Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lyYECwdMnZoRxPbcO4CXXPPIA9I.roa
File: lyYECwdMnZoRxPbcO4CXXPPIA9I.roa (raw, json)
Hash identifier: PBcjETafsL2v+cHKC7PDT2l2jqkl2c7FLaptRLbpbb4=
Subject key identifier: 97:26:04:0B:07:4C:9D:9A:11:C4:F6:DC:3B:80:97:5C:F3:C8:03:D2
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018B817F29B83322F324F47851BEDB166B38
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lyYECwdMnZoRxPbcO4CXXPPIA9I.roa
Signing time: Mon 30 Oct 2023 16:51:16 +0000
ROA not before: Mon 30 Oct 2023 16:51:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 14.102.228.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:7f:29:b8:33:22:f3:24:f4:78:51:be:db:16:6b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Oct 30 16:51:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9726040b074c9d9a11c4f6dc3b80975cf3c803d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:69:03:65:1d:eb:b7:aa:e3:0b:04:bf:a0:
fc:89:d5:d6:21:e3:b0:ff:a1:73:17:2c:22:fd:de:
8b:c4:5d:eb:53:e2:8d:01:a9:a3:53:25:41:60:5b:
8b:df:4b:a6:6d:53:5f:d6:16:e3:9e:c9:c8:b3:3e:
64:17:88:b6:22:93:01:61:9a:61:87:9c:00:39:fd:
94:dc:14:0c:67:3c:47:84:46:6b:4d:bd:3b:85:d2:
9f:64:30:4d:6c:5e:7f:f8:93:6d:3d:e5:c3:df:1e:
88:0f:75:db:9c:26:61:18:4c:89:8b:14:e6:24:f9:
40:b9:f3:27:23:db:20:1d:de:68:c6:b1:9b:76:15:
77:3b:c9:5f:c5:50:48:6c:c5:dd:1c:b9:70:5e:a4:
f3:38:c6:c7:aa:78:ed:12:2e:6f:46:d7:90:de:4c:
33:1a:14:5c:81:89:93:c7:97:66:ed:aa:68:00:75:
2f:6f:0d:07:30:76:de:9b:9f:2d:57:e0:37:af:1e:
02:3d:ea:87:92:ea:e0:aa:64:46:01:08:7c:8d:d9:
be:47:1a:e3:60:a3:52:f5:8d:31:d2:b0:99:40:33:
98:b2:63:e8:5a:e5:60:14:8e:f6:6b:3f:f9:d6:bb:
76:dd:85:be:65:27:24:86:7a:c2:9f:6f:60:fa:c6:
c6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:26:04:0B:07:4C:9D:9A:11:C4:F6:DC:3B:80:97:5C:F3:C8:03:D2
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/lyYECwdMnZoRxPbcO4CXXPPIA9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.228.0/23
Signature Algorithm: sha256WithRSAEncryption
86:3e:05:1f:e6:3f:04:a0:aa:3d:ef:a5:88:c1:e5:eb:cd:a7:
99:21:c6:20:c5:34:d0:a5:a9:dc:1b:55:a5:af:9b:7f:10:63:
3a:d9:6c:9e:f2:54:e8:69:0a:09:af:2a:9e:bc:2d:df:ca:47:
a9:b9:7f:bd:de:f7:06:97:b2:1c:04:85:86:ba:70:d2:06:bb:
e0:1c:58:82:91:e7:31:97:db:7c:ef:d5:21:8d:7b:c0:52:08:
7a:e1:57:19:03:a6:7a:be:b7:0a:9f:ba:dd:36:3e:47:41:26:
6e:90:a3:5d:c3:68:46:f8:a4:af:61:e6:ba:4d:af:13:f8:8c:
2a:6d:c0:b4:da:cf:15:93:19:4e:1c:f1:fc:83:a6:62:51:f8:
06:f8:2a:ea:d1:cc:83:e7:c9:93:a8:02:99:76:c7:d1:a1:52:
b6:da:23:72:9e:39:c6:78:7a:63:5c:b4:79:76:3d:15:58:28:
54:27:95:d1:ad:3b:2f:32:cf:08:10:4d:a2:6b:d2:0b:14:30:
8e:1b:b1:48:fd:82:5a:01:29:43:a5:69:62:cd:30:88:52:91:
71:1b:69:03:1e:7f:a6:77:e3:67:40:d1:11:2b:9e:8e:b7:5e:
40:7d:3c:eb:09:e0:d8:85:45:b8:bd:64:bf:f4:cd:81:de:69:
f6:be:28:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuBfym4MyLzJPR4Ub7bFms4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjMxMDMwMTY1MTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzI2MDQwYjA3NGM5ZDlhMTFjNGY2ZGMzYjgwOTc1Y2YzYzgwM2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOppA2Ud67eq4wsEv6D8idXWIeOw
/6FzFywi/d6LxF3rU+KNAamjUyVBYFuL30umbVNf1hbjnsnIsz5kF4i2IpMBYZph
h5wAOf2U3BQMZzxHhEZrTb07hdKfZDBNbF5/+JNtPeXD3x6ID3XbnCZhGEyJixTm
JPlAufMnI9sgHd5oxrGbdhV3O8lfxVBIbMXdHLlwXqTzOMbHqnjtEi5vRteQ3kwz
GhRcgYmTx5dm7apoAHUvbw0HMHbem58tV+A3rx4CPeqHkurgqmRGAQh8jdm+Rxrj
YKNS9Y0x0rCZQDOYsmPoWuVgFI72az/51rt23YW+ZSckhnrCn29g+sbGgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJcmBAsHTJ2aEcT23DuAl1zzyAPSMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvbHlZRUN3ZE1uWm9SeFBiY080Q1hYUFBJQTlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBDmbkMA0G
CSqGSIb3DQEBCwUAA4IBAQCGPgUf5j8EoKo976WIweXrzaeZIcYgxTTQpancG1Wl
r5t/EGM62Wye8lToaQoJryqevC3fykepuX+93vcGl7IcBIWGunDSBrvgHFiCkecx
l9t879UhjXvAUgh64VcZA6Z6vrcKn7rdNj5HQSZukKNdw2hG+KSvYea6Ta8T+Iwq
bcC02s8VkxlOHPH8g6ZiUfgG+Crq0cyD58mTqAKZdsfRoVK22iNynjnGeHpjXLR5
dj0VWChUJ5XRrTsvMs8IEE2ia9ILFDCOG7FI/YJaASlDpWlizTCIUpFxG2kDHn+m
d+NnQNERK56Ot15AfTzrCeDYhUW4vWS/9M2B3mn2viif
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:39 2025 by rpki-client