Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e2038313030.roa
File: 3138352e3232322e34332e302f32342d3234203d3e2038313030.roa (raw, json)
Hash identifier: oTZgJw47t8LOgFgAUURoeuTgKHLLTdlg6JcSwR8wUC0=
Subject key identifier: 6F:56:6C:1C:D1:D7:A5:63:91:D2:63:5A:73:EC:90:5F:BE:1D:EF:D5
Certificate issuer: /CN=b313ae6f32255d0c6ca43a34ec6e149c0ef58c60
Certificate serial: 5052C06AE25476F559B604D0F51100D28DDE8730
Authority key identifier: B3:13:AE:6F:32:25:5D:0C:6C:A4:3A:34:EC:6E:14:9C:0E:F5:8C:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxOubzIlXQxspDo07G4UnA71jGA.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e2038313030.roa
Signing time: Thu 10 Nov 2022 15:37:47 +0000
ROA not before: Thu 10 Nov 2022 15:32:47 +0000
ROA not after: Thu 09 Nov 2023 15:37:47 +0000
asID: 8100
IP address blocks: 185.222.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:52:c0:6a:e2:54:76:f5:59:b6:04:d0:f5:11:00:d2:8d:de:87:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b313ae6f32255d0c6ca43a34ec6e149c0ef58c60
Validity
Not Before: Nov 10 15:32:47 2022 GMT
Not After : Nov 9 15:37:47 2023 GMT
Subject: CN=6F566C1CD1D7A56391D2635A73EC905FBE1DEFD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a6:c2:01:2d:de:71:8a:19:62:34:fb:15:4f:
3f:40:03:cc:fc:4a:77:4a:05:f1:e7:32:bc:5c:dc:
60:2e:f1:22:6e:7d:a5:c3:51:41:47:9c:dc:5a:1b:
19:8d:0b:25:de:4c:8b:f3:09:bf:86:05:cb:4e:35:
5b:e8:74:bf:1d:46:d7:87:6d:6b:fd:a0:5a:1e:58:
f7:99:e4:5a:4c:c9:00:48:c4:0d:c4:43:28:0b:96:
3f:6a:21:5a:0a:41:ed:d3:5d:c8:1a:07:80:39:7b:
4b:c9:f5:a7:f7:6f:29:d3:00:69:0e:ff:2a:d7:76:
30:f3:02:27:02:c3:06:89:e1:cc:36:fb:3f:48:eb:
45:40:60:5b:b4:e8:77:81:b8:c9:e7:92:00:2a:60:
62:22:35:df:0b:f0:e4:05:35:e0:8a:65:b0:14:d6:
39:6b:f6:99:16:1b:82:41:59:4a:24:63:bf:6b:69:
3f:42:a2:61:69:7c:03:fd:71:da:c4:22:37:67:3f:
a6:3d:49:7d:d5:14:7d:1e:7c:99:9b:bd:8b:95:34:
74:c8:35:2a:08:bf:ab:5d:b7:ba:ea:72:64:d8:e7:
2d:26:03:c6:c8:4a:f6:06:0b:36:b4:1f:a8:18:43:
e7:47:24:f8:93:7d:ff:38:91:19:49:e4:a1:07:a0:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:56:6C:1C:D1:D7:A5:63:91:D2:63:5A:73:EC:90:5F:BE:1D:EF:D5
X509v3 Authority Key Identifier:
keyid:B3:13:AE:6F:32:25:5D:0C:6C:A4:3A:34:EC:6E:14:9C:0E:F5:8C:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/50/B313AE6F32255D0C6CA43A34EC6E149C0EF58C60.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxOubzIlXQxspDo07G4UnA71jGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/50/3138352e3232322e34332e302f32342d3234203d3e2038313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.43.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0d:12:41:2b:aa:4e:e5:c3:44:e3:e8:8b:09:1a:f5:4e:5c:
f9:01:dc:c8:d7:6d:2c:62:90:fb:d9:ef:21:45:89:b1:c6:de:
9e:86:af:b3:ef:80:b6:06:ee:40:62:f5:83:cf:69:10:26:ad:
68:ff:ec:d6:a2:34:54:3a:9c:fd:8a:5d:67:39:b6:cd:c6:ca:
25:a0:82:b3:6f:14:e4:ba:44:9e:5d:40:a1:3d:31:a9:1b:b7:
6a:50:da:ee:82:f1:e8:ff:81:f2:3e:bc:ea:4b:c8:28:82:41:
1b:bc:68:18:a9:44:df:d0:09:d0:94:33:31:2e:a6:95:50:32:
2a:b5:a6:36:60:e9:61:af:95:7a:bd:07:e7:a4:4a:bc:b8:bc:
58:07:47:73:ef:c8:e0:65:31:72:32:1f:e3:ad:8b:20:d1:f9:
12:19:28:4e:2b:f8:ca:65:5d:f2:d1:af:84:ba:3d:a3:e7:f5:
ab:df:da:89:65:25:24:76:ed:bf:77:19:86:d8:87:8d:0c:2a:
d6:d3:99:85:0d:00:0f:b2:7e:18:4c:e1:83:62:63:4e:25:41:
a1:18:02:12:75:e4:b5:3d:30:83:4e:df:2a:2d:c5:7b:10:4c:
d6:b5:8e:35:db:28:18:ba:5d:2b:98:50:53:6c:ea:63:06:05:
6d:11:c8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:24 2024 by rpki-client on console-fra.rpki-client.org