Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038313030.roa
File: 3138352e3139382e37312e302f32342d3234203d3e2038313030.roa (raw, json)
Hash identifier: /QsxPkXLYjhQ4CLBEvfLh7yqzkBvzJKLhzEOvwv7BxA=
Subject key identifier: 1A:89:37:15:3E:2D:FA:20:F0:CB:0B:56:C6:6E:BC:1D:77:20:3E:1F
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 24163B1C8A33C5BAA36A393899A18E8B82F41F59
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038313030.roa
Signing time: Thu 10 Nov 2022 15:37:45 +0000
ROA not before: Thu 10 Nov 2022 15:32:45 +0000
ROA not after: Thu 09 Nov 2023 15:37:45 +0000
asID: 8100
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:16:3b:1c:8a:33:c5:ba:a3:6a:39:38:99:a1:8e:8b:82:f4:1f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Nov 10 15:32:45 2022 GMT
Not After : Nov 9 15:37:45 2023 GMT
Subject: CN=1A8937153E2DFA20F0CB0B56C66EBC1D77203E1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d7:b9:37:95:61:9f:0c:d0:82:19:34:55:d4:
21:46:65:44:97:a0:66:2c:19:af:a1:41:3c:48:b6:
09:4d:14:6c:7e:be:4d:dc:30:98:b8:10:7a:39:e6:
5f:2d:c8:8b:61:6f:71:f6:42:b2:d3:04:3b:58:a2:
f4:0c:3d:ac:95:8c:a5:33:b8:91:f5:45:34:b2:d1:
05:d5:8a:a9:0c:9c:32:f7:3f:c4:32:ce:42:e5:b4:
04:8f:3f:e3:d3:ff:e8:64:d4:4b:b8:e1:4f:06:34:
e2:93:fc:f4:fd:53:d9:36:1d:cc:27:cb:6f:ab:20:
1b:16:6d:92:78:b5:a5:36:43:2f:45:6d:49:83:de:
b7:2a:00:10:50:19:97:a2:de:fd:c3:67:03:2c:0e:
68:3e:8e:9a:48:09:ad:c4:a9:af:be:68:e2:8a:59:
37:8c:0d:c6:36:18:2c:7a:23:76:a0:4d:f5:99:86:
fd:f8:5b:86:94:b5:a7:7f:65:c8:06:3c:5f:de:1b:
c5:4b:21:23:35:e8:c5:70:fc:d9:27:34:a5:ec:9c:
4c:b2:32:83:74:c1:50:66:86:a3:95:a4:bd:8e:49:
45:2d:68:2c:fd:9b:a1:21:81:c3:66:cf:9b:a8:ec:
7d:f4:a3:e8:13:60:d7:ba:83:88:aa:38:3f:e9:54:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:89:37:15:3E:2D:FA:20:F0:CB:0B:56:C6:6E:BC:1D:77:20:3E:1F
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e2:9b:5c:32:e0:42:96:b5:59:40:08:8f:c0:9b:c3:d9:42:
0c:95:5b:00:3d:3a:fb:0c:d1:d6:f8:df:fb:4d:6f:00:79:43:
7b:6c:7f:6f:3c:8a:35:ea:ca:ab:51:e3:aa:47:9a:de:1e:b1:
ea:bd:18:88:1e:db:40:c2:b5:a4:dd:56:a4:e9:d1:15:0d:3b:
56:4f:d4:d6:44:51:60:a8:4d:7f:51:70:75:09:d4:73:cf:00:
df:5e:14:b1:2b:d4:b2:2a:e6:4e:db:00:75:21:63:f5:16:ef:
de:13:77:26:2e:01:ec:5c:a9:42:5e:99:d4:91:73:54:90:fb:
aa:0d:cf:e0:c5:3a:c5:0c:95:0a:3a:7f:a5:a8:71:be:80:fa:
81:d7:64:49:0f:44:7a:12:e7:eb:6e:c4:29:9a:3f:f7:70:d8:
ec:e3:df:71:2e:95:19:7c:ba:f6:88:cc:5f:57:de:e4:88:bc:
22:22:38:12:80:e2:6e:01:72:ff:c1:a0:db:e5:56:cd:1f:cb:
1a:41:85:ee:a9:5b:e9:d7:a3:8c:5e:b5:d8:dc:be:82:9a:af:
bf:2b:a8:87:95:62:e4:61:fe:c5:09:0b:c5:cb:2b:b0:fa:c5:
2b:c4:f7:86:a9:ea:bf:5b:df:83:d8:c0:a7:39:cc:ac:9a:03:
6c:48:ee:cb
-----BEGIN CERTIFICATE-----
MIIExDCCA6ygAwIBAgIUJBY7HIozxbqjajk4maGOi4L0H1kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTU4MmMzYzY4ZGFkNTI5NjEzNjdjNzk1ZWIxYmNmZDIy
MTNkNTdkYjAeFw0yMjExMTAxNTMyNDVaFw0yMzExMDkxNTM3NDVaMDMxMTAvBgNV
BAMTKDFBODkzNzE1M0UyREZBMjBGMENCMEI1NkM2NkVCQzFENzcyMDNFMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD17k3lWGfDNCCGTRV1CFGZUSX
oGYsGa+hQTxItglNFGx+vk3cMJi4EHo55l8tyIthb3H2QrLTBDtYovQMPayVjKUz
uJH1RTSy0QXViqkMnDL3P8QyzkLltASPP+PT/+hk1Eu44U8GNOKT/PT9U9k2Hcwn
y2+rIBsWbZJ4taU2Qy9FbUmD3rcqABBQGZei3v3DZwMsDmg+jppICa3Eqa++aOKK
WTeMDcY2GCx6I3agTfWZhv34W4aUtad/ZcgGPF/eG8VLISM16MVw/NknNKXsnEyy
MoN0wVBmhqOVpL2OSUUtaCz9m6EhgcNmz5uo7H30o+gTYNe6g4iqOD/pVFxTAgMB
AAGjggHOMIIByjAdBgNVHQ4EFgQUGok3FT4t+iDwywtWxm68HXcgPh8wHwYDVR0j
BBgwFoAUlYLDxo2tUpYTZ8eV6xvP0iE9V9swDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80OS85
NTgyQzNDNjhEQUQ1Mjk2MTM2N0M3OTVFQjFCQ0ZEMjIxM0Q1N0RCLmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvbFlMRHhvMnRVcFlUWjhlVjZ4dlAwaUU5VjlzLmNl
cjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS80OS8zMTM4MzUyZTMxMzkzODJlMzczMTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM4MzEzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucZHMA0GCSqGSIb3DQEB
CwUAA4IBAQBv4ptcMuBClrVZQAiPwJvD2UIMlVsAPTr7DNHW+N/7TW8AeUN7bH9v
PIo16sqrUeOqR5reHrHqvRiIHttAwrWk3Vak6dEVDTtWT9TWRFFgqE1/UXB1CdRz
zwDfXhSxK9SyKuZO2wB1IWP1Fu/eE3cmLgHsXKlCXpnUkXNUkPuqDc/gxTrFDJUK
On+lqHG+gPqB12RJD0R6EufrbsQpmj/3cNjs499xLpUZfLr2iMxfV97kiLwiIjgS
gOJuAXL/waDb5VbNH8saQYXuqVvp16OMXrXY3L6Cmq+/K6iHlWLkYf7FCQvFyyuw
+sUrxPeGqeq/W9+D2MCnOcysmgNsSO7L
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org