Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WEtEuaIzwpcWe-6UWOCj2Nn1KpY.roa
File: WEtEuaIzwpcWe-6UWOCj2Nn1KpY.roa (raw, json)
Hash identifier: AWNNDWAElrw0fUx9fOB0BMzC1T2r20S7aXMs8eXqxxw=
Subject key identifier: 58:4B:44:B9:A2:33:C2:97:16:7B:EE:94:58:E0:A3:D8:D9:F5:2A:96
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0194222011C76B404349AA7928A338946D54
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WEtEuaIzwpcWe-6UWOCj2Nn1KpY.roa
Signing time: Wed 01 Jan 2025 13:48:34 +0000
ROA not before: Wed 01 Jan 2025 13:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 53107
IP address blocks: 14.102.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:11:c7:6b:40:43:49:aa:79:28:a3:38:94:6d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 1 13:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=584b44b9a233c297167bee9458e0a3d8d9f52a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:ad:ad:74:3c:0b:fa:a0:af:fb:ef:cb:21:
14:81:eb:1e:19:7f:2b:76:ca:c1:ad:b7:65:be:81:
9e:63:18:10:90:f1:1f:7e:99:2b:8f:2f:8c:38:c1:
8f:c6:36:38:d8:ad:ad:23:b0:1c:cf:ec:16:83:66:
69:5f:8c:4d:63:2d:8b:e7:de:00:85:6a:8b:d9:06:
f9:26:69:88:ff:34:3c:ca:e0:ac:ca:8a:77:bb:69:
a3:fe:98:3e:e0:5e:9a:41:29:23:78:cf:3f:b7:6c:
ce:a9:78:00:52:66:2b:b9:0a:89:1a:1d:05:89:96:
66:dd:83:bc:31:4d:e7:a9:72:03:19:d9:64:1e:8c:
27:b0:f4:7c:d5:b5:c4:90:cf:42:9a:e9:08:61:59:
a6:6e:fe:21:8f:c6:3d:6b:46:6b:50:67:90:d9:eb:
b8:24:09:2a:de:d5:92:ca:6d:f1:03:f9:8f:49:52:
c3:7c:1b:7c:68:81:42:69:cf:0a:56:af:68:5d:bf:
1b:60:c2:21:62:64:f2:c7:b9:45:2a:ad:42:20:db:
9d:47:24:3e:56:fe:14:be:4d:ce:53:45:ed:a0:e9:
94:19:9d:e3:70:b2:1c:57:99:73:a6:94:1d:a4:20:
2e:b9:da:95:62:87:8e:4e:d6:bd:6d:69:02:b3:af:
95:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4B:44:B9:A2:33:C2:97:16:7B:EE:94:58:E0:A3:D8:D9:F5:2A:96
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/WEtEuaIzwpcWe-6UWOCj2Nn1KpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.230.0/24
Signature Algorithm: sha256WithRSAEncryption
34:98:59:13:4f:b3:ac:b5:54:bd:c1:ba:fc:23:9b:ce:7b:6d:
fb:f1:9f:a6:e4:14:44:6a:29:b2:45:c8:c3:78:ab:81:d0:0a:
d8:6e:41:51:53:2c:19:61:f6:ea:f4:dd:d2:4a:67:ff:30:2a:
58:79:7b:6d:2d:2b:2c:10:ba:84:11:f6:d3:7a:2a:b6:46:14:
35:ab:a4:21:20:b3:f0:6d:7d:88:32:76:c6:e6:55:a3:a1:53:
d9:bb:97:a5:88:bb:18:dc:45:6d:57:8e:4a:dc:51:47:ce:d3:
07:fa:10:9b:fa:b4:e9:d6:c3:fb:db:69:18:b3:a7:76:c7:13:
16:2f:89:92:70:0a:c3:ac:cb:aa:08:a1:df:69:82:b4:c1:f6:
b3:d3:0c:4e:ce:fa:3b:fe:44:f3:f8:b4:de:d5:eb:e2:10:e9:
b8:6a:c9:b4:df:dc:b1:8b:ab:ec:9e:52:a8:b1:a0:b3:7d:65:
6c:71:05:97:74:d7:14:bc:bc:23:2e:a6:e1:ad:a0:ae:7a:b0:
fa:b2:3f:9b:83:f4:79:2c:a3:ae:eb:b2:63:80:c3:c7:e7:1c:
be:b0:5d:38:d6:65:93:b0:dd:c8:dc:03:80:8d:9f:54:d8:b5:
94:4d:08:f6:a2:08:fa:db:84:c3:c1:4f:a4:b1:83:f8:0d:77:
75:88:94:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:27 2025 by rpki-client