Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
File: 3136302e32322e32342e302f32332d3233203d3e20313532383030.roa (raw, json)
Hash identifier: BzB0xYRkmkpVdyi6fQJ5OxPEeMcyu/lKUmFuR1MRtFA=
Subject key identifier: 0D:8E:C0:7F:B5:53:AE:90:ED:91:90:93:D1:A7:4D:93:2E:41:62:AB
Certificate issuer: /CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Certificate serial: 4ACA6550236DBD648B2634275B26CD1DCD16BB16
Authority key identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
Signing time: Tue 25 Jun 2024 14:15:48 +0000
ROA not before: Tue 25 Jun 2024 14:10:48 +0000
ROA not after: Tue 24 Jun 2025 14:15:48 +0000
asID: 152800
IP address blocks: 160.22.24.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ca:65:50:23:6d:bd:64:8b:26:34:27:5b:26:cd:1d:cd:16:bb:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD
Validity
Not Before: Jun 25 14:10:48 2024 GMT
Not After : Jun 24 14:15:48 2025 GMT
Subject: CN=0D8EC07FB553AE90ED919093D1A74D932E4162AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b4:dd:2b:22:7d:e3:e4:64:d3:1b:d1:99:ec:
4b:83:da:e1:bc:f5:d5:15:fb:a3:86:51:28:18:b7:
8d:8c:53:2a:d0:28:f9:a0:52:0b:77:9a:d6:97:fd:
a6:cc:24:d9:0d:0a:47:44:bd:bb:02:1e:09:1b:29:
cb:4e:97:b3:24:3f:c4:3d:32:0e:ba:1d:37:87:c3:
d5:72:71:6a:8d:a7:dd:04:2b:cb:44:7a:9b:8e:9a:
2a:98:17:a8:6c:a8:ad:eb:9f:84:dc:60:d8:ec:a6:
59:2d:4b:2d:ed:c4:2c:18:ac:3d:10:b9:fe:63:8d:
cb:24:6c:50:29:be:72:16:ea:ee:53:cf:4c:db:13:
61:70:47:49:7d:d4:5c:9e:eb:da:52:e4:f3:5e:66:
d9:ec:90:d3:c8:5d:cb:ea:1f:b3:7f:f4:7d:45:ee:
95:d9:45:f0:8e:c3:e7:bc:fc:e6:a8:fb:ff:c4:52:
d3:9d:1f:f6:6d:a9:a0:d9:3f:ee:9d:f6:21:9c:c1:
c8:d1:52:c4:aa:70:f9:14:70:a4:db:07:3e:8f:93:
aa:9d:f4:0c:1e:09:82:e1:d8:65:3f:1e:0e:32:47:
dd:7f:09:23:97:1c:3a:10:80:99:90:2b:32:cf:85:
cf:28:c5:72:d5:4e:34:b8:85:fe:b8:94:be:1c:60:
e7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8E:C0:7F:B5:53:AE:90:ED:91:90:93:D1:A7:4D:93:2E:41:62:AB
X509v3 Authority Key Identifier:
keyid:FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/3136302e32322e32342e302f32332d3233203d3e20313532383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.24.0/23
Signature Algorithm: sha256WithRSAEncryption
92:13:ed:f7:68:38:4e:bc:4e:2e:0e:e5:65:7a:94:3c:43:6f:
02:5b:b0:f8:3a:8d:c2:90:9e:d0:72:17:15:d4:e9:9e:6d:3c:
57:46:e4:95:2b:2a:9a:de:5c:f7:46:08:60:ae:b7:0d:5b:09:
4f:4c:54:e6:62:e0:fd:6a:7f:de:b0:fe:ce:ae:d2:8a:3a:d7:
46:e1:dc:d1:42:b5:52:70:4a:41:74:e7:55:04:8d:b6:24:43:
f2:34:bc:b3:d2:db:c9:6f:fa:b5:5c:05:2e:b5:f3:21:b9:98:
d4:c2:52:ab:9e:de:ee:ef:6a:21:d7:06:57:40:50:f1:8d:ee:
28:46:92:bc:d5:33:0b:67:f1:cf:44:d7:a1:a8:06:52:5b:7f:
3c:a5:92:64:28:a1:cb:3a:60:ad:49:17:1b:e9:81:8f:f7:f1:
a5:e2:6c:d6:ba:37:23:8f:b0:3c:bc:9d:04:1f:cb:12:a4:a7:
ff:9f:f4:67:61:3a:ba:5c:b1:7a:ab:dc:b0:95:94:ec:4d:6a:
74:08:5a:25:78:de:30:b7:a6:d6:f5:24:7e:18:c0:c1:e7:6c:
57:43:71:34:a8:b6:d7:13:67:ed:e4:d8:9c:63:ae:68:61:b5:
c4:d6:03:88:69:f6:89:39:e6:64:3e:81:64:92:71:52:8b:76:
57:d4:d2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:36:51 2025 by rpki-client