.roa
File: OjaH7K6CfyojVS6c46fulaH1p-M.roa (raw, json)
Hash identifier: +oZE9RnQm2ybyt6c5+lMZS7HBhz+F/aKH1dTBent0OM=
Subject key identifier: 3A:36:87:EC:AE:82:7F:2A:23:55:2E:9C:E3:A7:EE:95:A1:F5:A7:E3
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 019424449BA530A70EE5A085F1B7A056558E
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/OjaH7K6CfyojVS6c46fulaH1p-M.roa
Signing time: Wed 01 Jan 2025 23:47:43 +0000
ROA not before: Wed 01 Jan 2025 23:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198441
IP address blocks: 83.139.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:9b:a5:30:a7:0e:e5:a0:85:f1:b7:a0:56:55:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jan 1 23:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a3687ecae827f2a23552e9ce3a7ee95a1f5a7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c0:17:1a:7b:12:b3:e7:81:1c:ce:4f:93:03:
48:83:e3:41:27:7b:4f:5c:ac:cf:7f:7b:b1:7a:6c:
8f:d8:a9:70:8f:b0:70:df:a3:2e:5f:a6:a8:fa:d7:
75:a4:41:1c:f9:20:ca:84:7d:f8:ba:ae:b1:a4:ba:
47:c4:8d:c8:4f:08:e7:ff:5d:c7:21:39:2d:c7:99:
38:5a:29:1a:2c:96:74:f8:88:d5:d3:66:92:4d:de:
60:6e:6b:8e:96:62:9a:94:cf:04:eb:63:9a:65:95:
5d:a6:41:6a:54:f9:62:1c:dd:59:85:6e:0a:f3:09:
6f:9e:0f:3d:ff:39:a3:2f:8c:53:50:17:f6:df:e7:
1a:2c:a9:d0:d8:55:d5:16:89:20:bc:3b:47:1c:8e:
ac:4f:a2:f6:d2:14:40:78:6c:b6:ce:d3:35:65:8d:
a4:83:da:b6:93:cb:f5:2a:44:23:98:f9:18:c6:56:
a5:87:81:c6:d8:c2:62:e7:a2:09:1b:c8:f8:fa:8c:
92:b0:6f:74:55:d6:ea:1f:11:3b:02:ee:32:30:eb:
fd:83:92:8e:f8:79:b8:3d:f9:01:a8:ac:35:d0:94:
d6:0d:83:0d:11:97:4a:31:39:33:9c:a7:64:46:2c:
a5:f7:1e:eb:12:ac:fd:2a:74:b7:3e:29:5c:0a:00:
66:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:36:87:EC:AE:82:7F:2A:23:55:2E:9C:E3:A7:EE:95:A1:F5:A7:E3
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/OjaH7K6CfyojVS6c46fulaH1p-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.139.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:2f:1a:81:69:0d:14:7d:93:62:f5:20:86:82:18:10:e8:4c:
a5:2e:1e:70:07:60:2e:bf:54:b5:09:59:45:d2:6d:77:82:50:
bb:62:bd:1f:da:df:d9:3c:a2:0b:19:da:14:40:46:52:57:48:
c7:a6:7f:86:3e:2c:8d:67:75:23:6e:c3:c5:ff:21:51:82:62:
d7:8a:aa:b2:08:af:2b:13:67:25:fa:7f:8b:d7:2c:79:94:bc:
30:1c:39:c8:b2:12:0a:cd:42:79:1a:2d:f4:18:93:3b:9d:f3:
f6:14:e5:6b:f3:68:38:5c:73:c1:60:9c:e0:35:83:69:1d:df:
b1:51:f2:a5:f5:76:38:d4:35:42:4f:40:7f:e6:f9:17:0e:5e:
e1:fc:9e:f6:bb:82:4b:2f:01:5d:51:77:c6:47:f2:b3:78:a1:
44:ea:52:5a:5a:e9:fe:7c:c7:b4:58:ba:8e:e5:76:10:02:45:
4d:56:30:bf:ce:e3:e2:fe:2a:ad:de:59:f6:0d:5b:3a:ca:8b:
b2:ab:73:67:c8:58:52:c0:c1:57:f0:43:20:b5:58:d0:99:a1:
55:2d:e2:0c:c0:66:4d:bf:16:32:bf:3e:1d:b3:61:a6:d4:3b:
7e:f1:dd:d7:27:ce:88:94:5a:87:f2:96:48:48:9c:19:33:ea:
4e:f3:38:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRJulMKcO5aCF8begVlWOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNzVmYjRmNTJhODI5ZDEzNmUyOWE5YTAyNWM2MzZkMTlh
ZTMyOGUwHhcNMjUwMTAxMjM0NzQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTM2ODdlY2FlODI3ZjJhMjM1NTJlOWNlM2E3ZWU5NWExZjVhN2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8AXGnsSs+eBHM5PkwNIg+NBJ3tP
XKzPf3uxemyP2Klwj7Bw36MuX6ao+td1pEEc+SDKhH34uq6xpLpHxI3ITwjn/13H
ITktx5k4WikaLJZ0+IjV02aSTd5gbmuOlmKalM8E62OaZZVdpkFqVPliHN1ZhW4K
8wlvng89/zmjL4xTUBf23+caLKnQ2FXVFokgvDtHHI6sT6L20hRAeGy2ztM1ZY2k
g9q2k8v1KkQjmPkYxlalh4HG2MJi56IJG8j4+oySsG90VdbqHxE7Au4yMOv9g5KO
+Hm4PfkBqKw10JTWDYMNEZdKMTkznKdkRiyl9x7rEqz9KnS3PilcCgBm9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDo2h+yugn8qI1UunOOn7pWh9afjMB8GA1UdIwQY
MBaAFA51+09SqCnRNuKamgJcY20ZrjKOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYt
MzViYTI2N2RlZDNiLzEvT2phSDdLNkNmeW9qVlM2YzQ2ZnVsYUgxcC1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC81NzU5ZjYtOTNlMi00MDI5LWE0OWYtMzViYTI2N2RlZDNi
LzEvRG5YN1QxS29LZEUyNHBxYUFseGpiUm11TW80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4sXMA0G
CSqGSIb3DQEBCwUAA4IBAQA8LxqBaQ0UfZNi9SCGghgQ6EylLh5wB2Auv1S1CVlF
0m13glC7Yr0f2t/ZPKILGdoUQEZSV0jHpn+GPiyNZ3UjbsPF/yFRgmLXiqqyCK8r
E2cl+n+L1yx5lLwwHDnIshIKzUJ5Gi30GJM7nfP2FOVr82g4XHPBYJzgNYNpHd+x
UfKl9XY41DVCT0B/5vkXDl7h/J72u4JLLwFdUXfGR/KzeKFE6lJaWun+fMe0WLqO
5XYQAkVNVjC/zuPi/iqt3ln2DVs6youyq3NnyFhSwMFX8EMgtVjQmaFVLeIMwGZN
vxYyvz4ds2Gm1Dt+8d3XJ86IlFqH8pZISJwZM+pO8zjL
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:01 2025 by rpki-client on console.sobornost.net