Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038383838.roa
File: 3138352e3139382e37312e302f32342d3234203d3e2038383838.roa (raw, json)
Hash identifier: zYKU3EMHYakoc6akgzkiMGkdvg8qwty5NtTuq6lcDrM=
Subject key identifier: 5F:09:E3:9C:ED:1B:04:AF:5F:08:5D:FB:EC:91:60:6C:EF:20:0E:1F
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 5E978BCC00F3BEB1D4CCE9BD81BF3209BB26E572
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038383838.roa
Signing time: Thu 12 Oct 2023 16:10:35 +0000
ROA not before: Thu 12 Oct 2023 16:05:35 +0000
ROA not after: Thu 10 Oct 2024 16:10:35 +0000
asID: 8888
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:97:8b:cc:00:f3:be:b1:d4:cc:e9:bd:81:bf:32:09:bb:26:e5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Oct 12 16:05:35 2023 GMT
Not After : Oct 10 16:10:35 2024 GMT
Subject: CN=5F09E39CED1B04AF5F085DFBEC91606CEF200E1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:27:fd:76:67:37:58:91:d6:e9:5d:1e:c4:13:
79:5a:bc:e3:47:52:18:29:ce:5e:73:e1:09:32:25:
2d:d3:89:ff:b9:55:4f:00:77:d7:7a:1e:35:bd:6c:
39:71:c8:3d:80:6d:34:6d:71:31:61:a3:3b:23:3f:
57:15:97:70:8f:29:6d:b8:06:84:dc:86:9e:d2:56:
cf:e4:73:70:da:08:d8:7e:e4:34:74:f1:f6:3b:a6:
3d:ce:b0:3f:17:a7:33:26:91:96:72:0f:34:b2:ba:
78:bb:dd:37:1b:6d:a4:09:ba:e0:60:17:88:35:d5:
2c:b2:51:17:46:7d:86:89:1c:55:59:9e:ab:2a:31:
59:a2:25:30:6b:af:75:e3:c5:83:72:dd:48:f0:25:
fe:7b:7e:26:54:bb:2f:22:b0:c3:5b:da:ab:b2:24:
0c:22:c6:6d:bf:15:81:6a:5c:c9:81:ed:6c:d3:75:
36:5e:61:8c:56:63:30:a3:19:b3:db:42:3d:d8:4b:
a5:7b:1d:b6:7b:24:d5:6f:84:7c:ad:83:b4:5c:c3:
e0:28:17:0d:89:bf:a8:e1:53:2f:14:87:b5:41:b8:
86:cd:f5:15:c4:1b:bc:af:e1:2f:5c:49:62:dc:c6:
3c:c9:10:d1:31:7a:67:53:72:b5:b0:7e:74:9b:5b:
a4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:09:E3:9C:ED:1B:04:AF:5F:08:5D:FB:EC:91:60:6C:EF:20:0E:1F
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e2038383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:7c:e0:ce:59:ab:e3:45:90:67:bb:d5:99:96:ba:bc:c5:8a:
d2:a2:36:22:87:83:9a:99:40:c9:b0:21:27:7a:b9:32:9c:f7:
06:12:c6:17:fd:9d:ad:4d:6a:54:d7:22:1d:05:1c:3b:26:73:
0d:3b:c3:ac:4c:b8:7e:dd:60:b8:87:47:c7:7c:d8:ca:03:fc:
24:aa:e6:09:0d:42:d5:02:6d:ff:40:91:e4:c0:ae:ef:5e:0c:
a1:ef:7d:6b:a3:f1:03:be:7b:44:c3:91:8d:de:44:3d:89:7e:
99:af:1a:c6:42:85:54:4e:55:14:29:a3:60:cf:22:91:64:96:
e3:dd:0e:97:5a:54:74:06:be:41:40:96:8e:16:30:ee:e2:af:
f3:b9:a5:e9:20:9a:c0:1e:e3:3e:63:1d:5b:99:1d:50:c4:d7:
30:9d:be:61:18:0b:f1:a8:97:c8:a0:0c:35:4b:c2:b7:bf:9d:
64:39:bb:16:ed:c5:72:21:9f:6d:39:4e:fb:23:03:cf:33:27:
f0:98:04:0e:6c:a1:fc:dd:d7:be:4c:65:9c:3f:67:01:5c:58:
1d:1d:89:b9:71:21:b0:35:ff:f0:1b:29:a7:11:75:0d:7f:65:
9c:4d:4f:58:27:dc:99:14:c0:cb:e0:12:e7:c7:61:96:98:14:
7c:2a:48:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org