Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa
File: 3137352e3130362e31322e302f32332d3234203d3e203436303233.roa (raw, json)
Hash identifier: tvoDk4LlfXoJ09xe7ZBPCe/jlDhchEH3qMLcpywXvh8=
Subject key identifier: 44:49:A0:70:DA:83:67:FF:12:EE:AE:FA:91:9F:7C:B5:EC:AC:4C:9B
Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Certificate serial: 338CE4D944D6A840FFFED4236E652733B29DC018
Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa
Signing time: Tue 12 Nov 2024 15:03:32 +0000
ROA not before: Tue 12 Nov 2024 14:58:32 +0000
ROA not after: Tue 11 Nov 2025 15:03:32 +0000
asID: 46023
IP address blocks: 175.106.12.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:8c:e4:d9:44:d6:a8:40:ff:fe:d4:23:6e:65:27:33:b2:9d:c0:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Validity
Not Before: Nov 12 14:58:32 2024 GMT
Not After : Nov 11 15:03:32 2025 GMT
Subject: CN=4449A070DA8367FF12EEAEFA919F7CB5ECAC4C9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3a:8e:c6:8e:c2:5f:46:40:ee:42:18:c8:41:
f9:3a:9b:cc:ca:14:a1:9a:de:06:b0:37:14:f4:de:
b1:2c:38:e6:8a:b9:66:57:e4:ae:ed:66:b0:ff:cf:
2e:cc:46:28:2a:17:a6:bf:30:55:55:0b:a1:b7:e9:
a3:1a:40:8d:9c:30:02:f9:c4:fb:b6:80:33:09:3a:
0d:5d:fb:1d:e4:e6:37:46:cd:5c:79:a9:95:53:ba:
5c:9c:c9:6c:c5:30:16:80:db:bc:a8:7c:2a:25:2d:
cb:65:25:ed:1a:ed:e9:4c:93:ee:6c:21:03:1a:56:
d9:84:24:5d:f9:6b:00:15:c7:64:0d:0c:60:83:a1:
7e:ed:77:e3:eb:f8:29:68:66:4d:26:3d:08:d8:3d:
67:49:e2:97:62:29:ec:fb:e9:2b:c3:84:ab:06:bd:
7e:ff:19:04:d2:12:c1:61:bc:c3:d7:92:43:75:0a:
9f:68:40:27:b9:bf:23:e0:27:96:c2:e8:ea:b0:e5:
95:2a:a6:4f:b8:4c:54:b0:cc:e6:eb:16:8b:ab:21:
e6:a4:c2:f9:73:08:b5:e4:19:b5:fe:eb:b4:8f:b6:
0c:59:6f:57:53:0f:28:ec:94:fe:1a:5e:39:8d:93:
e5:67:58:1c:a4:8c:b0:6c:6f:93:f5:95:72:16:78:
4a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:49:A0:70:DA:83:67:FF:12:EE:AE:FA:91:9F:7C:B5:EC:AC:4C:9B
X509v3 Authority Key Identifier:
keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3137352e3130362e31322e302f32332d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.106.12.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:19:ec:94:df:ac:ad:f8:ef:43:b4:dc:11:f4:76:dc:4d:fb:
33:59:f7:e6:13:9a:74:bd:ab:58:ee:ef:b0:5f:30:bd:8f:de:
17:7e:3d:cf:3b:36:da:4c:7b:61:8f:4a:51:f2:2d:90:01:d5:
59:e6:35:32:54:6a:3f:b9:fa:38:47:83:57:fc:db:09:02:68:
cc:0e:fe:af:b4:c4:d6:98:7d:e8:91:28:ac:a1:dd:50:99:17:
67:75:36:69:78:61:fd:ea:a9:a9:e9:28:b7:d0:d3:e4:51:5a:
cb:bd:25:ca:a3:49:0a:59:de:75:d1:8b:71:a9:50:30:f6:6b:
81:f1:0f:76:44:ee:2d:5a:c5:c2:a7:9b:be:42:e8:39:3b:fc:
cd:4b:f6:1a:c5:48:b2:74:a6:7d:7d:a3:28:ee:19:f4:d6:8e:
a3:bc:3c:2b:d3:59:33:c5:e2:71:e3:c6:5a:a2:8f:27:6d:68:
dd:c3:e9:3c:c1:01:03:78:77:cc:67:73:4a:2a:2b:9b:f7:09:
1e:b3:e8:93:de:c0:01:06:26:84:e9:ac:0b:57:e3:8f:8a:0f:
09:f4:ad:af:28:b9:39:58:08:96:a8:30:28:06:62:08:09:39:
5a:74:69:1f:b4:20:69:93:14:8e:18:59:e5:75:fd:98:da:d1:
34:aa:53:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:39:01 2025 by rpki-client