Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dCtu-FnOKULX5NjXFI-joQeMiAQ.roa
File: dCtu-FnOKULX5NjXFI-joQeMiAQ.roa (raw, json)
Hash identifier: ShgKhWz0EhBs0gyvuSUjpBQHrybzOi4s8etiPJ10sVg=
Subject key identifier: 74:2B:6E:F8:59:CE:29:42:D7:E4:D8:D7:14:8F:A3:A1:07:8C:88:04
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 01938836261D31A5EB0DF06946134557F8ED
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dCtu-FnOKULX5NjXFI-joQeMiAQ.roa
Signing time: Mon 02 Dec 2024 16:31:10 +0000
ROA not before: Mon 02 Dec 2024 16:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53107
IP address blocks: 14.102.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:88:36:26:1d:31:a5:eb:0d:f0:69:46:13:45:57:f8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Dec 2 16:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=742b6ef859ce2942d7e4d8d7148fa3a1078c8804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:aa:a3:cf:01:0a:00:e1:d3:9a:42:31:55:34:
93:70:68:e8:f1:08:e0:3c:1d:e2:fe:83:78:ef:4b:
71:de:d2:f7:bd:72:fa:3c:7d:7e:9a:38:67:88:3e:
5c:f0:56:6e:f5:35:35:f1:02:8d:f5:e6:08:35:60:
67:ae:1b:1b:68:01:05:64:3a:b8:7f:6c:0f:4f:95:
ed:58:03:6b:48:87:b5:a8:c2:3e:7e:12:dc:b2:e7:
a0:cb:fc:26:bd:38:41:a1:55:68:8e:49:e4:08:d2:
9c:10:0c:e7:3f:d3:20:8a:a3:6e:4f:53:92:c3:ed:
82:b5:49:18:81:db:a0:a7:c7:46:ff:7b:60:98:61:
84:8b:b3:af:47:df:6a:ee:16:2c:c9:8c:38:96:21:
e4:5e:b3:4f:98:f8:92:c5:17:bd:35:ae:37:f8:0b:
8e:84:e7:49:49:a7:2c:34:15:70:3f:54:b3:b6:49:
7c:04:1d:a0:2d:4b:b4:14:9e:4f:cd:d2:04:4d:0f:
1e:8c:d7:a4:ff:b1:bc:0f:1d:db:9e:0e:8b:7c:6d:
2e:b6:e7:79:78:48:0d:12:c5:e3:38:40:ac:9c:c8:
76:28:6b:13:b1:9f:92:1c:84:b9:8c:6c:e9:2b:59:
ef:be:72:ed:08:77:85:21:63:6e:41:e1:a5:72:05:
14:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2B:6E:F8:59:CE:29:42:D7:E4:D8:D7:14:8F:A3:A1:07:8C:88:04
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/dCtu-FnOKULX5NjXFI-joQeMiAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.230.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ca:bb:73:3d:e8:df:88:13:71:43:2a:b8:27:99:4b:62:64:
7c:7f:6a:98:46:44:bc:2c:7b:17:1b:c1:c5:c4:a3:26:46:06:
de:84:c9:ca:41:4f:42:15:de:b9:48:a0:8d:97:ea:8f:a1:1d:
5e:cc:46:4f:ec:06:ab:d5:a2:c9:30:3b:a1:9c:3f:29:ae:93:
67:41:6c:92:7c:2b:53:91:e5:05:77:07:d5:4d:39:b7:2a:03:
e3:de:4d:ab:c8:d6:87:5a:62:e7:df:f7:ad:7c:78:a9:68:2c:
dd:c5:cb:52:5f:11:96:aa:df:6c:a4:e0:c8:2f:02:cc:f5:42:
28:b4:57:63:97:ee:5d:e3:de:e6:1e:b9:9c:ee:45:16:77:b6:
fb:fa:c4:99:d2:07:e9:76:2e:02:9a:2c:c4:4c:44:31:ad:03:
03:7e:0e:af:26:17:04:a6:2e:1d:ca:9f:e7:98:a7:df:b7:86:
53:2c:f3:0b:0e:fe:10:48:e5:f3:d1:20:62:3b:3b:37:73:f5:
bf:4f:1e:09:e8:72:f0:48:57:47:b1:86:a8:31:fe:14:90:2e:
7f:49:ad:8d:b2:6b:b0:51:dd:25:b0:14:24:44:03:bf:70:e5:
4a:af:9f:94:0a:f1:53:a0:b6:df:e9:a7:d1:14:8f:cd:9c:c7:
2c:d8:c7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:21 2024 by rpki-client on console.sobornost.net