Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/47/3138352e36342e37392e302f32342d3234203d3e2033323134.roa
File: 3138352e36342e37392e302f32342d3234203d3e2033323134.roa (raw, json)
Hash identifier: nNIdhnLLBXCi5v99vbgORljiqO5sxN2YzunoYi1KtiU=
Subject key identifier: 66:4B:F2:C4:43:71:47:B3:3A:FC:AE:B6:8F:EF:2F:A0:5E:C3:6E:33
Certificate issuer: /CN=5c5b39f6776de17cfd3f013f473840686814d2ba
Certificate serial: 7B2E00232F31E733A96A72D56E577FE3E09A8E30
Authority key identifier: 5C:5B:39:F6:77:6D:E1:7C:FD:3F:01:3F:47:38:40:68:68:14:D2:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFs59ndt4Xz9PwE_RzhAaGgU0ro.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/47/3138352e36342e37392e302f32342d3234203d3e2033323134.roa
Signing time: Thu 12 Oct 2023 16:10:32 +0000
ROA not before: Thu 12 Oct 2023 16:05:32 +0000
ROA not after: Thu 10 Oct 2024 16:10:32 +0000
asID: 3214
IP address blocks: 185.64.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:2e:00:23:2f:31:e7:33:a9:6a:72:d5:6e:57:7f:e3:e0:9a:8e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c5b39f6776de17cfd3f013f473840686814d2ba
Validity
Not Before: Oct 12 16:05:32 2023 GMT
Not After : Oct 10 16:10:32 2024 GMT
Subject: CN=664BF2C4437147B33AFCAEB68FEF2FA05EC36E33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:6e:a2:45:f4:5e:8e:4f:4d:01:9f:a9:7c:
99:37:b0:a8:1b:62:b9:37:e7:7e:7d:25:e1:d2:4b:
97:92:0b:c5:a2:5a:a8:a9:0a:ea:9f:f7:42:b8:a7:
8d:33:40:37:63:66:2d:0d:5a:61:20:89:3a:ed:fd:
32:f0:19:36:a7:5b:3a:3f:32:17:b1:d7:10:c6:fa:
20:a3:84:bd:e5:ca:c9:98:ba:30:c0:28:5e:f5:aa:
8e:78:96:16:6f:52:2c:70:85:65:15:e6:3e:ad:b0:
d1:27:e6:81:b1:1f:58:e3:02:bb:64:59:be:e9:e1:
2f:69:af:b4:97:12:23:a5:41:a4:58:9f:29:72:72:
d6:96:ce:ed:dd:5b:37:c5:7d:9a:fe:ce:f5:97:36:
48:fa:c3:1d:82:71:98:20:9e:a4:f4:87:3a:5a:78:
29:b1:87:3c:f2:0a:83:6e:87:cc:b2:7e:cf:03:ed:
f1:b2:fa:1b:3f:75:cb:b4:bd:f5:da:83:8a:18:92:
8e:ec:64:cb:82:7c:5d:da:0e:72:d3:58:b4:9e:a3:
90:c2:6f:c4:82:32:6e:ef:e9:1a:b5:80:46:ab:8e:
c5:62:97:8c:fc:4c:a7:b8:15:59:62:27:dc:53:48:
9d:d5:c6:e0:4b:7b:9b:9e:8c:cc:91:61:01:47:17:
7f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4B:F2:C4:43:71:47:B3:3A:FC:AE:B6:8F:EF:2F:A0:5E:C3:6E:33
X509v3 Authority Key Identifier:
keyid:5C:5B:39:F6:77:6D:E1:7C:FD:3F:01:3F:47:38:40:68:68:14:D2:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/47/5C5B39F6776DE17CFD3F013F473840686814D2BA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFs59ndt4Xz9PwE_RzhAaGgU0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/47/3138352e36342e37392e302f32342d3234203d3e2033323134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.79.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6a:23:d0:cb:93:63:ae:02:95:49:2b:ed:d7:73:e6:f0:c9:
77:1b:82:6f:35:5a:7f:82:96:94:30:63:26:9c:f2:79:b0:fb:
e5:02:f3:a9:ce:eb:62:c8:5b:ee:70:2b:8a:77:92:6b:5e:94:
e6:d5:6b:e4:3a:79:22:6b:90:c7:f1:c8:b8:f7:65:bb:70:a1:
f7:37:a4:18:42:01:0a:88:23:e7:8f:b7:d1:57:e7:5d:13:6f:
d6:ab:6f:c1:62:34:c6:39:8f:8b:3f:64:80:08:e3:5e:2b:39:
ce:08:52:68:1f:b2:cc:04:09:73:86:96:79:4f:ae:fb:ec:7f:
7a:ff:de:01:a7:2a:54:ed:4b:92:cc:55:8c:f5:1b:70:43:fe:
b3:e4:a7:80:cb:80:b2:f2:db:77:8a:a4:f6:94:77:85:d7:6b:
1d:27:0b:fb:03:52:bf:ce:89:bf:6b:60:47:d4:ac:8f:31:2a:
e2:8a:48:9b:23:cc:da:49:22:0b:01:a3:22:21:f5:c7:55:bd:
cd:5b:b4:1b:d9:08:c9:c6:59:3b:b1:2b:b2:73:e8:e7:2b:1d:
83:c4:3a:91:4a:b0:7f:91:1b:3a:44:55:96:53:9d:63:c4:1e:
2f:f2:57:b0:61:99:26:67:94:9a:6f:d9:f9:ed:94:f6:97:4f:
99:dc:bf:4c
-----BEGIN CERTIFICATE-----
MIIEwjCCA6qgAwIBAgIUey4AIy8x5zOpanLVbld/4+CajjAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNWM1YjM5ZjY3NzZkZTE3Y2ZkM2YwMTNmNDczODQwNjg2
ODE0ZDJiYTAeFw0yMzEwMTIxNjA1MzJaFw0yNDEwMTAxNjEwMzJaMDMxMTAvBgNV
BAMTKDY2NEJGMkM0NDM3MTQ3QjMzQUZDQUVCNjhGRUYyRkEwNUVDMzZFMzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/26iRfRejk9NAZ+pfJk3sKgb
Yrk35359JeHSS5eSC8WiWqipCuqf90K4p40zQDdjZi0NWmEgiTrt/TLwGTanWzo/
Mhex1xDG+iCjhL3lysmYujDAKF71qo54lhZvUixwhWUV5j6tsNEn5oGxH1jjArtk
Wb7p4S9pr7SXEiOlQaRYnylyctaWzu3dWzfFfZr+zvWXNkj6wx2CcZggnqT0hzpa
eCmxhzzyCoNuh8yyfs8D7fGy+hs/dcu0vfXag4oYko7sZMuCfF3aDnLTWLSeo5DC
b8SCMm7v6Rq1gEarjsVil4z8TKe4FVliJ9xTSJ3VxuBLe5uejMyRYQFHF387AgMB
AAGjggHMMIIByDAdBgNVHQ4EFgQUZkvyxENxR7M6/K62j+8voF7DbjMwHwYDVR0j
BBgwFoAUXFs59ndt4Xz9PwE/RzhAaGgU0rowDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80Ny81
QzVCMzlGNjc3NkRFMTdDRkQzRjAxM0Y0NzM4NDA2ODY4MTREMkJBLmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvWEZzNTluZHQ0WHo5UHdFX1J6aEFhR2dVMHJvLmNl
cjB0BggrBgEFBQcBCwRoMGYwZAYIKwYBBQUHMAuGWHJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS80Ny8zMTM4MzUyZTM2MzQyZTM3MzkyZTMwMmYzMjM0MmQz
MjM0MjAzZDNlMjAzMzMyMzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALlATzANBgkqhkiG9w0BAQsF
AAOCAQEAVWoj0MuTY64ClUkr7ddz5vDJdxuCbzVaf4KWlDBjJpzyebD75QLzqc7r
Yshb7nArineSa16U5tVr5Dp5ImuQx/HIuPdlu3Ch9zekGEIBCogj54+30VfnXRNv
1qtvwWI0xjmPiz9kgAjjXis5zghSaB+yzAQJc4aWeU+u++x/ev/eAacqVO1LksxV
jPUbcEP+s+SngMuAsvLbd4qk9pR3hddrHScL+wNSv86Jv2tgR9SsjzEq4opImyPM
2kkiCwGjIiH1x1W9zVu0G9kIycZZO7ErsnPo5ysdg8Q6kUqwf5EbOkRVllOdY8Qe
L/JXsGGZJmeUmm/Z+e2U9pdPmdy/TA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org