Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa
File: 3136302e32322e31332e302f32342d3234203d3e20313532373935.roa (raw, json)
Hash identifier: 4zrjWTGjIfmRVD7KoG+5XB5sYDfQiVJOsTHraO00txU=
Subject key identifier: 95:28:34:FC:25:92:1E:AD:35:00:77:70:85:23:77:E9:CA:87:2F:23
Certificate issuer: /CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069
Certificate serial: 706840C5ACD17A3F83627D788063F57A89780E97
Authority key identifier: 58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa
Signing time: Fri 23 Aug 2024 05:48:36 +0000
ROA not before: Fri 23 Aug 2024 05:43:36 +0000
ROA not after: Fri 22 Aug 2025 05:48:36 +0000
asID: 152795
IP address blocks: 160.22.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:68:40:c5:ac:d1:7a:3f:83:62:7d:78:80:63:f5:7a:89:78:0e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069
Validity
Not Before: Aug 23 05:43:36 2024 GMT
Not After : Aug 22 05:48:36 2025 GMT
Subject: CN=952834FC25921EAD35007770852377E9CA872F23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e7:b2:60:d7:b6:0d:4f:de:9f:cb:66:48:76:
78:34:83:64:3e:55:30:0d:bf:91:ea:c3:6e:68:9d:
95:b1:85:45:4e:d9:94:59:fb:9d:fc:21:07:35:39:
b3:8d:7c:f5:d0:1d:60:db:88:77:79:39:c6:7d:30:
fc:6e:6c:3b:dd:d4:83:e2:c5:77:17:eb:50:18:4a:
1a:a9:0f:ca:1f:06:8b:6b:ce:e0:05:2e:38:f2:c7:
1b:99:e8:07:a0:ce:a2:7f:f3:ca:98:f1:a8:8a:4e:
fa:dd:05:97:db:a1:e1:41:59:ae:9d:c7:2d:f6:7e:
78:df:ca:f5:8b:3b:ca:5d:ba:a4:65:32:ce:62:ba:
3d:b9:0a:ac:cb:64:3d:51:89:b4:ac:44:c0:2b:e9:
70:a7:82:13:09:bd:84:e4:d7:3f:c0:25:b2:50:a9:
03:74:62:06:d2:82:d9:ad:a4:81:13:f1:59:4d:3f:
43:ea:10:49:77:6f:1f:a6:29:61:4e:ab:6d:cc:9d:
df:fd:79:b1:da:a4:d6:c4:ae:db:31:87:0d:25:fe:
8e:57:0f:da:d9:4a:e3:ae:2c:04:5b:8a:1a:a0:c9:
90:6a:0c:e6:f0:3b:52:89:0a:8e:78:86:2b:2f:75:
fe:1b:bb:c5:df:56:ed:64:79:95:8a:25:c9:61:ee:
72:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:28:34:FC:25:92:1E:AD:35:00:77:70:85:23:77:E9:CA:87:2F:23
X509v3 Authority Key Identifier:
keyid:58:8D:D0:FC:E4:BC:24:3C:C9:C6:D6:8A:E0:4E:84:67:E0:E4:D0:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/588DD0FCE4BC243CC9C6D68AE04E8467E0E4D069.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0199e541-1861-4d6a-8e28-b02845861496/0/3136302e32322e31332e302f32342d3234203d3e20313532373935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.13.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d6:55:4f:95:f4:04:ad:a5:03:c2:65:65:ee:d1:94:94:61:
94:aa:11:63:32:1b:fe:d1:9c:f1:d4:4a:c6:0b:a7:39:ab:83:
a2:84:70:07:94:06:e4:0b:11:c3:7d:6b:48:72:2e:34:7a:f1:
18:a0:f7:8e:85:28:b8:70:9b:a2:74:de:6e:a2:ae:38:db:98:
63:5b:e1:b4:7a:98:cd:eb:6c:e8:58:f7:5b:42:c5:2a:13:27:
49:73:8b:2c:c9:d6:0f:2c:47:77:b5:43:ea:f1:a6:2e:cd:31:
61:49:b3:3d:a7:39:29:2d:6b:83:2e:4e:5d:2d:15:66:c2:6a:
4a:5e:3b:20:86:a8:e5:c6:2c:64:f8:bc:46:a1:a4:36:30:ce:
72:da:fb:8d:d8:26:93:93:e7:a7:aa:4e:5c:97:3e:bb:1b:79:
3a:70:f1:da:97:5c:59:f9:e8:9d:bc:63:fd:04:31:2c:33:01:
68:39:9c:9d:a7:b7:6d:be:d1:40:9a:6a:66:10:c3:bb:fd:eb:
e4:51:f0:34:cf:33:21:e2:67:37:bf:fd:3f:41:78:a7:6c:cb:
87:d2:cf:5b:6e:a3:c0:3e:e8:25:55:ac:c9:cd:d3:20:53:a8:
8a:54:9f:de:44:af:9d:1d:8e:5a:cc:78:c5:88:c1:71:f1:4f:
fb:a4:59:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:29:58 2025 by rpki-client