Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e203334363831.roa
File: 3138352e3232322e34332e302f32342d3234203d3e203334363831.roa (raw, json)
Hash identifier: UUW8SETLkMdWJ0eja+fVVEPWp7TFhY4SyljPQA+1g08=
Subject key identifier: 45:87:6C:E8:B4:5E:CF:3E:15:A0:EC:D8:CB:5E:BC:22:21:0A:39:15
Certificate issuer: /CN=b313ae6f32255d0c6ca43a34ec6e149c0ef58c60
Certificate serial: 74D70EFFD7557207A940FA1D569847523E99D84D
Authority key identifier: B3:13:AE:6F:32:25:5D:0C:6C:A4:3A:34:EC:6E:14:9C:0E:F5:8C:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxOubzIlXQxspDo07G4UnA71jGA.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e203334363831.roa
Signing time: Wed 22 Jun 2022 16:30:43 +0000
ROA not before: Wed 22 Jun 2022 16:25:43 +0000
ROA not after: Wed 21 Jun 2023 16:30:43 +0000
asID: 34681
IP address blocks: 185.222.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:d7:0e:ff:d7:55:72:07:a9:40:fa:1d:56:98:47:52:3e:99:d8:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b313ae6f32255d0c6ca43a34ec6e149c0ef58c60
Validity
Not Before: Jun 22 16:25:43 2022 GMT
Not After : Jun 21 16:30:43 2023 GMT
Subject: CN=45876CE8B45ECF3E15A0ECD8CB5EBC22210A3915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8f:4d:c9:48:a3:2e:bc:35:96:0a:65:81:df:
77:25:4b:24:04:48:e9:04:a5:f3:bb:31:c0:78:14:
5b:30:4b:d0:34:3d:6a:b5:df:3c:ce:fe:25:c4:55:
35:be:8e:cf:c0:e3:81:94:49:71:48:b4:c0:3c:d2:
29:46:ff:b9:2b:ef:50:f7:12:1a:47:18:2b:62:ca:
91:a4:3e:d6:d8:50:c1:ea:e3:da:d4:d9:fa:1a:af:
a2:9a:4e:0b:51:02:85:ef:ef:f2:3d:00:ec:bb:3a:
f5:3f:f6:bc:b3:64:2a:f2:2e:2a:ef:57:10:b5:1e:
d3:e4:94:57:8f:a0:b0:7c:ca:b2:d9:9e:43:80:92:
f4:ff:14:3e:32:7e:35:04:d5:3b:64:f3:de:04:44:
62:a5:7a:24:da:b4:8d:71:a1:f7:fa:15:59:f4:fb:
67:19:07:1d:7a:a0:ed:c1:fd:44:85:4d:0b:ed:c7:
a9:68:6e:d5:3a:01:b0:12:62:1c:e9:9f:75:d5:92:
59:67:94:f0:0e:36:49:05:0f:08:f5:52:f0:06:4b:
d2:35:03:35:c3:4a:c2:a4:70:48:8f:ad:c7:6e:e0:
30:a3:c9:02:86:fc:46:0b:68:b1:6e:99:d8:3d:3a:
fe:82:5f:bc:9a:67:16:24:a4:8b:3d:52:53:b3:26:
c9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:87:6C:E8:B4:5E:CF:3E:15:A0:EC:D8:CB:5E:BC:22:21:0A:39:15
X509v3 Authority Key Identifier:
keyid:B3:13:AE:6F:32:25:5D:0C:6C:A4:3A:34:EC:6E:14:9C:0E:F5:8C:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/50/B313AE6F32255D0C6CA43A34EC6E149C0EF58C60.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxOubzIlXQxspDo07G4UnA71jGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e203334363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.43.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ca:6a:7a:1b:06:47:05:fb:85:eb:3f:0b:30:0d:61:2c:7c:
27:ea:38:97:e3:05:ef:53:bd:4a:17:0e:b7:62:55:0d:ae:38:
7e:1a:10:ed:0c:49:de:1e:d0:3d:2f:a4:a2:cb:b1:c3:4e:33:
0c:a5:6b:72:cc:e8:5e:61:39:cd:5a:73:34:d5:07:b5:b7:c6:
f8:75:df:54:c1:3f:6c:c9:91:d9:6b:82:df:43:af:e3:73:c6:
16:78:11:aa:97:19:35:e2:02:7b:9c:6a:fb:7a:86:de:96:75:
14:8c:08:bc:31:3c:2d:37:38:73:af:3d:10:57:2b:db:0d:ef:
4c:a8:8e:da:16:f8:3a:42:72:40:b2:dd:7a:db:70:90:6f:0b:
5b:f8:90:3c:c2:8b:0d:f2:dd:8a:01:ea:7c:fe:e5:60:06:b9:
75:51:29:aa:d3:90:43:31:5b:d7:1b:26:3d:9e:81:0e:c6:59:
1f:5d:76:70:81:34:4d:b5:c6:8c:56:82:f8:98:2d:b9:15:02:
71:20:7e:70:e0:a8:45:07:cc:2e:63:3f:61:1f:70:16:12:12:
be:c7:8a:c8:3c:d3:3d:6c:d7:22:43:34:41:b1:af:da:03:f1:
91:79:37:20:c3:1f:39:e0:55:61:29:6d:20:8d:50:32:69:3f:
38:70:a1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org