Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2033323134.roa
File: 3138352e3139382e37312e302f32342d3234203d3e2033323134.roa (raw, json)
Hash identifier: oIv58mohV9H7gDTNcgYewuYYZLOuPkmvnCC+eBM3Xss=
Subject key identifier: 6C:2C:04:95:42:D8:69:42:17:9A:D6:F1:58:20:FF:5D:C8:6A:CA:D1
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 17DF27926B1882B93BF5A01CA1372D0CE2C94E8A
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2033323134.roa
Signing time: Thu 12 Oct 2023 16:10:35 +0000
ROA not before: Thu 12 Oct 2023 16:05:35 +0000
ROA not after: Thu 10 Oct 2024 16:10:35 +0000
asID: 3214
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:df:27:92:6b:18:82:b9:3b:f5:a0:1c:a1:37:2d:0c:e2:c9:4e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Oct 12 16:05:35 2023 GMT
Not After : Oct 10 16:10:35 2024 GMT
Subject: CN=6C2C049542D86942179AD6F15820FF5DC86ACAD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f3:38:cb:42:f3:29:41:bc:06:6a:e6:de:b7:
d3:0e:02:3e:fe:f1:e8:d5:f3:1a:01:6f:8b:b7:25:
b4:4e:0f:72:2d:ee:9b:84:4b:cf:1f:0c:49:ca:6c:
18:2c:44:3d:9a:ab:33:6f:78:e9:f7:e8:e3:67:4a:
27:10:51:55:8d:c1:fc:f5:1a:9b:4e:0e:0f:21:7d:
41:42:d1:61:bc:d8:40:cf:c4:72:b8:fc:af:dc:0f:
93:30:d0:24:44:b9:bb:35:1c:b3:90:35:dc:0b:49:
ad:f2:ed:63:b2:71:68:c3:9c:ca:fe:0e:5a:3c:69:
ba:6d:26:97:3c:7e:1f:4c:8e:c3:98:32:51:de:fa:
37:73:e0:bb:0d:45:7f:2b:aa:40:50:1d:1a:cb:52:
0b:cd:10:36:e8:ab:97:ab:21:a7:45:da:aa:f1:19:
3a:54:69:2f:5d:3e:84:9b:6b:b1:7f:dc:50:e7:51:
03:51:78:13:e1:53:20:1f:41:39:f8:13:cb:71:53:
bc:36:92:79:17:2e:c0:2e:3d:de:bc:57:bf:92:7b:
0d:50:27:18:2a:f0:05:5f:d2:f4:3d:a5:30:02:df:
8f:06:73:0a:a8:1b:40:fd:fe:7e:60:28:e1:b2:bd:
fc:cd:f0:f2:d1:e0:7c:d9:3c:cb:3b:44:08:de:10:
49:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2C:04:95:42:D8:69:42:17:9A:D6:F1:58:20:FF:5D:C8:6A:CA:D1
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2033323134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d7:21:94:a1:f3:d9:29:e1:b7:2d:de:21:05:0d:c7:16:6c:
3d:81:ca:5c:de:2c:7a:11:7c:63:b7:bb:ac:a8:58:d5:9e:02:
9c:24:6e:7b:40:51:62:8e:c1:47:9d:d5:b8:b0:c1:27:b4:8c:
d5:69:4f:40:66:4b:6b:3b:7b:03:05:17:e9:61:00:0a:40:bb:
52:20:17:4b:e0:bf:1f:51:d6:08:90:d2:6c:80:c1:74:85:c0:
6b:ac:42:07:d1:92:98:3a:24:ff:90:72:f9:35:25:be:e7:2c:
41:c9:c4:05:45:77:05:83:db:39:26:b6:99:65:3b:9f:fb:7f:
e0:d2:cf:b7:1d:cd:16:c3:c1:0d:c1:9b:a4:7a:65:da:7c:83:
7d:8d:a3:60:17:c7:9c:62:1d:95:4c:7f:f7:a1:03:11:42:c3:
2e:dd:ae:33:cf:ef:ee:3b:9b:ee:e3:d1:7b:f6:f9:2d:e1:91:
eb:00:10:6d:f5:5f:35:75:7c:4d:0a:ae:92:2d:ba:04:68:f6:
46:85:7a:f2:b8:1e:0c:cc:99:ca:7a:eb:0b:e1:88:6a:07:f1:
d2:22:98:66:99:1e:bf:cd:8f:8e:35:ff:f0:bf:d8:3e:69:59:
db:ec:e8:1b:a1:37:2b:54:c4:d8:d5:50:cc:5e:13:fa:d2:ae:
f8:7a:1a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org