Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4ZA3T9IAnWqcYi0G4m4cJwAFMFg.roa
File: 4ZA3T9IAnWqcYi0G4m4cJwAFMFg.roa (raw, json)
Hash identifier: lWmZ811ysIIUL3IjEFQ+RjeIrGNy/ibvJkLwWPRLAmw=
Subject key identifier: E1:90:37:4F:D2:00:9D:6A:9C:62:2D:06:E2:6E:1C:27:00:05:30:58
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019143C75D252ABFD2308DD31132A5352B59
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4ZA3T9IAnWqcYi0G4m4cJwAFMFg.roa
Signing time: Sun 11 Aug 2024 23:30:24 +0000
ROA not before: Sun 11 Aug 2024 23:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 14.102.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:43:c7:5d:25:2a:bf:d2:30:8d:d3:11:32:a5:35:2b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Aug 11 23:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e190374fd2009d6a9c622d06e26e1c2700053058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:bc:69:65:44:db:35:1b:58:95:84:43:74:
5b:b7:cc:69:42:e3:99:e0:78:12:db:85:58:dd:4f:
e0:da:ba:5b:07:3d:7b:eb:8a:26:b7:49:41:83:66:
a1:5a:0e:c9:f9:53:74:a6:92:53:2d:ac:d5:80:e5:
da:96:e3:a6:8d:12:3a:51:e3:84:36:f2:c1:3c:0f:
4d:fe:23:32:84:9f:96:0d:3d:57:6f:95:e8:e2:45:
9b:00:f8:b5:a5:c8:0d:79:15:38:6e:dc:dc:1f:a6:
7e:3a:45:49:33:87:50:9d:36:3f:43:9a:67:4c:1a:
ad:07:f8:90:43:8a:44:df:e8:1f:e1:07:7b:85:58:
73:67:44:30:b3:5e:b9:6f:f2:57:a3:0e:11:ba:63:
7d:56:33:5c:38:ff:8b:c3:af:7b:08:93:1b:e5:19:
5c:74:f4:ee:bd:3f:4c:ac:49:ac:c3:54:18:0c:28:
f1:bf:4c:99:f2:43:ea:a7:85:cf:b2:2b:40:ad:73:
9e:ba:14:97:3f:65:a1:d8:27:11:de:2a:62:3e:2b:
42:db:9b:9c:66:4f:86:81:fb:87:5f:ec:2d:8d:77:
d4:9b:bf:e9:81:07:74:ea:6b:3f:52:37:e8:9e:75:
53:01:57:b6:2f:1f:a5:04:67:8c:7d:3f:3b:e4:52:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:90:37:4F:D2:00:9D:6A:9C:62:2D:06:E2:6E:1C:27:00:05:30:58
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/4ZA3T9IAnWqcYi0G4m4cJwAFMFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.231.0/24
Signature Algorithm: sha256WithRSAEncryption
16:af:f6:24:19:e0:59:89:ad:9e:44:dd:2b:64:1d:0e:23:11:
de:18:c2:f5:a0:7d:b0:1f:7b:ec:3c:cb:0b:d5:58:86:6c:b3:
a6:f2:79:f2:91:a0:03:7c:5d:f6:7b:42:53:41:16:78:bb:c9:
2c:38:6b:2c:06:2e:6a:1b:e1:f2:18:44:6d:64:f7:e5:af:d0:
66:b7:59:2f:5c:47:85:54:07:a3:f4:de:44:af:4e:00:e2:70:
01:67:12:81:2a:30:c8:f6:fd:67:90:60:c9:60:87:32:b5:4f:
00:3c:9e:5a:a9:8d:3e:c0:d2:7f:4b:d7:80:7f:27:a7:60:ae:
c0:c5:b1:c4:5e:98:fc:0d:0f:d7:07:7c:72:90:bd:bc:57:3c:
16:32:18:81:8b:32:09:b6:f7:97:36:e9:b9:cd:01:48:4e:18:
68:ba:2c:69:33:c2:d0:d9:70:99:d9:5c:44:d5:c9:19:fa:75:
da:b0:f6:7b:cd:49:9f:33:cb:9d:1d:8c:a4:78:28:1b:9d:24:
05:49:6c:fb:3b:51:7a:e7:d8:42:a2:fe:6d:cf:a8:9d:93:94:
11:b8:a5:c5:b9:0e:ab:fb:77:c1:56:0e:26:28:13:0f:d2:74:
a0:37:ea:93:16:47:b5:9e:4e:b2:8a:8f:ef:4d:a4:2f:6d:cd:
64:25:55:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFDx10lKr/SMI3TETKlNStZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjQwODExMjMzMDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTkwMzc0ZmQyMDA5ZDZhOWM2MjJkMDZlMjZlMWMyNzAwMDUzMDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrm8aWVE2zUbWJWEQ3Rbt8xpQuOZ
4HgS24VY3U/g2rpbBz1764omt0lBg2ahWg7J+VN0ppJTLazVgOXaluOmjRI6UeOE
NvLBPA9N/iMyhJ+WDT1Xb5Xo4kWbAPi1pcgNeRU4btzcH6Z+OkVJM4dQnTY/Q5pn
TBqtB/iQQ4pE3+gf4Qd7hVhzZ0Qws165b/JXow4RumN9VjNcOP+Lw697CJMb5Rlc
dPTuvT9MrEmsw1QYDCjxv0yZ8kPqp4XPsitArXOeuhSXP2Wh2CcR3ipiPitC25uc
Zk+GgfuHX+wtjXfUm7/pgQd06ms/UjfonnVTAVe2Lx+lBGeMfT875FIW3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOGQN0/SAJ1qnGItBuJuHCcABTBYMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvNFpBM1Q5SUFuV3FjWWkwRzRtNGNKd0FGTUZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQADmbnMA0G
CSqGSIb3DQEBCwUAA4IBAQAWr/YkGeBZia2eRN0rZB0OIxHeGML1oH2wH3vsPMsL
1ViGbLOm8nnykaADfF32e0JTQRZ4u8ksOGssBi5qG+HyGERtZPflr9Bmt1kvXEeF
VAej9N5Er04A4nABZxKBKjDI9v1nkGDJYIcytU8APJ5aqY0+wNJ/S9eAfyenYK7A
xbHEXpj8DQ/XB3xykL28VzwWMhiBizIJtveXNum5zQFIThhouixpM8LQ2XCZ2VxE
1ckZ+nXasPZ7zUmfM8udHYykeCgbnSQFSWz7O1F659hCov5tz6idk5QRuKXFuQ6r
+3fBVg4mKBMP0nSgN+qTFke1nk6yio/vTaQvbc1kJVWM
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:11 2025 by rpki-client