Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203530383430.roa
File: 3139332e33322e38362e302f32342d3234203d3e203530383430.roa (raw, json)
Hash identifier: k47UKb2pO6MinUz6TDzLFePr+rnbaJ41TXdtfB1QPWk=
Subject key identifier: DF:1B:3A:94:6E:E3:4C:01:89:52:FC:5C:2E:8F:E1:69:75:E8:34:55
Certificate issuer: /CN=000b188a1a40bd66afbda0909efa612125bc8a02
Certificate serial: 63DF55C89C804765CE6E935623222A7B3036C3FA
Authority key identifier: 00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203530383430.roa
Signing time: Thu 10 Nov 2022 15:37:49 +0000
ROA not before: Thu 10 Nov 2022 15:32:49 +0000
ROA not after: Thu 09 Nov 2023 15:37:49 +0000
asID: 50840
IP address blocks: 193.32.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:df:55:c8:9c:80:47:65:ce:6e:93:56:23:22:2a:7b:30:36:c3:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b188a1a40bd66afbda0909efa612125bc8a02
Validity
Not Before: Nov 10 15:32:49 2022 GMT
Not After : Nov 9 15:37:49 2023 GMT
Subject: CN=DF1B3A946EE34C018952FC5C2E8FE16975E83455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9c:00:96:c2:84:53:5e:b5:5e:60:91:02:08:
c8:59:86:3f:a3:94:59:44:94:dc:40:56:8c:bd:a7:
62:21:f5:7e:88:63:fb:9e:c2:ae:17:02:d7:8a:6a:
dc:59:75:81:2b:44:3f:98:e5:d6:fd:68:b0:e4:da:
22:80:7d:f4:c2:85:61:47:95:07:f6:72:31:51:f6:
8e:06:91:43:37:d5:19:14:e5:23:17:99:1d:e7:95:
26:47:b3:d4:35:a7:e4:83:65:e3:45:57:24:40:35:
09:18:a8:e6:5b:a6:1a:a4:32:01:d7:2e:c6:40:54:
fa:85:4f:53:2b:24:ab:f4:b1:23:67:b4:c2:92:18:
23:c5:e4:03:99:ac:c6:29:9b:3c:1c:db:73:f2:31:
d0:6d:ac:27:fd:22:12:e4:e8:f3:1e:15:17:19:b7:
a3:f3:52:97:ef:21:0c:ab:fd:b4:94:98:1b:2f:b7:
7f:5f:c9:0c:66:b9:52:81:4b:b6:19:d1:d7:16:0e:
3a:82:b6:0e:12:b5:96:35:42:36:69:b6:56:a7:28:
e6:d6:05:9b:4e:a4:8d:9f:e9:46:6e:03:9d:66:41:
00:75:41:5b:2b:8f:99:8f:64:9a:4d:9f:ed:62:b0:
7e:79:17:5d:87:d7:cc:5f:c4:f8:13:73:af:92:7a:
56:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1B:3A:94:6E:E3:4C:01:89:52:FC:5C:2E:8F:E1:69:75:E8:34:55
X509v3 Authority Key Identifier:
keyid:00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/4/000B188A1A40BD66AFBDA0909EFA612125BC8A02.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203530383430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.86.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:75:6a:1f:19:c9:b1:fa:ae:2f:ea:86:a6:bc:c6:1e:3c:49:
f0:74:87:27:dc:b5:f2:6b:59:3d:4b:3f:d7:76:d2:1b:45:c3:
f5:52:f1:3f:ae:2b:fd:57:8a:43:4b:5b:f4:a9:7d:fa:66:aa:
39:e0:2e:72:36:7b:8c:de:bc:b1:bd:43:74:d5:2c:c3:00:cf:
cb:c9:43:70:6c:3f:35:8b:03:79:e6:3d:c2:95:ae:e2:e9:82:
48:6e:da:a8:02:73:16:df:7c:47:fb:fa:fd:c6:91:90:04:c5:
ee:91:f8:ca:08:c3:9b:bd:d8:98:1e:d8:ea:78:6e:ef:14:0a:
9d:45:23:aa:40:65:f6:07:a9:cd:2b:11:d6:7b:36:b4:61:66:
af:83:12:06:39:4c:e5:62:59:f0:1b:e6:37:23:80:52:8e:88:
c9:4b:4b:57:9d:0f:a2:0f:85:1d:00:30:36:c4:9b:d3:8e:fe:
4b:b9:dd:98:1c:7c:6c:2b:1c:75:ed:a4:c7:aa:6c:01:cf:a2:
8c:7a:7d:b4:01:94:23:b9:31:c2:2b:6f:7e:47:f3:98:d8:5a:
d1:c8:81:ca:3b:23:09:7d:da:e6:42:54:0f:e4:82:81:00:aa:
ab:bb:e3:64:53:e7:3a:75:2c:a4:59:7c:3b:21:74:07:56:50:
11:3a:6c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org