Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa
File: 323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa (raw, json)
Hash identifier: v+vxUbEqkAIdTzAYaj2P5AKZKUF5YCMWlreqhPAC2Wc=
Subject key identifier: FD:F1:27:A8:C1:6A:08:A2:67:D3:5B:8F:1B:4D:67:16:CF:D6:D5:9C
Certificate issuer: /CN=73516995116535a22de5a23000d3e7814baad6490837f37731
Certificate serial: 5126569C749C8C09A0D319EEF5619B3EA9A04A32
Authority key identifier: 0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa
Signing time: Wed 31 Jul 2024 15:38:37 +0000
ROA not before: Wed 31 Jul 2024 15:33:37 +0000
ROA not after: Wed 30 Jul 2025 15:38:37 +0000
asID: 201106
IP address blocks: 2605:3a40:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:26:56:9c:74:9c:8c:09:a0:d3:19:ee:f5:61:9b:3e:a9:a0:4a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73516995116535a22de5a23000d3e7814baad6490837f37731
Validity
Not Before: Jul 31 15:33:37 2024 GMT
Not After : Jul 30 15:38:37 2025 GMT
Subject: CN=FDF127A8C16A08A267D35B8F1B4D6716CFD6D59C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a8:a2:43:5e:3a:aa:92:e8:77:ab:34:c0:d7:
6c:ed:c9:13:c5:b6:a5:99:0b:c5:ce:b8:68:d8:0e:
08:6b:60:52:7d:df:3b:b5:c1:41:9c:df:cd:db:71:
c8:2a:1b:2c:2f:fa:f3:eb:d2:10:6d:4b:f8:c8:e1:
7c:6c:8e:23:d2:27:6c:52:af:d9:b7:12:be:5d:0a:
50:74:81:29:c7:43:86:83:e0:38:26:e8:71:78:d9:
4a:f6:dc:78:3f:e7:98:c2:fe:c2:47:81:e6:84:7c:
c2:7c:9d:d2:6a:27:81:25:d8:c2:63:c0:83:e9:6e:
3c:67:a8:23:20:78:4a:98:2c:3d:20:89:f7:d2:55:
3d:20:04:da:9e:f8:0a:62:40:bc:89:b6:65:77:cf:
f9:cf:09:01:f6:26:a2:44:1a:b4:c9:c4:be:29:8b:
78:dc:4b:4f:af:ec:54:d3:27:5d:90:d7:25:48:6a:
48:b0:3a:ce:16:34:4a:2b:60:c2:26:6e:a8:8c:89:
d8:44:0d:33:fa:18:e1:3a:04:ab:d6:b1:e1:6e:36:
a2:a3:4d:b4:79:56:2a:0f:46:fd:62:1c:e5:b2:53:
c5:fb:80:bc:96:1b:ad:72:f7:bd:1b:79:06:7d:c1:
ea:3f:f9:50:e9:74:55:d1:3b:27:aa:70:d1:a5:07:
be:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F1:27:A8:C1:6A:08:A2:67:D3:5B:8F:1B:4D:67:16:CF:D6:D5:9C
X509v3 Authority Key Identifier:
keyid:0F:D3:45:FD:54:15:11:79:51:13:60:9B:A4:AF:5F:FF:60:04:1A:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/44/0FD345FD541511795113609BA4AF5FFF60041AFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/a18f1ddb-2d6e-491c-bf65-f32f98dbc569/73516995116535a22de5a23000d3e7814baad6490837f37731.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/44/323630353a336134303a343a3a2f34382d3438203d3e20323031313036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:3a40:4::/48
Signature Algorithm: sha256WithRSAEncryption
78:cc:54:ec:f0:9c:d3:90:c4:c0:ad:b6:0d:8b:6b:9c:19:e6:
8c:2b:fb:33:48:af:61:e2:e8:4c:e5:d6:f1:ca:7e:61:95:df:
ba:e6:b8:6a:70:74:b3:f4:e0:62:7e:ae:af:b0:54:d5:15:78:
19:9b:f2:57:83:ac:65:d6:64:00:40:d3:b4:5d:65:60:35:0f:
53:42:cd:cb:51:e3:0a:59:9b:f0:79:7d:33:45:1c:41:fe:99:
c9:20:be:bf:05:15:3d:fb:e0:1e:3c:d9:4e:0c:80:95:6b:7c:
ee:f0:0a:74:56:76:ac:9f:ef:72:43:05:d8:6d:31:53:4a:0b:
e6:71:ba:fb:99:8a:d7:fd:e9:66:70:a6:df:cc:a5:c7:5a:12:
7c:bf:1d:58:0f:e3:fc:25:22:d3:35:b5:e2:47:a9:b9:b1:55:
87:a9:6e:23:4a:7b:23:5d:75:dd:58:db:f6:55:a0:50:15:ff:
ce:2d:a4:af:d7:6e:6a:e7:55:15:3a:03:35:d8:85:18:fe:62:
d1:f3:41:0a:e0:d9:e4:98:2c:aa:90:a2:ad:29:27:c8:fd:7e:
85:87:dc:7d:fa:4f:db:a9:26:05:1c:2a:87:56:e7:79:2f:25:
34:6c:10:01:b9:28:c2:92:c2:06:06:fa:e4:9e:2c:b4:00:dd:
1f:ea:91:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:17:22 2025 by rpki-client