Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e203431373137.roa
File: 3138352e3139382e37312e302f32342d3234203d3e203431373137.roa (raw, json)
Hash identifier: 1AcZDcskw7LIyO0BaB/7jdLzxBgQGtaN4y4RYWimmSA=
Subject key identifier: 92:D0:BA:5F:71:BE:5B:5F:2A:C7:75:E3:34:BA:15:3C:19:20:BD:74
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 7DECD273E4B33F38D4D0647BFBD8D384EFE87D35
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e203431373137.roa
Signing time: Fri 17 Mar 2023 00:58:28 +0000
ROA not before: Fri 17 Mar 2023 00:53:28 +0000
ROA not after: Fri 15 Mar 2024 00:58:28 +0000
asID: 41717
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:ec:d2:73:e4:b3:3f:38:d4:d0:64:7b:fb:d8:d3:84:ef:e8:7d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Mar 17 00:53:28 2023 GMT
Not After : Mar 15 00:58:28 2024 GMT
Subject: CN=92D0BA5F71BE5B5F2AC775E334BA153C1920BD74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ae:fb:5f:2b:f1:19:f3:10:b6:6a:f3:ae:ff:
75:9b:18:48:1a:40:c6:41:ef:f3:16:e6:5b:92:b8:
bf:fb:9b:c0:71:49:33:b6:20:af:c6:40:54:7f:82:
75:df:a1:d4:8b:da:72:5b:fd:a9:f7:7c:4e:eb:66:
24:56:1f:7e:6a:f6:04:de:29:52:e1:e1:c0:76:cf:
4e:93:c1:a2:9a:82:a7:ae:76:f7:d4:bb:4f:96:e3:
b4:ce:a7:82:f8:fc:2d:1f:25:3b:ea:01:70:92:10:
6e:6f:ad:10:ff:8c:a7:a4:c8:7e:19:a3:df:ac:36:
d9:2d:6c:d1:7a:d2:4d:19:0c:2e:df:d9:10:1e:de:
6f:76:40:33:4f:9a:4c:17:f5:3b:25:45:fe:2c:dc:
54:8f:78:a9:9e:d1:5e:6a:9c:fc:48:0e:9c:f1:cb:
4a:a7:9d:ac:50:55:a0:c6:bc:63:2f:49:46:2b:43:
ca:2f:ea:8b:5e:84:d0:63:24:65:70:9b:4b:14:b0:
ea:7c:5c:84:f1:e5:6f:e3:9f:36:e3:9d:05:eb:c0:
33:02:4b:c8:ab:e4:cd:a5:c2:b8:c2:e6:e7:c1:7f:
65:16:2f:24:b4:f2:85:5d:bb:c8:70:39:b8:c4:c2:
d1:ad:e5:59:16:a8:32:b8:58:29:ed:c5:10:ae:e1:
af:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D0:BA:5F:71:BE:5B:5F:2A:C7:75:E3:34:BA:15:3C:19:20:BD:74
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e203431373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d5:38:78:5f:ff:eb:dd:22:7f:2f:36:8a:24:1a:e5:d4:96:
1a:01:28:80:59:ce:24:78:54:18:94:e7:6d:2e:11:d7:bf:97:
6b:50:31:c8:00:18:89:26:13:30:cd:08:9d:df:e6:be:65:e9:
20:12:6f:7b:4c:8d:5a:ae:a6:a9:aa:7d:dc:a9:c5:a4:45:d6:
60:82:67:94:ce:38:4a:d6:a7:1e:7e:d2:08:10:b0:93:64:2f:
a1:97:c8:eb:69:2c:b6:e5:a0:e0:33:a0:2c:da:b0:16:30:69:
e6:24:bb:c3:c7:cc:a8:56:eb:d0:7e:e7:01:0d:07:2d:0e:0f:
db:34:5b:fd:24:b1:41:01:5d:d9:90:83:26:72:ad:6b:88:59:
2d:cb:41:10:42:35:1e:4e:80:01:68:61:ac:dc:8b:4b:12:77:
a6:0d:4b:75:ea:0e:b5:33:fc:80:90:68:d8:7d:13:5b:53:80:
10:83:16:69:8d:bd:35:8d:cc:66:c8:6c:84:ff:8e:00:50:50:
84:50:07:1d:f4:7d:21:05:c8:24:e1:6d:d4:1d:58:b5:bd:22:
42:47:40:3f:34:26:af:c1:3f:dd:f4:5d:64:e3:d5:59:e8:95:
bd:a9:39:c4:95:58:25:c9:8e:bb:29:9e:5d:e3:5f:e4:3e:87:
1c:b8:c6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org