Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203531303837.roa
File: 3139332e33322e38362e302f32342d3234203d3e203531303837.roa (raw, json)
Hash identifier: 75O/JMLtWaFSIDNqwzFnTOvyRdaQLtAzNbWHwcO6zE4=
Subject key identifier: 8E:92:B7:64:D0:76:C0:17:63:09:A0:3B:26:7F:51:23:70:92:39:5F
Certificate issuer: /CN=000b188a1a40bd66afbda0909efa612125bc8a02
Certificate serial: 2382D082EF98EB5F4292AE1FA121FCAEBD502588
Authority key identifier: 00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203531303837.roa
Signing time: Thu 24 Aug 2023 15:11:29 +0000
ROA not before: Thu 24 Aug 2023 15:06:29 +0000
ROA not after: Thu 22 Aug 2024 15:11:29 +0000
asID: 51087
IP address blocks: 193.32.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:82:d0:82:ef:98:eb:5f:42:92:ae:1f:a1:21:fc:ae:bd:50:25:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b188a1a40bd66afbda0909efa612125bc8a02
Validity
Not Before: Aug 24 15:06:29 2023 GMT
Not After : Aug 22 15:11:29 2024 GMT
Subject: CN=8E92B764D076C0176309A03B267F51237092395F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ab:e3:59:aa:8d:a7:6b:7a:d4:de:cb:ba:26:
cd:05:d7:3d:a4:7a:68:fc:96:86:40:c3:01:22:05:
a5:38:ea:04:6e:d0:fc:4d:c3:c0:ca:07:00:ad:16:
fb:3c:bd:a4:0d:6f:5d:c9:89:27:20:7d:89:85:14:
c4:44:ad:ce:25:56:2c:ae:12:c6:5e:fb:73:97:e7:
6d:97:b8:2f:e1:3b:fd:20:fd:6d:39:c4:94:07:6d:
87:aa:18:90:27:07:c4:b4:a6:a3:53:4f:db:a7:83:
23:e8:54:e7:42:2c:7f:bd:47:dd:71:52:bf:ec:8a:
df:3e:04:39:5d:ee:81:12:dc:0d:cb:71:76:2f:28:
27:a9:fa:d7:f2:cc:b7:22:ed:99:0e:d3:b5:9f:3e:
fa:0d:5e:f9:8d:39:38:07:bb:81:d0:5b:b3:55:ad:
5e:ba:76:6f:03:58:25:69:66:6d:91:d5:51:b3:ea:
e0:ba:f7:c3:e2:9d:f8:d0:13:20:3f:ba:14:0d:47:
90:6b:17:79:d5:9a:78:dc:1f:d5:f0:2e:12:18:3f:
93:77:5c:81:10:bc:07:5e:80:17:40:83:ff:a2:e1:
8c:15:96:d7:69:52:ce:cd:30:29:26:4c:a8:72:37:
27:ab:2c:46:11:bf:a4:5e:ec:c9:4a:fd:a7:62:36:
5f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:92:B7:64:D0:76:C0:17:63:09:A0:3B:26:7F:51:23:70:92:39:5F
X509v3 Authority Key Identifier:
keyid:00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/4/000B188A1A40BD66AFBDA0909EFA612125BC8A02.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203531303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.86.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d9:17:e7:ab:37:6c:29:61:c5:a8:af:e8:8e:69:9c:0a:4b:
2b:97:b8:77:f2:04:06:7a:ee:3c:6f:56:cc:70:f5:d0:e9:61:
79:ec:bc:64:97:48:ee:2c:7e:72:e3:93:26:b9:0c:c5:35:70:
1a:14:e3:3a:a6:b0:ac:c6:a8:46:f1:56:c3:76:95:8c:8e:53:
a8:79:22:cf:85:43:03:ce:4f:d6:82:90:e6:a6:f3:4f:e3:b5:
e0:f0:32:aa:a1:35:8e:84:53:ad:e2:2d:58:6c:88:c0:e4:ec:
4d:d6:52:eb:1b:c7:c6:97:c5:17:30:c2:60:18:a4:a6:b9:2d:
bc:bf:6c:8a:fb:24:df:33:78:f5:38:ad:2f:d8:58:53:d6:bb:
70:84:72:2b:fc:69:17:ec:c8:11:36:68:40:c3:f0:27:be:e5:
53:8e:22:b7:87:1e:3d:66:61:2c:7d:6f:a5:9a:77:33:58:69:
9d:83:25:5a:82:69:79:8c:25:5b:70:39:0c:55:5e:8c:48:b1:
02:2a:9f:ab:bc:54:d9:7b:f7:2c:0a:07:b8:c9:be:ca:1a:a4:
2b:7c:57:5f:b7:19:4f:d5:c6:44:ac:28:a2:d2:55:c3:4d:a9:
97:b1:fe:58:ad:20:ae:ee:41:ef:c6:59:eb:7f:75:a8:fe:03:
56:39:ce:8f
-----BEGIN CERTIFICATE-----
MIIEwjCCA6qgAwIBAgIUI4LQgu+Y619Ckq4foSH8rr1QJYgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDAwYjE4OGExYTQwYmQ2NmFmYmRhMDkwOWVmYTYxMjEy
NWJjOGEwMjAeFw0yMzA4MjQxNTA2MjlaFw0yNDA4MjIxNTExMjlaMDMxMTAvBgNV
BAMTKDhFOTJCNzY0RDA3NkMwMTc2MzA5QTAzQjI2N0Y1MTIzNzA5MjM5NUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkq+NZqo2na3rU3su6Js0F1z2k
emj8loZAwwEiBaU46gRu0PxNw8DKBwCtFvs8vaQNb13JiScgfYmFFMRErc4lViyu
EsZe+3OX522XuC/hO/0g/W05xJQHbYeqGJAnB8S0pqNTT9ungyPoVOdCLH+9R91x
Ur/sit8+BDld7oES3A3LcXYvKCep+tfyzLci7ZkO07WfPvoNXvmNOTgHu4HQW7NV
rV66dm8DWCVpZm2R1VGz6uC698PinfjQEyA/uhQNR5BrF3nVmnjcH9XwLhIYP5N3
XIEQvAdegBdAg/+i4YwVltdpUs7NMCkmTKhyNyerLEYRv6Re7MlK/adiNl9fAgMB
AAGjggHMMIIByDAdBgNVHQ4EFgQUjpK3ZNB2wBdjCaA7Jn9RI3CSOV8wHwYDVR0j
BBgwFoAUAAsYihpAvWavvaCQnvphISW8igIwDgYDVR0PAQH/BAQDAgeAMF4GA1Ud
HwRXMFUwU6BRoE+GTXJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80LzAw
MEIxODhBMUE0MEJENjZBRkJEQTA5MDlFRkE2MTIxMjVCQzhBMDIuY3JsMGQGCCsG
AQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvREVGQVVMVC9BQXNZaWhwQXZXYXZ2YUNRbnZwaElTVzhpZ0kuY2Vy
MHUGCCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5bmM6Ly9ycGtpLnJvYS5u
ZXQvcnJkcC94VG9tLzQvMzEzOTMzMmUzMzMyMmUzODM2MmUzMDJmMzIzNDJkMzIz
NDIwM2QzZTIwMzUzMTMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEgVjANBgkqhkiG9w0BAQsF
AAOCAQEARtkX56s3bClhxaiv6I5pnApLK5e4d/IEBnruPG9WzHD10Olheey8ZJdI
7ix+cuOTJrkMxTVwGhTjOqawrMaoRvFWw3aVjI5TqHkiz4VDA85P1oKQ5qbzT+O1
4PAyqqE1joRTreItWGyIwOTsTdZS6xvHxpfFFzDCYBikprktvL9sivsk3zN49Tit
L9hYU9a7cIRyK/xpF+zIETZoQMPwJ77lU44it4cePWZhLH1vpZp3M1hpnYMlWoJp
eYwlW3A5DFVejEixAiqfq7xU2Xv3LAoHuMm+yhqkK3xXX7cZT9XGRKwootJVw02p
l7H+WK0gru5B78ZZ6391qP4DVjnOjw==
-----END CERTIFICATE-----
Generated at Thu Dec 14 13:07:37 2023 by rpki-client on console-fra.rpki-client.org