Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e2033323134.roa
File: 3139332e33322e38362e302f32342d3234203d3e2033323134.roa (raw, json)
Hash identifier: 6BexSJcIcRcBs6TEdof679SPpsRSWxZIWQ3E9ubjf0I=
Subject key identifier: 38:BD:F2:A1:48:7A:49:E8:B1:86:0F:4C:02:00:A5:D4:15:84:07:28
Certificate issuer: /CN=000b188a1a40bd66afbda0909efa612125bc8a02
Certificate serial: 70D546DD228F7566C230A2087CACC588FD3E407B
Authority key identifier: 00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e2033323134.roa
Signing time: Sat 19 Aug 2023 14:24:28 +0000
ROA not before: Sat 19 Aug 2023 14:19:28 +0000
ROA not after: Sat 17 Aug 2024 14:24:28 +0000
asID: 3214
IP address blocks: 193.32.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d5:46:dd:22:8f:75:66:c2:30:a2:08:7c:ac:c5:88:fd:3e:40:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b188a1a40bd66afbda0909efa612125bc8a02
Validity
Not Before: Aug 19 14:19:28 2023 GMT
Not After : Aug 17 14:24:28 2024 GMT
Subject: CN=38BDF2A1487A49E8B1860F4C0200A5D415840728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6b:c2:f4:f2:a9:90:b6:07:5b:7a:75:19:19:
e4:88:ec:2d:a2:2e:23:0e:fa:86:e7:f0:9d:f1:b1:
2f:1c:45:54:da:d4:ad:c7:d1:ad:12:3b:d6:e6:86:
ac:87:bd:b7:94:5d:51:75:fe:9b:c1:63:36:16:cd:
08:14:90:39:34:30:4f:30:d7:09:19:73:0a:c8:da:
05:c6:ba:57:e3:aa:8b:2a:11:e6:3c:4c:b8:f2:6d:
1a:a2:24:a7:2a:c0:7a:43:d3:bf:e9:14:1b:9c:a3:
79:76:7c:2a:83:ed:3e:c0:a8:b7:48:64:a3:eb:68:
00:66:5f:7e:43:90:d5:2f:8e:8b:cc:26:2f:09:8a:
c4:4c:7b:00:40:56:f2:14:43:85:54:87:2d:f2:36:
31:d9:63:5b:42:a8:e4:8b:e5:b3:22:ef:0d:43:51:
55:3a:21:13:f0:45:aa:e3:b7:7d:24:2e:ea:19:4d:
43:c2:7e:0f:de:01:e7:8d:47:67:da:34:23:69:77:
c3:f0:7a:b8:4b:6d:99:6b:3a:1e:95:32:66:77:29:
7f:84:2f:fe:cb:60:26:c9:ef:c7:44:98:22:21:1f:
54:6e:8e:51:5a:68:f5:02:c6:f8:43:e1:75:72:bf:
17:9b:3c:1e:06:03:09:55:9c:89:76:53:2b:39:f1:
cb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BD:F2:A1:48:7A:49:E8:B1:86:0F:4C:02:00:A5:D4:15:84:07:28
X509v3 Authority Key Identifier:
keyid:00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/4/000B188A1A40BD66AFBDA0909EFA612125BC8A02.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e2033323134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.86.0/24
Signature Algorithm: sha256WithRSAEncryption
12:4c:3a:a9:e0:d3:86:15:61:cb:5a:a4:a6:1f:04:37:38:02:
ec:8b:f5:f3:08:08:77:6f:d6:36:7b:aa:cf:44:0b:70:0d:be:
76:01:dc:66:6d:2e:02:13:14:ca:a1:bd:e0:8a:cc:47:fd:98:
a0:7f:fe:95:76:25:8a:e0:c9:cf:c6:0c:13:06:db:3d:69:2a:
b5:7d:cd:7d:42:a4:e0:bf:b9:bb:ff:da:f4:dd:cd:7c:83:34:
3a:61:f4:35:1f:33:e1:40:e9:19:fe:ff:68:16:e3:fa:9b:99:
9d:46:fb:f4:a5:81:87:46:86:6c:57:82:0e:2e:92:c5:42:ff:
2e:6a:88:b8:5a:ca:a0:67:81:7f:bf:c5:b5:4e:4b:18:0f:fb:
5d:e8:56:81:03:83:ec:b4:18:88:e6:ac:11:74:a2:17:e3:36:
84:2c:68:59:4f:9f:9e:be:70:eb:1f:7c:b2:02:f1:15:c0:59:
93:37:60:bc:96:45:15:48:30:1a:e8:76:7c:e7:97:b3:13:c1:
fc:19:77:2e:bd:c1:59:2b:04:fa:45:69:a1:a4:3f:23:8e:ef:
7d:68:8a:bd:38:a8:3f:b7:de:d1:ba:e1:a2:ab:0f:eb:08:82:
40:18:95:31:14:e5:93:d4:15:ed:20:01:d3:61:a8:1f:b9:69:
51:cb:ac:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:23 2024 by rpki-client on console-fra.rpki-client.org