Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32322d3234203d3e2033323538.roa
File: 3130332e3139332e3132382e302f32322d3234203d3e2033323538.roa (raw, json)
Hash identifier: QKdp+97/jBscT8ua2qqpOoD5458W90JnJCIl2/HTZ9w=
Subject key identifier: 87:2C:52:58:29:D0:C5:8F:27:57:03:BD:B1:6F:3A:7A:9B:EB:32:EA
Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729
Certificate serial: 186FEE0C29092A26CAC49DB4DD28AB09B8B1D3B3
Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32322d3234203d3e2033323538.roa
Signing time: Wed 18 Dec 2024 11:44:03 +0000
ROA not before: Wed 18 Dec 2024 11:39:03 +0000
ROA not after: Wed 17 Dec 2025 11:44:03 +0000
asID: 3258
IP address blocks: 103.193.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:6f:ee:0c:29:09:2a:26:ca:c4:9d:b4:dd:28:ab:09:b8:b1:d3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9181FC40000
Validity
Not Before: Dec 18 11:39:03 2024 GMT
Not After : Dec 17 11:44:03 2025 GMT
Subject: CN=872C525829D0C58F275703BDB16F3A7A9BEB32EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:01:9c:a9:08:e2:de:a6:b0:37:f9:db:bb:db:
0a:fb:2e:08:a0:eb:0c:4c:5b:d4:76:03:15:20:d2:
b9:88:bc:42:cf:57:e0:b1:88:ea:5f:5b:1c:19:77:
bc:f8:e8:bb:e9:3c:c8:0d:0e:e5:41:34:57:97:81:
fe:6d:13:cd:72:66:ef:80:3e:88:c5:57:2c:ba:fd:
4f:e2:53:69:e2:27:ab:3d:ea:c0:ba:4b:6a:55:c3:
14:94:ae:30:94:ad:34:8d:cb:33:c8:f4:f5:0a:98:
33:9c:97:36:e6:77:5e:1b:c3:60:98:ab:26:de:52:
79:ef:3f:b2:f9:55:c1:78:6a:7e:9b:10:df:c1:00:
58:48:bd:df:90:b2:a0:a5:f0:21:fa:e7:a6:53:0d:
d5:a7:8f:08:a3:17:66:9a:85:d0:b5:23:19:dc:cd:
16:b2:59:25:8e:de:6b:02:2d:c6:0d:9d:27:8b:81:
1d:a7:6a:16:99:da:a5:3e:9f:1f:a6:c0:83:c2:46:
24:16:33:66:0d:64:0d:15:ff:41:5e:5f:a7:63:24:
96:c1:5d:4a:28:fe:aa:58:39:27:b9:86:a5:d9:c8:
6e:3c:9b:1d:ac:c6:e7:03:c2:e6:0c:54:e5:e0:47:
dd:79:a9:1e:4f:26:31:fd:2a:91:1d:8a:b9:70:5d:
00:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2C:52:58:29:D0:C5:8F:27:57:03:BD:B1:6F:3A:7A:9B:EB:32:EA
X509v3 Authority Key Identifier:
keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32322d3234203d3e2033323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.193.128.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:0d:1c:21:f5:18:87:73:82:3f:42:74:b5:a3:d7:58:fb:f6:
cd:46:5b:14:d5:17:62:11:8f:be:77:e3:e8:69:79:c6:05:bc:
a2:ef:95:53:93:0f:96:7d:3e:86:b4:3d:04:8f:87:dd:34:46:
1d:08:41:1e:1c:c1:b9:c4:cd:b4:c7:ef:b4:18:50:7c:b1:55:
01:db:cb:15:6b:cf:dc:1d:48:11:7f:d4:9e:5e:06:a7:a9:56:
8a:1a:71:d9:56:2a:ea:96:99:2c:fc:93:1d:a7:90:99:39:17:
eb:43:c4:e0:35:33:ee:88:94:76:72:8a:51:31:eb:43:bd:a7:
6a:02:ab:1a:a5:d0:84:8f:8f:b0:8b:d4:9e:ac:ee:64:75:2f:
a7:1c:2a:b2:82:52:91:02:a7:33:c5:09:b4:cb:93:63:b8:6a:
83:5e:ea:6f:6d:ac:9b:43:e1:07:73:c1:b6:52:de:39:df:15:
41:04:3c:55:83:4f:c7:ce:46:8a:a3:f9:aa:24:65:d5:36:ef:
fb:d2:78:9b:58:5a:cd:fa:72:98:5f:1d:f7:8a:6f:bc:a9:a9:
e8:f8:77:67:86:e3:a5:fb:e5:a2:18:ed:c3:43:2a:b5:7d:3b:
05:31:a3:2a:44:1a:d8:85:22:7a:48:2b:42:c6:3b:33:22:88:
6f:a9:cd:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:28:06 2025 by rpki-client