Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/31/34352e3134322e3136352e302f32342d3234203d3e2034373835.roa
File: 34352e3134322e3136352e302f32342d3234203d3e2034373835.roa (raw, json)
Hash identifier: bSjWZ5TIN2OwicnaZTz+ekfLGhMaz1dKHzDJw3bgFn4=
Subject key identifier: CA:14:06:8F:AE:95:D1:0D:9C:09:94:FA:89:6A:0F:52:CC:ED:A8:4A
Certificate issuer: /CN=eb348a4bd62409dc8a9cdef33d5f34c334c0b156
Certificate serial: 3E34CD8D5FC450903D7C7C9F49AA8A7B026DDDC0
Authority key identifier: EB:34:8A:4B:D6:24:09:DC:8A:9C:DE:F3:3D:5F:34:C3:34:C0:B1:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6zSKS9YkCdyKnN7zPV80wzTAsVY.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/31/34352e3134322e3136352e302f32342d3234203d3e2034373835.roa
Signing time: Tue 11 Jan 2022 12:51:21 +0000
ROA not before: Tue 11 Jan 2022 12:46:21 +0000
ROA not after: Tue 10 Jan 2023 12:51:21 +0000
asID: 4785
IP address blocks: 45.142.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:34:cd:8d:5f:c4:50:90:3d:7c:7c:9f:49:aa:8a:7b:02:6d:dd:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb348a4bd62409dc8a9cdef33d5f34c334c0b156
Validity
Not Before: Jan 11 12:46:21 2022 GMT
Not After : Jan 10 12:51:21 2023 GMT
Subject: CN=CA14068FAE95D10D9C0994FA896A0F52CCEDA84A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9a:d6:4d:c6:00:68:78:a4:e3:c1:e2:7e:35:
60:5b:5d:12:24:e5:cc:5d:ea:06:2c:4f:86:fc:c7:
80:77:a2:34:82:21:df:2a:73:51:7d:f7:d2:11:cb:
86:71:b7:b6:aa:a5:65:e6:55:56:ee:60:43:d1:53:
23:ce:44:eb:11:89:dd:aa:69:1f:89:63:29:54:5a:
56:3e:41:fa:03:1c:5d:06:96:ad:3b:48:8e:33:77:
c2:36:c4:45:ba:c0:31:01:eb:ac:29:7b:31:73:19:
e4:39:75:89:c3:1b:f7:96:26:99:fe:dd:4c:ce:05:
9c:d5:be:e6:3b:8a:b7:8a:ab:0b:f8:85:f4:d6:c6:
8e:d8:d5:30:5f:b2:74:e1:31:15:38:f6:ff:8f:55:
06:7f:30:4b:29:ba:e5:e2:95:f5:42:c5:b9:d1:4d:
ed:77:45:a2:3a:65:68:15:47:46:33:ad:39:e6:6a:
29:1f:b5:3d:7a:5f:ee:bf:4e:7e:74:4c:fd:1f:ac:
4b:78:d7:c3:8d:7d:73:67:b3:d3:cd:d3:71:31:da:
89:c0:4a:c0:a2:ba:53:0d:12:23:75:b5:51:12:ca:
b1:42:8c:69:ac:25:d0:98:b0:7e:02:59:34:79:d4:
de:66:94:48:3f:16:89:f4:4e:71:5e:5c:de:3f:74:
46:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:14:06:8F:AE:95:D1:0D:9C:09:94:FA:89:6A:0F:52:CC:ED:A8:4A
X509v3 Authority Key Identifier:
keyid:EB:34:8A:4B:D6:24:09:DC:8A:9C:DE:F3:3D:5F:34:C3:34:C0:B1:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/31/EB348A4BD62409DC8A9CDEF33D5F34C334C0B156.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6zSKS9YkCdyKnN7zPV80wzTAsVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/31/34352e3134322e3136352e302f32342d3234203d3e2034373835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.165.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:63:1a:8f:36:6b:26:30:06:8f:92:75:11:ff:4d:2e:fb:b6:
41:ca:87:8a:a4:16:9b:1e:9c:df:a3:5e:0d:35:df:76:dc:6c:
fb:8d:91:76:68:1b:4d:8a:cb:85:c6:70:8f:b3:c7:65:9a:09:
5c:03:96:f3:83:80:ca:c5:f1:70:2c:8e:72:8a:69:76:1a:ec:
07:98:c8:8b:87:f2:ee:4c:b5:34:44:41:3a:01:15:46:2c:52:
d9:87:4d:f9:d4:ca:c2:e5:7c:ee:d9:17:e1:c0:fd:b6:f1:53:
fc:98:6c:e9:8a:f4:a7:6e:dd:b7:1f:93:6a:28:ec:68:4a:db:
12:18:c4:70:af:6f:51:24:80:5f:55:05:3f:d2:75:5b:db:08:
24:7f:15:3c:53:6e:7b:23:0b:83:1c:44:a2:8c:00:1c:9e:4b:
97:ed:a0:7b:1f:34:4a:6d:cb:f0:94:b6:dc:38:ec:93:91:8f:
cb:ff:13:04:f3:3d:89:1d:88:01:3c:76:ec:de:80:42:c8:31:
52:fc:7e:b3:dd:f4:c1:a8:ae:43:e9:09:db:c3:3f:20:28:72:
d0:58:d8:51:e1:04:cb:02:38:63:ec:ac:43:04:ba:9b:2c:92:
47:ab:6f:58:5a:8e:bf:71:75:15:87:2e:42:1a:b5:2d:93:49:
6c:c6:ac:4c
-----BEGIN CERTIFICATE-----
MIIExDCCA6ygAwIBAgIUPjTNjV/EUJA9fHyfSaqKewJt3cAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoZWIzNDhhNGJkNjI0MDlkYzhhOWNkZWYzM2Q1ZjM0YzMz
NGMwYjE1NjAeFw0yMjAxMTExMjQ2MjFaFw0yMzAxMTAxMjUxMjFaMDMxMTAvBgNV
BAMTKENBMTQwNjhGQUU5NUQxMEQ5QzA5OTRGQTg5NkEwRjUyQ0NFREE4NEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzmtZNxgBoeKTjweJ+NWBbXRIk
5cxd6gYsT4b8x4B3ojSCId8qc1F999IRy4Zxt7aqpWXmVVbuYEPRUyPOROsRid2q
aR+JYylUWlY+QfoDHF0Glq07SI4zd8I2xEW6wDEB66wpezFzGeQ5dYnDG/eWJpn+
3UzOBZzVvuY7ireKqwv4hfTWxo7Y1TBfsnThMRU49v+PVQZ/MEspuuXilfVCxbnR
Te13RaI6ZWgVR0YzrTnmaikftT16X+6/Tn50TP0frEt418ONfXNns9PN03Ex2onA
SsCiulMNEiN1tVESyrFCjGmsJdCYsH4CWTR51N5mlEg/Fon0TnFeXN4/dEZzAgMB
AAGjggHOMIIByjAdBgNVHQ4EFgQUyhQGj66V0Q2cCZT6iWoPUsztqEowHwYDVR0j
BBgwFoAU6zSKS9YkCdyKnN7zPV80wzTAsVYwDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS8zMS9F
QjM0OEE0QkQ2MjQwOURDOEE5Q0RFRjMzRDVGMzRDMzM0QzBCMTU2LmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvNnpTS1M5WWtDZHlLbk43elBWODB3elRBc1ZZLmNl
cjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS8zMS8zNDM1MmUzMTM0MzIyZTMxMzYzNTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM0MzczODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY6lMA0GCSqGSIb3DQEB
CwUAA4IBAQA6YxqPNmsmMAaPknUR/00u+7ZByoeKpBabHpzfo14NNd923Gz7jZF2
aBtNisuFxnCPs8dlmglcA5bzg4DKxfFwLI5yiml2GuwHmMiLh/LuTLU0REE6ARVG
LFLZh0351MrC5Xzu2RfhwP228VP8mGzpivSnbt23H5NqKOxoStsSGMRwr29RJIBf
VQU/0nVb2wgkfxU8U257IwuDHESijAAcnkuX7aB7HzRKbcvwlLbcOOyTkY/L/xME
8z2JHYgBPHbs3oBCyDFS/H6z3fTBqK5D6Qnbwz8gKHLQWNhR4QTLAjhj7KxDBLqb
LJJHq29YWo6/cXUVhy5CGrUtk0lsxqxM
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:23 2024 by rpki-client on console-fra.rpki-client.org