Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/32/34352e3133332e3131392e302f32342d3234203d3e203335323531.roa
File: 34352e3133332e3131392e302f32342d3234203d3e203335323531.roa (raw, json)
Hash identifier: s7yYbEwBCURwQPk2GX/2Iigqy1btcxzHehRNFymm/lY=
Subject key identifier: 5C:BE:7D:F6:55:30:41:DB:1D:C0:5F:51:30:AD:F4:D1:95:DB:A8:B3
Certificate issuer: /CN=507b9d22a50176c420523574618691e525560fd6
Certificate serial: 52945C30DF78269CD083134D5C0E92C2D23F55EA
Authority key identifier: 50:7B:9D:22:A5:01:76:C4:20:52:35:74:61:86:91:E5:25:56:0F:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHudIqUBdsQgUjV0YYaR5SVWD9Y.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/32/34352e3133332e3131392e302f32342d3234203d3e203335323531.roa
Signing time: Tue 11 Jan 2022 12:51:19 +0000
ROA not before: Tue 11 Jan 2022 12:46:19 +0000
ROA not after: Tue 10 Jan 2023 12:51:19 +0000
asID: 35251
IP address blocks: 45.133.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:94:5c:30:df:78:26:9c:d0:83:13:4d:5c:0e:92:c2:d2:3f:55:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=507b9d22a50176c420523574618691e525560fd6
Validity
Not Before: Jan 11 12:46:19 2022 GMT
Not After : Jan 10 12:51:19 2023 GMT
Subject: CN=5CBE7DF6553041DB1DC05F5130ADF4D195DBA8B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:db:c5:f7:fa:31:87:90:94:2a:22:af:57:fe:
cd:04:f1:1a:ff:13:6d:f5:c8:13:dc:e0:44:7c:e9:
e2:8b:b6:82:01:a7:cb:b6:34:a9:fb:16:10:f3:f1:
01:fb:93:5a:13:33:25:e8:63:2f:60:35:fd:0c:b3:
f5:4a:60:4f:96:39:7a:b1:b8:ea:17:2d:b3:fd:0c:
d7:d5:54:e0:47:a0:d8:ed:f0:fc:cf:62:dc:98:e9:
70:43:46:ad:40:91:49:8c:c5:51:4c:1a:12:55:61:
41:0b:61:10:30:08:2a:62:c1:e3:b2:f6:62:41:a5:
3f:91:7e:7e:7a:73:05:8b:aa:bb:39:ca:2d:a6:25:
c6:f9:2d:c1:2f:04:26:44:c4:6e:c9:bd:f8:d4:7b:
9f:b0:69:d8:0a:d8:20:59:d2:1a:01:0c:99:df:de:
05:a6:c7:84:d7:ed:23:5f:02:59:ba:de:8e:5b:3f:
cd:84:de:8f:4e:5f:6e:30:18:b2:b7:9a:40:c8:7d:
50:74:86:7c:87:86:0b:51:b4:ed:a8:60:7c:64:74:
34:1d:c8:76:23:da:65:36:7a:89:c2:15:36:ad:a5:
fb:fa:55:47:2f:ef:c4:02:f7:74:3b:e7:36:83:ad:
fe:79:c1:b9:b0:22:0f:6d:50:80:77:49:50:5f:79:
02:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BE:7D:F6:55:30:41:DB:1D:C0:5F:51:30:AD:F4:D1:95:DB:A8:B3
X509v3 Authority Key Identifier:
keyid:50:7B:9D:22:A5:01:76:C4:20:52:35:74:61:86:91:E5:25:56:0F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/32/507B9D22A50176C420523574618691E525560FD6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHudIqUBdsQgUjV0YYaR5SVWD9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/32/34352e3133332e3131392e302f32342d3234203d3e203335323531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.119.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:c6:2b:8c:e0:d5:dd:d9:55:2c:75:e5:06:90:7c:de:ea:56:
82:55:ba:7e:8a:72:33:31:37:3d:67:52:0c:5d:52:64:88:46:
c4:32:33:bc:84:58:2e:2c:a8:9b:45:ab:62:81:92:20:9f:77:
d1:bf:5c:da:13:ca:93:62:0d:89:23:9e:97:49:a6:57:1a:ee:
4b:3a:01:d3:15:ce:49:df:4d:c3:59:6b:48:ca:a9:35:8c:25:
17:3d:a8:55:72:62:90:ff:bc:92:95:d5:a0:67:c0:e7:f0:ef:
8d:48:49:d3:1d:a9:ca:ad:47:4b:12:64:e2:83:2b:fd:6c:5c:
e8:f3:c8:ad:27:cf:3c:07:bd:b0:95:82:fa:df:a5:b9:7f:41:
75:27:a7:b3:96:5e:65:98:7e:dc:7e:ef:04:87:23:69:39:62:
f9:9b:0f:96:1f:90:96:04:28:20:f7:95:c8:df:e6:e9:8b:59:
ea:1d:7a:02:4c:a1:82:d2:9d:e1:6c:35:e3:2a:21:7b:61:ea:
17:d6:d5:fc:f8:42:50:28:e9:9d:a7:fb:e8:46:ea:63:36:bf:
f6:3a:bb:ec:6c:4c:63:20:ef:53:c6:19:0a:a0:1c:50:5e:35:
ab:22:0f:22:2f:70:f2:75:d4:0c:8b:61:78:20:a0:95:34:a8:
9b:26:68:f2
-----BEGIN CERTIFICATE-----
MIIExjCCA66gAwIBAgIUUpRcMN94JpzQgxNNXA6SwtI/VeowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTA3YjlkMjJhNTAxNzZjNDIwNTIzNTc0NjE4NjkxZTUy
NTU2MGZkNjAeFw0yMjAxMTExMjQ2MTlaFw0yMzAxMTAxMjUxMTlaMDMxMTAvBgNV
BAMTKDVDQkU3REY2NTUzMDQxREIxREMwNUY1MTMwQURGNEQxOTVEQkE4QjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo28X3+jGHkJQqIq9X/s0E8Rr/
E231yBPc4ER86eKLtoIBp8u2NKn7FhDz8QH7k1oTMyXoYy9gNf0Ms/VKYE+WOXqx
uOoXLbP9DNfVVOBHoNjt8PzPYtyY6XBDRq1AkUmMxVFMGhJVYUELYRAwCCpiweOy
9mJBpT+Rfn56cwWLqrs5yi2mJcb5LcEvBCZExG7JvfjUe5+wadgK2CBZ0hoBDJnf
3gWmx4TX7SNfAlm63o5bP82E3o9OX24wGLK3mkDIfVB0hnyHhgtRtO2oYHxkdDQd
yHYj2mU2eonCFTatpfv6VUcv78QC93Q75zaDrf55wbmwIg9tUIB3SVBfeQJ9AgMB
AAGjggHQMIIBzDAdBgNVHQ4EFgQUXL599lUwQdsdwF9RMK300ZXbqLMwHwYDVR0j
BBgwFoAUUHudIqUBdsQgUjV0YYaR5SVWD9YwDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS8zMi81
MDdCOUQyMkE1MDE3NkM0MjA1MjM1NzQ2MTg2OTFFNTI1NTYwRkQ2LmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvVUh1ZElxVUJkc1FnVWpWMFlZYVI1U1ZXRDlZLmNl
cjB4BggrBgEFBQcBCwRsMGowaAYIKwYBBQUHMAuGXHJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS8zMi8zNDM1MmUzMTMzMzMyZTMxMzEzOTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMzMzUzMjM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAthXcwDQYJKoZIhvcN
AQELBQADggEBAKHGK4zg1d3ZVSx15QaQfN7qVoJVun6KcjMxNz1nUgxdUmSIRsQy
M7yEWC4sqJtFq2KBkiCfd9G/XNoTypNiDYkjnpdJplca7ks6AdMVzknfTcNZa0jK
qTWMJRc9qFVyYpD/vJKV1aBnwOfw741ISdMdqcqtR0sSZOKDK/1sXOjzyK0nzzwH
vbCVgvrfpbl/QXUnp7OWXmWYftx+7wSHI2k5YvmbD5YfkJYEKCD3lcjf5umLWeod
egJMoYLSneFsNeMqIXth6hfW1fz4QlAo6Z2n++hG6mM2v/Y6u+xsTGMg71PGGQqg
HFBeNasiDyIvcPJ11AyLYXggoJU0qJsmaPI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org