Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa
File: 3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa (raw, json)
Hash identifier: 7Wq2I+eG+i0crt18gB8fjrpeNgtc2h87eRDDsvP4ByQ=
Subject key identifier: B8:F3:45:00:7C:0C:66:63:D6:1B:0B:5D:AC:14:4B:E1:73:BB:CA:60
Certificate issuer: /CN=A9181FC40000/serialNumber=E13D7744B2156E4150A1AF5D732E2A10994D8729
Certificate serial: 4F9CA40A7F77AB88B7A39C5F8ED1B927E9AB68C9
Authority key identifier: E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa
Signing time: Wed 06 Nov 2024 18:22:05 +0000
ROA not before: Wed 06 Nov 2024 18:17:05 +0000
ROA not after: Wed 05 Nov 2025 18:22:05 +0000
asID: 137443
IP address blocks: 103.193.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:9c:a4:0a:7f:77:ab:88:b7:a3:9c:5f:8e:d1:b9:27:e9:ab:68:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9181FC40000
Validity
Not Before: Nov 6 18:17:05 2024 GMT
Not After : Nov 5 18:22:05 2025 GMT
Subject: CN=B8F345007C0C6663D61B0B5DAC144BE173BBCA60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ca:0e:64:05:f2:3b:4b:19:d5:d7:e5:e7:f8:
bc:f0:9c:dd:54:6b:6b:e0:3c:0c:51:e4:4b:f2:35:
20:88:d6:cd:d2:79:7c:fc:6e:5d:5d:6e:55:0d:7f:
b9:24:c2:c9:f6:5b:41:01:80:56:6c:22:1c:eb:e0:
b0:15:e4:2e:ce:11:1e:20:fa:7e:bc:d7:03:c0:e6:
c4:b1:5e:cc:e8:f3:54:8b:0e:e1:fb:67:bb:15:e8:
ad:b7:05:0a:5b:6b:c7:12:62:f8:a2:41:12:2e:9a:
7e:7a:b6:8a:2e:87:ae:99:66:03:06:d0:56:db:4c:
89:44:df:61:7a:5e:94:d4:8c:75:d8:e8:b6:09:63:
af:b4:be:65:c7:93:ac:8b:1d:0a:83:5e:59:66:17:
4f:bf:bd:47:7e:ce:ae:88:b6:b7:40:4d:7b:ef:73:
9d:d9:e1:8b:0b:da:9f:d3:c4:8b:ea:e9:46:bb:94:
51:5a:c3:00:26:44:df:4c:26:55:1f:64:5f:68:bb:
66:1f:48:54:dc:7a:38:4f:8e:04:8b:ff:5a:89:5e:
07:5c:d0:d0:ec:43:f7:29:d6:7e:6b:a3:9a:d7:a9:
a6:6b:06:86:0a:ce:67:0f:6f:72:3d:7f:b6:04:4c:
4a:ba:07:42:b7:0c:0b:c7:77:1d:c3:6c:2c:87:a3:
43:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F3:45:00:7C:0C:66:63:D6:1B:0B:5D:AC:14:4B:E1:73:BB:CA:60
X509v3 Authority Key Identifier:
keyid:E1:3D:77:44:B2:15:6E:41:50:A1:AF:5D:73:2E:2A:10:99:4D:87:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/56/E13D7744B2156E4150A1AF5D732E2A10994D8729.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4T13RLIVbkFQoa9dcy4qEJlNhyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/56/3130332e3139332e3132382e302f32342d3234203d3e20313337343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.193.128.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e9:d0:f0:0c:10:cb:f9:83:ff:51:d6:1c:c0:a1:c0:c9:f0:
00:d3:dc:5a:d8:6d:60:1d:e5:19:ee:0b:c9:35:0f:75:6b:66:
d1:ae:b9:72:ab:5c:e6:7b:b4:2c:9a:35:2f:b2:8c:30:27:39:
e3:2b:60:b4:0b:4c:4c:e8:d6:5f:76:cb:98:85:6f:75:98:66:
10:1b:0e:f1:55:f7:24:75:0a:81:cd:2e:e5:f5:b2:f1:07:e7:
d4:34:49:e0:16:38:80:25:6e:fe:68:1e:98:62:ec:78:ff:2f:
3e:5f:c5:53:18:82:cc:c7:31:a8:0c:94:62:70:cd:0c:f0:2c:
4c:4e:d1:cd:b6:dd:69:ec:61:95:c0:65:86:af:81:94:6a:60:
12:16:f5:d9:8d:d0:b5:e3:eb:7b:2b:e9:a5:17:3a:fd:19:66:
d6:17:e8:55:92:89:4a:bd:95:df:88:1a:67:1c:b2:23:70:e5:
64:47:7b:94:27:81:8a:4f:b9:4d:7f:dd:a8:29:e2:98:8f:ba:
b5:c9:3f:89:33:dd:0d:02:2b:bd:5e:f9:1e:c1:f0:3f:23:21:
ed:b3:bb:9a:4b:c6:d1:f0:79:58:26:18:c7:3f:2d:89:18:a9:
5e:35:96:ea:0d:ea:2c:fc:9c:65:5c:35:34:f7:63:c4:02:83:
93:90:82:f1
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIUT5ykCn93q4i3o5xfjtG5J+mraMkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODFGQzQwMDAwMTEwLwYDVQQFEyhFMTNENzc0NEIy
MTU2RTQxNTBBMUFGNUQ3MzJFMkExMDk5NEQ4NzI5MB4XDTI0MTEwNjE4MTcwNVoX
DTI1MTEwNTE4MjIwNVowMzExMC8GA1UEAxMoQjhGMzQ1MDA3QzBDNjY2M0Q2MUIw
QjVEQUMxNDRCRTE3M0JCQ0E2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANbKDmQF8jtLGdXX5ef4vPCc3VRra+A8DFHkS/I1IIjWzdJ5fPxuXV1uVQ1/
uSTCyfZbQQGAVmwiHOvgsBXkLs4RHiD6frzXA8DmxLFezOjzVIsO4ftnuxXorbcF
CltrxxJi+KJBEi6afnq2ii6HrplmAwbQVttMiUTfYXpelNSMddjotgljr7S+ZceT
rIsdCoNeWWYXT7+9R37Oroi2t0BNe+9zndnhiwvan9PEi+rpRruUUVrDACZE30wm
VR9kX2i7Zh9IVNx6OE+OBIv/WoleB1zQ0OxD9ynWfmujmteppmsGhgrOZw9vcj1/
tgRMSroHQrcMC8d3HcNsLIejQ7ECAwEAAaOCAe4wggHqMB0GA1UdDgQWBBS480UA
fAxmY9YbC12sFEvhc7vKYDAfBgNVHSMEGDAWgBThPXdEshVuQVChr11zLioQmU2H
KTAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp
LnJvYS5uZXQvcnJkcC94VG9tLzU2L0UxM0Q3NzQ0QjIxNTZFNDE1MEExQUY1RDcz
MkUyQTEwOTk0RDg3MjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi
cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx
RTJCQjQ2OEY3QzcyRkQxRkYyLzRUMTNSTElWYmtGUW9hOWRjeTRxRUpsTmh5ay5j
ZXIwfAYIKwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL3Jwa2kucm9h
Lm5ldC9ycmRwL3hUb20vNTYvMzEzMDMzMmUzMTM5MzMyZTMxMzIzODJlMzAyZjMy
MzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM0MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK
BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfBgDANBgkq
hkiG9w0BAQsFAAOCAQEAD+nQ8AwQy/mD/1HWHMChwMnwANPcWthtYB3lGe4LyTUP
dWtm0a65cqtc5nu0LJo1L7KMMCc54ytgtAtMTOjWX3bLmIVvdZhmEBsO8VX3JHUK
gc0u5fWy8Qfn1DRJ4BY4gCVu/mgemGLseP8vPl/FUxiCzMcxqAyUYnDNDPAsTE7R
zbbdaexhlcBlhq+BlGpgEhb12Y3QtePreyvppRc6/Rlm1hfoVZKJSr2V34gaZxyy
I3DlZEd7lCeBik+5TX/dqCnimI+6tck/iTPdDQIrvV75HsHwPyMh7bO7mkvG0fB5
WCYYxz8tiRipXjWW6g3qLPycZVw1NPdjxAKDk5CC8Q==
-----END CERTIFICATE-----
Generated at Fri Apr 11 06:46:32 2025 by rpki-client