Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa
File: 3130332e35362e35322e302f32322d3234203d3e2039333132.roa (raw, json)
Hash identifier: I5d60IB2KEbvET4bHgVAmjL+rNNj+/RMDX5hP7I5oUM=
Subject key identifier: 57:6E:1A:49:0A:9A:E7:10:78:D7:FF:14:6B:14:7C:7E:D8:11:D4:36
Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B
Certificate serial: 5ABF638E1B97D7CF9D0F84FED9C44B1A5A2C83AA
Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa
Signing time: Thu 12 Dec 2024 06:22:43 +0000
ROA not before: Thu 12 Dec 2024 06:17:43 +0000
ROA not after: Thu 11 Dec 2025 06:22:43 +0000
asID: 9312
IP address blocks: 103.56.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:bf:63:8e:1b:97:d7:cf:9d:0f:84:fe:d9:c4:4b:1a:5a:2c:83:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913250A0000
Validity
Not Before: Dec 12 06:17:43 2024 GMT
Not After : Dec 11 06:22:43 2025 GMT
Subject: CN=576E1A490A9AE71078D7FF146B147C7ED811D436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:21:14:64:b6:b9:20:e7:5c:3c:f9:08:14:24:
36:7c:14:e1:f4:b6:a3:c5:e8:29:99:55:35:27:07:
f0:dc:05:a9:50:dc:18:65:21:14:4f:37:41:8c:aa:
5c:84:c4:0c:0b:08:7a:42:9a:f1:28:92:ef:b2:2f:
55:60:e2:de:3d:71:18:0d:84:16:da:44:e1:92:83:
d9:6b:e8:d0:d3:f0:41:45:b4:08:ef:58:83:12:e1:
71:5e:16:8d:d3:7e:5d:23:c0:38:fb:c4:41:e0:5e:
4c:cc:9c:5f:cf:69:97:b9:fd:86:fb:d3:0d:25:6d:
04:f8:40:f0:6b:60:3c:23:c0:34:c1:8d:84:ab:85:
a5:53:71:0e:50:97:ea:7d:c9:5a:5e:f8:20:9c:a9:
7e:2e:fc:a1:8d:b9:c1:95:0a:bf:59:96:8a:b1:d5:
0c:24:50:e8:6b:0a:99:48:12:bc:92:2b:1d:9f:17:
51:53:06:a3:7f:8f:98:d0:b8:5c:69:7d:aa:67:4d:
c3:b3:28:b8:24:3f:65:ce:01:ae:69:1b:dc:aa:c1:
d1:09:e1:68:cb:9f:f3:71:f2:6c:cc:34:14:76:33:
cb:79:81:1d:ba:73:29:96:76:e0:2f:45:c1:a3:f3:
48:2d:9a:8b:2c:32:89:ab:25:c0:08:ed:11:0f:ba:
45:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:6E:1A:49:0A:9A:E7:10:78:D7:FF:14:6B:14:7C:7E:D8:11:D4:36
X509v3 Authority Key Identifier:
keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/3130332e35362e35322e302f32322d3234203d3e2039333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.52.0/22
Signature Algorithm: sha256WithRSAEncryption
97:2b:69:08:97:01:54:de:5a:90:65:f0:cb:4b:ad:fe:05:31:
62:59:b1:a7:9c:8d:84:07:94:16:3f:ce:b5:0a:86:d7:17:66:
85:0c:3f:52:4e:40:fc:1e:0b:18:43:1a:10:9b:bc:51:02:be:
38:18:bc:b2:72:6a:3b:b5:5c:4d:e2:89:44:80:44:59:d8:da:
3e:4e:c8:41:2f:65:d8:11:81:5b:9b:0c:ff:1c:44:d0:0c:73:
ab:6b:59:26:6f:51:58:33:c5:af:26:10:51:1d:4e:aa:b9:33:
51:a5:f0:bc:05:a1:19:b8:75:f5:1d:78:a1:d8:28:09:58:76:
f3:24:58:77:30:dc:71:17:da:5b:df:71:da:1b:5b:04:7c:cb:
f1:ba:16:f5:c0:76:cd:3c:77:6d:96:93:ee:6b:ab:9f:01:70:
69:bd:a1:8b:5b:88:95:74:a7:84:3e:98:84:7d:4b:23:00:a3:
c9:bf:f9:94:24:35:d3:60:24:de:0e:fe:99:3f:9e:e9:05:0f:
14:64:cc:b8:93:4e:55:3f:ee:5b:da:b6:86:65:85:40:d2:15:
6f:70:b9:8d:d9:eb:db:6f:53:68:df:6f:14:b9:31:ca:bf:64:
54:34:21:f6:e4:58:01:8b:82:87:7d:23:0e:94:89:0a:78:3e:
44:74:dd:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:05 2025 by rpki-client