Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dtupFzUPJJBuKBc0mjQ1_PZVkS0.roa
File: dtupFzUPJJBuKBc0mjQ1_PZVkS0.roa (raw, json)
Hash identifier: 28XDVC1JWmec6cTmB9oQRPzpEjBmY049L2ieRj2siGQ=
Subject key identifier: 76:DB:A9:17:35:0F:24:90:6E:28:17:34:9A:34:35:FC:F6:55:91:2D
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019422201BE3FFD64A9ABE36602A338E12E9
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dtupFzUPJJBuKBc0mjQ1_PZVkS0.roa
Signing time: Wed 01 Jan 2025 13:48:37 +0000
ROA not before: Wed 01 Jan 2025 13:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211091
IP address blocks: 14.102.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1b:e3:ff:d6:4a:9a:be:36:60:2a:33:8e:12:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 1 13:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76dba917350f24906e2817349a3435fcf655912d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:9d:65:81:34:c5:c9:25:b9:fa:aa:34:11:
81:62:05:5e:23:34:33:76:70:3c:14:8e:9f:2d:62:
8d:72:ec:a8:a9:44:5c:4c:21:ec:e5:22:d0:38:ea:
69:c8:35:9d:ee:de:cc:cc:8c:95:91:98:24:32:d1:
f0:82:8f:54:ca:59:fe:bb:a8:6a:99:16:88:59:da:
47:e5:5b:bf:04:34:86:23:d1:d2:70:1c:d1:d4:a0:
f9:b1:3a:41:8e:26:d3:ba:4d:c4:75:04:10:41:f8:
af:72:d0:6e:1b:65:bc:4c:16:1f:1b:49:43:40:b3:
b3:67:2d:07:97:ba:da:02:89:85:b8:ca:9e:7d:60:
2a:19:21:8f:d8:7b:43:01:7d:38:df:a9:f6:06:f3:
c1:c5:40:f5:7e:86:c2:c0:0c:11:69:62:0b:4b:07:
2e:42:2a:92:23:69:4c:58:fa:af:6c:ca:6e:d9:21:
c6:4b:ea:9d:85:cc:9e:20:af:5b:c9:cb:09:a0:c3:
ee:a8:3c:ac:a1:38:ea:b9:7f:0f:3f:b4:89:43:31:
64:a3:ee:6e:cb:12:2b:74:d7:75:e5:e2:cf:2f:23:
c3:31:5b:27:ea:c7:ac:2a:f9:ec:50:25:fd:c9:75:
31:a6:f5:1d:58:6b:7f:8f:f8:34:ef:13:21:3b:96:
eb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DB:A9:17:35:0F:24:90:6E:28:17:34:9A:34:35:FC:F6:55:91:2D
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dtupFzUPJJBuKBc0mjQ1_PZVkS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.236.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:9f:50:71:56:55:ec:c1:ec:21:3c:9f:ef:d2:34:23:aa:c3:
ff:cb:f0:56:cb:5e:3c:17:df:b3:65:77:ab:5d:b6:d6:ef:84:
36:5e:62:2f:27:16:cc:03:d9:5e:ac:db:92:28:9a:44:46:7d:
ec:f8:01:22:fb:78:f4:43:5f:c2:b1:28:03:2e:70:ec:02:a7:
a8:38:a1:66:10:89:d2:e7:3b:97:da:12:40:02:8b:44:4d:89:
30:be:58:46:e1:0a:a5:41:61:41:da:34:c3:0e:58:83:d5:75:
1e:c2:2c:7b:d4:5f:3c:4b:49:4e:30:5c:6b:e7:05:52:ab:70:
fd:ba:b5:1f:7a:8d:08:3a:fc:f6:4c:9d:f6:ed:87:c2:07:53:
0b:55:a2:77:bf:2b:ab:15:c6:8c:ee:10:71:43:b1:47:80:aa:
cd:35:59:49:58:c5:fc:2d:63:a6:d1:54:39:b9:cd:d2:dc:bb:
38:33:6a:1a:ec:52:4b:38:a8:ff:d2:bb:ea:a2:80:9b:42:9f:
e3:39:d1:8c:29:d4:6b:12:74:b7:ce:67:a7:66:fe:15:80:20:
1e:5b:c9:2a:76:da:59:32:93:12:a3:88:e7:48:d0:b2:0a:d3:
c5:57:5e:fc:9b:18:4b:42:8f:9b:b5:b7:4e:90:ac:2b:59:dc:
49:27:b5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:08 2025 by rpki-client