Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PPHFjOG9XIsSUjktdaEfwd83FeQ.roa
File: PPHFjOG9XIsSUjktdaEfwd83FeQ.roa (raw, json)
Hash identifier: MWFckN6/SAnmax08Wx74qscQNP7Z+Uou2TRHfdxkE8k=
Subject key identifier: 3C:F1:C5:8C:E1:BD:5C:8B:12:52:39:2D:75:A1:1F:C1:DF:37:15:E4
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0187C3661D1A793F946032EBBD768C462ECD
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PPHFjOG9XIsSUjktdaEfwd83FeQ.roa
Signing time: Thu 27 Apr 2023 15:47:41 +0000
ROA not before: Thu 27 Apr 2023 15:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 14.102.224.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c3:66:1d:1a:79:3f:94:60:32:eb:bd:76:8c:46:2e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Apr 27 15:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cf1c58ce1bd5c8b1252392d75a11fc1df3715e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:81:79:34:22:ff:c0:ec:52:84:e0:fd:77:
de:82:9e:dc:a2:c7:76:9e:0c:bf:e9:0e:24:3c:be:
9f:41:bc:0c:68:ac:cc:7c:8e:e8:d2:3c:a5:2f:e0:
77:8f:e3:0a:88:88:f2:15:89:64:94:cb:83:da:4a:
d4:a8:f5:9c:3b:40:1d:d5:65:93:53:1a:2b:28:89:
ce:a3:48:52:52:b9:c7:da:1c:ac:11:9b:1a:b3:8e:
9c:ca:d9:c1:dc:e5:3b:e9:8f:af:f6:a5:7e:3b:30:
1b:48:8e:ef:86:f6:ea:f0:2f:6c:a8:1c:9d:30:4f:
c2:6b:65:b2:8d:b8:48:b5:f8:b6:44:fd:4f:90:bc:
40:65:51:47:28:09:60:6e:25:fe:28:e9:ca:30:a5:
4b:d4:c3:69:43:05:4f:70:bb:97:24:47:e6:7c:f1:
b8:fb:21:7d:7c:4a:e8:94:da:e1:75:2f:f3:fb:17:
10:bd:c0:12:34:6c:ac:0c:8d:66:2e:db:87:c5:41:
92:f6:3e:8d:be:9b:2d:cb:30:19:64:c9:e3:40:78:
ec:d3:4b:50:54:f8:be:d5:bb:f4:88:bf:08:f1:a5:
1e:ca:54:61:0a:93:3c:ad:ac:c7:0e:f8:64:a5:0b:
78:90:86:3c:4a:ec:d9:c7:01:51:55:e2:45:03:55:
b5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F1:C5:8C:E1:BD:5C:8B:12:52:39:2D:75:A1:1F:C1:DF:37:15:E4
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PPHFjOG9XIsSUjktdaEfwd83FeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.224.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:d0:4e:13:02:c6:bc:3b:d8:db:bc:a0:23:78:e3:b7:a3:fb:
76:75:ec:63:95:cc:cb:89:36:57:af:5f:34:c0:6e:32:19:b2:
5c:55:18:cc:4d:4e:e9:6d:6b:e3:71:91:cf:cc:f8:b4:03:71:
e7:f0:1c:2e:28:78:37:58:f2:36:e1:c3:50:4b:d1:fe:fc:ba:
d7:ff:17:bd:de:57:a8:e8:3a:10:a6:7e:c6:24:c9:32:c8:b4:
38:84:a6:09:ef:f7:c7:ab:c0:f9:92:d9:3e:3f:ca:88:33:ba:
9d:8f:3e:78:24:f2:01:4b:c5:23:6e:cc:22:51:19:23:24:cf:
e3:be:f7:2d:88:4b:ac:08:ca:e7:d0:a6:12:61:12:52:f9:aa:
33:3a:bc:a1:d9:6d:7a:0a:82:82:3b:8d:1e:a3:3a:23:b4:ad:
d8:12:43:de:c2:3f:19:88:cc:bf:a4:75:d8:2c:06:81:6c:b9:
ee:49:b5:2d:c5:40:d4:94:54:5e:04:a3:36:17:1e:fa:19:b4:
82:10:09:ce:e0:17:97:cc:50:5d:11:c6:f8:93:1e:2e:2a:8d:
91:bf:2d:12:d7:9a:6a:08:a3:45:e3:31:99:d7:87:47:a2:41:
a8:9d:68:fa:cb:7f:ec:38:ae:87:26:24:ff:77:83:6b:58:79:
ae:03:85:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfDZh0aeT+UYDLrvXaMRi7NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjMwNDI3MTU0NzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzY2YxYzU4Y2UxYmQ1YzhiMTI1MjM5MmQ3NWExMWZjMWRmMzcxNWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllWBeTQi/8DsUoTg/Xfegp7cosd2
ngy/6Q4kPL6fQbwMaKzMfI7o0jylL+B3j+MKiIjyFYlklMuD2krUqPWcO0Ad1WWT
UxorKInOo0hSUrnH2hysEZsas46cytnB3OU76Y+v9qV+OzAbSI7vhvbq8C9sqByd
ME/Ca2WyjbhItfi2RP1PkLxAZVFHKAlgbiX+KOnKMKVL1MNpQwVPcLuXJEfmfPG4
+yF9fErolNrhdS/z+xcQvcASNGysDI1mLtuHxUGS9j6NvpstyzAZZMnjQHjs00tQ
VPi+1bv0iL8I8aUeylRhCpM8razHDvhkpQt4kIY8SuzZxwFRVeJFA1W1JwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDzxxYzhvVyLElI5LXWhH8HfNxXkMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvUFBIRmpPRzlYSXNTVWprdGRhRWZ3ZDgzRmVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBDmbgMA0G
CSqGSIb3DQEBCwUAA4IBAQDI0E4TAsa8O9jbvKAjeOO3o/t2dexjlczLiTZXr180
wG4yGbJcVRjMTU7pbWvjcZHPzPi0A3Hn8BwuKHg3WPI24cNQS9H+/LrX/xe93leo
6DoQpn7GJMkyyLQ4hKYJ7/fHq8D5ktk+P8qIM7qdjz54JPIBS8UjbswiURkjJM/j
vvctiEusCMrn0KYSYRJS+aozOryh2W16CoKCO40eozojtK3YEkPewj8ZiMy/pHXY
LAaBbLnuSbUtxUDUlFReBKM2Fx76GbSCEAnO4BeXzFBdEcb4kx4uKo2Rvy0S15pq
CKNF4zGZ14dHokGonWj6y3/sOK6HJiT/d4NrWHmuA4Us
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:46 2025 by rpki-client