Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2036323333.roa
File: 3138352e3139382e37312e302f32342d3234203d3e2036323333.roa (raw, json)
Hash identifier: fb8XJyoO5+KnhNXDBQf6nzMzMNVN3sOoHtQM8Kxo7p0=
Subject key identifier: B5:3E:AB:94:B2:69:D5:40:00:B1:FE:D1:E7:98:6C:D5:F0:15:71:79
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 675F61B97B1D78CFC0299E1FFF19E25C699D6334
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2036323333.roa
Signing time: Thu 12 Oct 2023 16:10:35 +0000
ROA not before: Thu 12 Oct 2023 16:05:35 +0000
ROA not after: Thu 10 Oct 2024 16:10:35 +0000
asID: 6233
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:5f:61:b9:7b:1d:78:cf:c0:29:9e:1f:ff:19:e2:5c:69:9d:63:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Oct 12 16:05:35 2023 GMT
Not After : Oct 10 16:10:35 2024 GMT
Subject: CN=B53EAB94B269D54000B1FED1E7986CD5F0157179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:63:04:b9:bc:40:37:7c:95:52:87:a3:ab:6f:
82:0d:1f:18:93:1c:51:80:ef:bf:3f:64:7e:99:6b:
57:1f:e5:15:e2:98:a8:3f:be:ec:f3:2d:55:66:e5:
0c:c4:0c:6f:43:e9:58:ee:b9:ef:f0:97:89:41:22:
17:15:98:6b:fc:42:1a:57:ac:92:d5:ff:eb:c0:36:
c3:38:af:5a:ad:dd:a6:f8:38:77:9c:41:33:89:b9:
60:28:2f:6b:d8:af:38:c7:fa:28:c8:19:e5:39:4b:
18:64:ba:81:a9:ef:76:fa:e0:d3:5a:54:ee:b0:c5:
14:3c:3a:25:9a:59:02:19:2e:70:e5:31:e8:b4:2c:
6c:c1:1d:04:b0:f8:9b:26:03:5b:e3:2b:22:2d:2c:
88:da:24:40:52:6f:0a:35:4e:15:a0:a4:40:49:76:
63:7a:1b:6c:ac:cb:2a:96:4e:8b:33:af:05:21:e6:
63:10:25:8d:43:11:4a:bf:30:c7:f4:51:26:4f:00:
60:31:ba:c4:45:43:51:2a:37:3b:b1:30:ef:39:29:
c2:8a:f4:08:ff:42:09:0d:ae:fc:bd:70:e9:cb:4c:
b2:5a:a5:31:c5:0d:e4:e0:cf:e1:a2:b6:04:4e:9c:
28:0b:85:59:09:f1:16:62:1b:d7:32:a5:0a:11:46:
48:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:3E:AB:94:B2:69:D5:40:00:B1:FE:D1:E7:98:6C:D5:F0:15:71:79
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2036323333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
29:18:33:c8:c9:b7:da:02:72:b9:03:d5:61:73:5e:55:8c:3c:
41:cf:e7:e1:42:35:90:2e:6c:47:fe:a6:1a:40:3b:14:1a:8b:
eb:fa:5b:e6:34:1f:8d:0d:ca:47:0d:e9:bb:68:49:9c:8f:94:
d4:e7:00:ea:95:96:6b:ad:0f:97:0e:ad:10:92:33:e4:66:92:
e0:1b:70:35:62:d7:f1:0d:00:93:0f:f7:2e:9e:66:8f:d8:49:
66:fc:3f:69:f8:a8:c9:1e:3f:c5:83:3b:69:ed:85:5c:81:71:
5d:07:ee:16:96:8c:71:57:d3:58:d9:58:3d:60:d7:62:b2:6d:
8a:a6:5d:f3:6b:3b:b8:9a:e5:49:6f:ff:22:89:6d:c7:b2:18:
24:27:5e:3e:82:8a:42:88:ae:46:6f:11:33:88:c7:23:c1:2f:
cc:ac:96:2d:31:67:fe:21:5d:6f:75:a3:a9:f8:9e:82:ff:45:
54:fa:c3:e9:be:14:48:1d:26:ad:b7:26:64:fd:05:52:ca:4e:
c9:dc:7a:d5:b6:88:04:ef:63:41:18:13:5d:90:4c:b3:b1:31:
42:1b:aa:55:16:6c:a7:d6:20:5c:e2:c6:16:90:af:2b:be:b2:
fb:ae:bb:83:04:b9:bc:9b:39:ef:83:7b:17:90:35:b1:1a:53:
9c:73:f8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org