Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/48/326130373a343663303a3a2f32392d3438203d3e20393439.roa
File: 326130373a343663303a3a2f32392d3438203d3e20393439.roa (raw, json)
Hash identifier: //mMaXzCDKdM8PlFJWnVZJVGk0oce8PXmle5iWe8sdA=
Subject key identifier: 11:27:8A:B0:FB:16:BE:67:03:67:79:BD:CD:33:C1:74:EA:10:06:B0
Certificate issuer: /CN=a115100e0cc80f5b5017bc86187b071fb1cce200
Certificate serial: 32D04EBDA52FB98042AAF9E58311EA09B1E74666
Authority key identifier: A1:15:10:0E:0C:C8:0F:5B:50:17:BC:86:18:7B:07:1F:B1:CC:E2:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oRUQDgzID1tQF7yGGHsHH7HM4gA.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/48/326130373a343663303a3a2f32392d3438203d3e20393439.roa
Signing time: Thu 12 Oct 2023 16:10:32 +0000
ROA not before: Thu 12 Oct 2023 16:05:32 +0000
ROA not after: Thu 10 Oct 2024 16:10:32 +0000
asID: 949
IP address blocks: 2a07:46c0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:d0:4e:bd:a5:2f:b9:80:42:aa:f9:e5:83:11:ea:09:b1:e7:46:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a115100e0cc80f5b5017bc86187b071fb1cce200
Validity
Not Before: Oct 12 16:05:32 2023 GMT
Not After : Oct 10 16:10:32 2024 GMT
Subject: CN=11278AB0FB16BE67036779BDCD33C174EA1006B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7f:03:53:99:fa:34:c0:35:75:cb:9b:25:11:
2d:97:bd:68:91:14:34:8a:f7:49:80:62:92:26:8b:
fd:59:0a:38:13:fd:88:2c:07:7e:b1:c4:33:9b:2e:
ad:72:9f:9b:f8:b3:79:c7:74:8d:50:d4:1f:db:99:
79:b4:39:55:78:1f:b3:9c:44:ca:90:b6:21:f3:14:
82:47:8f:f3:14:13:17:84:17:18:22:d5:ed:a3:5e:
9d:70:06:6f:31:d2:79:bf:56:d8:f3:8b:c8:d0:ed:
86:68:f1:7e:c8:05:43:32:20:71:00:dc:8e:9c:6e:
d5:9a:95:f6:61:eb:06:87:0b:73:23:e4:22:9c:c2:
ce:b3:99:d5:53:74:72:12:37:9c:e8:ba:c5:c2:5b:
98:b2:e3:c8:e7:df:ef:79:e0:2d:b3:97:55:6f:bd:
15:fb:cd:17:2a:ee:a7:f5:89:9c:03:6b:c9:ba:4b:
87:04:bf:9c:7c:03:da:26:0e:b7:0f:dd:82:53:6b:
e8:42:94:23:76:af:f3:0d:2a:9e:65:12:a5:50:c0:
a8:8f:8e:e0:8b:25:ba:37:c5:05:11:7b:39:d0:2a:
f3:e0:96:b8:e8:85:a5:b3:fd:c9:d4:b1:69:1b:42:
4e:18:ab:f0:40:1b:4e:8d:51:98:48:97:94:f4:fb:
17:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:27:8A:B0:FB:16:BE:67:03:67:79:BD:CD:33:C1:74:EA:10:06:B0
X509v3 Authority Key Identifier:
keyid:A1:15:10:0E:0C:C8:0F:5B:50:17:BC:86:18:7B:07:1F:B1:CC:E2:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/48/A115100E0CC80F5B5017BC86187B071FB1CCE200.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oRUQDgzID1tQF7yGGHsHH7HM4gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/48/326130373a343663303a3a2f32392d3438203d3e20393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:46c0::/29
Signature Algorithm: sha256WithRSAEncryption
af:c9:73:6e:d9:1b:c1:43:6b:90:9c:61:22:33:2d:26:7b:6c:
f5:9b:d2:97:94:80:da:57:88:fd:37:25:48:5b:98:c6:21:00:
70:79:3a:20:21:18:ee:36:1c:43:53:47:04:5f:f8:bb:10:55:
eb:14:5f:6c:7d:e0:57:e1:6e:d4:00:d5:14:f9:dd:6c:b7:0a:
fb:60:8c:ad:3b:e1:44:8b:f1:6c:51:fc:11:fc:b4:ee:c5:bd:
ea:9d:da:92:aa:c1:83:e3:85:71:c1:0c:b5:c3:09:de:fe:5d:
57:92:ec:e0:14:71:b1:ab:45:e0:86:1e:42:68:71:81:2c:c0:
1b:cf:03:26:dc:05:60:53:de:01:99:e8:6b:e9:62:60:14:02:
0d:68:aa:32:d6:51:dd:d9:74:4e:03:4e:a4:5c:b3:e2:98:cf:
f2:ca:cf:16:ed:31:12:68:08:9c:9c:54:41:ec:4e:65:44:ab:
99:d3:a0:ad:f1:4c:b2:17:0e:d3:25:dc:8e:04:93:ea:f3:b6:
dd:7d:76:11:6a:07:d7:60:b2:17:f5:a4:dc:6c:a7:89:a1:7a:
f8:90:5d:ce:96:35:3a:09:43:30:bc:cd:4f:91:dd:56:8e:68:
8b:16:be:ef:44:8f:7b:8a:19:10:84:49:a0:fc:30:92:bf:0e:
e9:eb:bf:02
-----BEGIN CERTIFICATE-----
MIIEwTCCA6mgAwIBAgIUMtBOvaUvuYBCqvnlgxHqCbHnRmYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTExNTEwMGUwY2M4MGY1YjUwMTdiYzg2MTg3YjA3MWZi
MWNjZTIwMDAeFw0yMzEwMTIxNjA1MzJaFw0yNDEwMTAxNjEwMzJaMDMxMTAvBgNV
BAMTKDExMjc4QUIwRkIxNkJFNjcwMzY3NzlCRENEMzNDMTc0RUExMDA2QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafwNTmfo0wDV1y5slES2XvWiR
FDSK90mAYpImi/1ZCjgT/YgsB36xxDObLq1yn5v4s3nHdI1Q1B/bmXm0OVV4H7Oc
RMqQtiHzFIJHj/MUExeEFxgi1e2jXp1wBm8x0nm/Vtjzi8jQ7YZo8X7IBUMyIHEA
3I6cbtWalfZh6waHC3Mj5CKcws6zmdVTdHISN5zousXCW5iy48jn3+954C2zl1Vv
vRX7zRcq7qf1iZwDa8m6S4cEv5x8A9omDrcP3YJTa+hClCN2r/MNKp5lEqVQwKiP
juCLJbo3xQUReznQKvPglrjohaWz/cnUsWkbQk4Yq/BAG06NUZhIl5T0+xedAgMB
AAGjggHLMIIBxzAdBgNVHQ4EFgQUESeKsPsWvmcDZ3m9zTPBdOoQBrAwHwYDVR0j
BBgwFoAUoRUQDgzID1tQF7yGGHsHH7HM4gAwDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80OC9B
MTE1MTAwRTBDQzgwRjVCNTAxN0JDODYxODdCMDcxRkIxQ0NFMjAwLmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvb1JVUURneklEMXRRRjd5R0dIc0hIN0hNNGdBLmNl
cjByBggrBgEFBQcBCwRmMGQwYgYIKwYBBQUHMAuGVnJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS80OC8zMjYxMzAzNzNhMzQzNjYzMzAzYTNhMmYzMjM5MmQz
NDM4MjAzZDNlMjAzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQMqB0bAMA0GCSqGSIb3DQEBCwUA
A4IBAQCvyXNu2RvBQ2uQnGEiMy0me2z1m9KXlIDaV4j9NyVIW5jGIQBweTogIRju
NhxDU0cEX/i7EFXrFF9sfeBX4W7UANUU+d1stwr7YIytO+FEi/FsUfwR/LTuxb3q
ndqSqsGD44VxwQy1wwne/l1XkuzgFHGxq0Xghh5CaHGBLMAbzwMm3AVgU94Bmehr
6WJgFAINaKoy1lHd2XROA06kXLPimM/yys8W7TESaAicnFRB7E5lRKuZ06Ct8Uyy
Fw7TJdyOBJPq87bdfXYRagfXYLIX9aTcbKeJoXr4kF3OljU6CUMwvM1Pkd1WjmiL
Fr7vRI97ihkQhEmg/DCSvw7p678C
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org