Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/AMwJtCWsf0hRmVpvO3Yaz8HIIaI.roa
File: AMwJtCWsf0hRmVpvO3Yaz8HIIaI.roa (raw, json)
Hash identifier: Ne9p6Vqbq6IRddG7KVjJJySnzSBjXXnl11dohJ8s8Is=
Subject key identifier: 00:CC:09:B4:25:AC:7F:48:51:99:5A:6F:3B:76:1A:CF:C1:C8:21:A2
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018EE2C2478972BAC09097F8C495E488EF91
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/AMwJtCWsf0hRmVpvO3Yaz8HIIaI.roa
Signing time: Mon 15 Apr 2024 17:16:06 +0000
ROA not before: Mon 15 Apr 2024 17:16:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 14.102.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e2:c2:47:89:72:ba:c0:90:97:f8:c4:95:e4:88:ef:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 15 17:16:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00cc09b425ac7f4851995a6f3b761acfc1c821a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:de:a3:f3:33:0f:a3:d1:e6:91:53:9a:66:16:
fd:4b:8c:7c:0f:91:bc:57:c0:30:07:1c:5f:7f:de:
39:f1:df:b2:15:86:47:b2:1e:7b:1f:3a:83:2d:ea:
2b:75:ff:06:8e:ae:ff:08:01:68:1e:08:c5:54:82:
92:5e:07:e4:de:57:6c:63:8b:12:d2:89:39:03:9f:
62:51:bd:b0:17:f9:28:a1:c5:b0:2b:e5:66:b5:b2:
ed:3c:dd:5c:fe:21:11:c9:5d:86:aa:97:fc:fe:75:
dc:cc:a0:7c:2d:60:96:ff:51:1f:3d:e2:8d:85:40:
fe:38:9c:64:a5:10:48:3b:95:2a:41:96:ed:d5:82:
d8:c4:13:ad:71:19:f0:9c:31:fd:a3:a4:f1:e0:82:
dc:ca:05:a6:9b:7e:12:dc:3c:5b:15:65:40:8e:e3:
3d:d9:f2:57:8c:b1:82:86:15:51:21:f5:35:cd:a7:
9a:89:c3:b3:6e:d1:98:9d:1b:13:0a:dd:42:0d:95:
b2:7e:01:67:7a:e3:d5:df:23:60:e2:50:5e:43:5b:
e9:75:cf:6d:ac:10:47:13:5f:83:a1:a1:db:2e:19:
7f:97:18:d5:3a:27:7d:d0:44:1c:e5:2e:b8:3f:b7:
bc:03:35:60:60:93:d8:3a:66:f4:a8:c2:62:5c:54:
96:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CC:09:B4:25:AC:7F:48:51:99:5A:6F:3B:76:1A:CF:C1:C8:21:A2
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/AMwJtCWsf0hRmVpvO3Yaz8HIIaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.231.0/24
Signature Algorithm: sha256WithRSAEncryption
be:84:ca:d8:0a:93:ac:51:36:62:49:37:f1:44:51:58:b8:61:
6c:fa:df:c0:a6:da:54:e5:93:08:4f:2b:d7:6d:01:65:b2:c0:
bc:6e:ae:fc:6a:19:89:cf:04:28:3f:d1:14:06:f9:75:a0:7d:
52:86:a9:1e:14:61:e4:8e:63:6c:f8:a2:fc:ee:6b:d0:bb:00:
55:c9:bb:20:66:eb:95:ea:96:3f:d4:b4:c2:66:fe:d5:de:76:
b3:c0:52:6b:50:bd:69:cf:c4:cc:e4:2d:25:47:79:36:f7:a8:
2a:57:b6:57:b6:6e:9c:58:63:2a:00:c1:11:c2:02:ad:6a:9d:
1f:0a:3c:4f:fc:a1:b1:1b:4f:cf:ef:28:69:31:c6:9a:48:85:
1d:12:b8:4c:64:95:94:41:95:7a:d5:a1:5d:0b:6d:91:2d:97:
41:c7:da:83:4b:df:19:59:d6:a3:37:52:f4:14:5d:19:92:d7:
4f:a9:09:6e:8a:c6:af:61:ae:16:01:1e:1f:51:bd:06:fa:70:
c6:20:d5:c3:2d:ff:88:1c:5c:82:1f:f5:fc:f4:35:39:ea:85:
a0:2c:29:86:3f:6d:dd:1f:ad:3e:55:e9:b8:d4:da:c1:0e:75:
50:9b:bd:d9:ff:49:18:62:c6:d8:c0:69:a5:72:90:d7:7c:43:
ac:92:cd:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:02 2025 by rpki-client