Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e20393439.roa
File: 3138352e3139382e37312e302f32342d3234203d3e20393439.roa (raw, json)
Hash identifier: Tdb+t0xjQGdtSQdB/UUdZq/Ut6DKmrKYvpAaLgW/mic=
Subject key identifier: EB:2F:9A:6C:71:CF:D9:8A:A0:26:81:2B:2F:C6:ED:04:56:F7:AE:9F
Certificate issuer: /CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Certificate serial: 1D6D9BA0F142727F4FEA47DF1F149234628BD935
Authority key identifier: 95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e20393439.roa
Signing time: Thu 12 Oct 2023 16:10:35 +0000
ROA not before: Thu 12 Oct 2023 16:05:35 +0000
ROA not after: Thu 10 Oct 2024 16:10:35 +0000
asID: 949
IP address blocks: 185.198.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:6d:9b:a0:f1:42:72:7f:4f:ea:47:df:1f:14:92:34:62:8b:d9:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9582c3c68dad52961367c795eb1bcfd2213d57db
Validity
Not Before: Oct 12 16:05:35 2023 GMT
Not After : Oct 10 16:10:35 2024 GMT
Subject: CN=EB2F9A6C71CFD98AA026812B2FC6ED0456F7AE9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bc:f0:74:3d:8a:91:aa:0c:0c:40:f0:e4:10:
4a:57:f6:a7:dc:cb:63:00:44:c2:20:5b:22:47:6c:
a6:a7:48:87:4d:64:3d:23:5f:40:34:b1:e7:20:de:
e1:db:5c:c9:c0:61:fc:63:7e:01:d3:10:d3:05:28:
2e:d8:ee:62:fc:b2:bf:48:fe:6f:29:cf:f1:b0:b2:
ee:23:54:48:2a:78:9c:02:8f:3f:5a:79:08:5f:e2:
ec:53:27:6e:19:3a:a2:a6:a5:c4:ba:6b:02:bc:ff:
15:8f:90:6f:32:ff:be:ca:b4:04:ad:60:af:31:a3:
d3:90:b8:dd:88:e4:b6:b9:c4:05:8b:54:b1:ec:12:
d7:33:f5:91:ed:58:8f:b0:64:b7:e5:d5:e0:38:19:
40:f1:c3:ae:9f:e8:a8:a9:84:79:2f:8c:58:c9:99:
49:32:ad:51:b3:2f:6d:88:8b:23:d8:14:9f:94:ef:
59:6d:8b:0d:3d:9a:e9:79:f8:a7:67:ff:0b:53:79:
a0:aa:c4:33:03:ce:02:1c:e9:43:68:5a:a0:96:9c:
1f:1d:d2:1c:58:57:b3:33:46:6a:ce:70:c6:d6:4a:
ba:62:82:4a:4f:b1:2c:d7:dd:8a:76:e4:d5:36:39:
85:db:3b:57:80:34:2a:6c:b3:e7:f7:9e:8c:e3:a3:
c2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:2F:9A:6C:71:CF:D9:8A:A0:26:81:2B:2F:C6:ED:04:56:F7:AE:9F
X509v3 Authority Key Identifier:
keyid:95:82:C3:C6:8D:AD:52:96:13:67:C7:95:EB:1B:CF:D2:21:3D:57:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/49/9582C3C68DAD52961367C795EB1BCFD2213D57DB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYLDxo2tUpYTZ8eV6xvP0iE9V9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/49/3138352e3139382e37312e302f32342d3234203d3e20393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.71.0/24
Signature Algorithm: sha256WithRSAEncryption
56:63:e6:17:a3:b6:1a:50:f3:46:28:06:71:e2:f7:10:e9:c9:
25:d3:ed:fb:75:4a:0b:0f:1e:ae:74:ea:0a:19:53:d1:93:89:
94:1d:50:e9:c5:7f:60:d3:0f:4c:f7:15:42:d5:90:ff:b1:44:
6d:45:be:f2:4b:3c:b5:fb:b8:03:42:34:8b:31:4d:e6:e1:86:
83:51:75:2b:d7:cd:6a:7d:05:4f:71:c4:ce:e9:18:ee:b3:40:
36:d4:21:35:28:73:50:fb:ce:79:c2:65:18:cb:66:0c:59:05:
43:cc:4d:38:be:08:91:9b:97:e0:5c:ff:50:b8:82:e5:1f:83:
28:1b:ed:14:28:ba:66:af:96:2b:e8:d6:ba:11:be:9f:8e:c4:
80:2c:00:ca:16:c7:c0:4c:f8:c2:4c:8a:a1:62:68:8c:a6:e5:
c0:83:35:ff:b0:bd:97:e2:a1:29:13:84:16:ac:d9:80:95:a0:
0e:17:17:6d:ab:78:63:a0:91:10:dd:77:7f:17:6a:c3:64:49:
ce:82:d8:ad:6b:e3:21:42:20:19:d8:b5:4f:a5:4a:52:6c:a6:
e7:93:a6:0a:29:60:99:1c:e5:34:58:7e:49:b6:b4:0e:ec:26:
23:79:a5:9d:31:cd:19:e4:2e:b6:77:fb:38:cb:28:92:78:7a:
84:01:1b:50
-----BEGIN CERTIFICATE-----
MIIEwjCCA6qgAwIBAgIUHW2boPFCcn9P6kffHxSSNGKL2TUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTU4MmMzYzY4ZGFkNTI5NjEzNjdjNzk1ZWIxYmNmZDIy
MTNkNTdkYjAeFw0yMzEwMTIxNjA1MzVaFw0yNDEwMTAxNjEwMzVaMDMxMTAvBgNV
BAMTKEVCMkY5QTZDNzFDRkQ5OEFBMDI2ODEyQjJGQzZFRDA0NTZGN0FFOUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYvPB0PYqRqgwMQPDkEEpX9qfc
y2MARMIgWyJHbKanSIdNZD0jX0A0secg3uHbXMnAYfxjfgHTENMFKC7Y7mL8sr9I
/m8pz/Gwsu4jVEgqeJwCjz9aeQhf4uxTJ24ZOqKmpcS6awK8/xWPkG8y/77KtASt
YK8xo9OQuN2I5La5xAWLVLHsEtcz9ZHtWI+wZLfl1eA4GUDxw66f6KiphHkvjFjJ
mUkyrVGzL22IiyPYFJ+U71ltiw09mul5+Kdn/wtTeaCqxDMDzgIc6UNoWqCWnB8d
0hxYV7MzRmrOcMbWSrpigkpPsSzX3Yp25NU2OYXbO1eANCpss+f3nozjo8KNAgMB
AAGjggHMMIIByDAdBgNVHQ4EFgQU6y+abHHP2YqgJoErL8btBFb3rp8wHwYDVR0j
BBgwFoAUlYLDxo2tUpYTZ8eV6xvP0iE9V9swDgYDVR0PAQH/BAQDAgeAMF8GA1Ud
HwRYMFYwVKBSoFCGTnJzeW5jOi8vcnBraS5yb2EubmV0L3JyZHAveFRvbS80OS85
NTgyQzNDNjhEQUQ1Mjk2MTM2N0M3OTVFQjFCQ0ZEMjIxM0Q1N0RCLmNybDBkBggr
BgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9y
ZXBvc2l0b3J5L0RFRkFVTFQvbFlMRHhvMnRVcFlUWjhlVjZ4dlAwaUU5VjlzLmNl
cjB0BggrBgEFBQcBCwRoMGYwZAYIKwYBBQUHMAuGWHJzeW5jOi8vcnBraS5yb2Eu
bmV0L3JyZHAveFRvbS80OS8zMTM4MzUyZTMxMzkzODJlMzczMTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDM5MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnGRzANBgkqhkiG9w0BAQsF
AAOCAQEAVmPmF6O2GlDzRigGceL3EOnJJdPt+3VKCw8ernTqChlT0ZOJlB1Q6cV/
YNMPTPcVQtWQ/7FEbUW+8ks8tfu4A0I0izFN5uGGg1F1K9fNan0FT3HEzukY7rNA
NtQhNShzUPvOecJlGMtmDFkFQ8xNOL4IkZuX4Fz/ULiC5R+DKBvtFCi6Zq+WK+jW
uhG+n47EgCwAyhbHwEz4wkyKoWJojKblwIM1/7C9l+KhKROEFqzZgJWgDhcXbat4
Y6CREN13fxdqw2RJzoLYrWvjIUIgGdi1T6VKUmym55OmCilgmRzlNFh+Sba0Duwm
I3mlnTHNGeQutnf7OMsoknh6hAEbUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org