Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3138302e3137382e39362e302f32302d3234203d3e203338373538.roa
File: 3138302e3137382e39362e302f32302d3234203d3e203338373538.roa (raw, json)
Hash identifier: qkSNUdJkDxdqKObXFqJ7YGM+qaLs/AFZbanOaV69gsQ=
Subject key identifier: D6:FF:5F:E2:EA:B1:9B:B5:EA:57:11:C5:BB:53:17:CB:33:61:71:21
Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Certificate serial: 7AF5D49D4067061D2F5F74B87383C470369DE123
Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3138302e3137382e39362e302f32302d3234203d3e203338373538.roa
Signing time: Mon 01 Jul 2024 00:02:12 +0000
ROA not before: Sun 30 Jun 2024 23:57:12 +0000
ROA not after: Mon 30 Jun 2025 00:02:12 +0000
asID: 38758
IP address blocks: 180.178.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:f5:d4:9d:40:67:06:1d:2f:5f:74:b8:73:83:c4:70:36:9d:e1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Validity
Not Before: Jun 30 23:57:12 2024 GMT
Not After : Jun 30 00:02:12 2025 GMT
Subject: CN=D6FF5FE2EAB19BB5EA5711C5BB5317CB33617121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bb:e0:dc:11:47:be:91:f8:7f:99:3a:1f:10:
d9:ab:14:cc:2b:b4:d0:12:5e:aa:ae:42:51:78:4c:
02:21:58:16:df:cc:41:0d:77:f9:11:5c:33:62:8a:
c4:5f:ca:5b:62:b8:61:57:33:73:91:2e:bc:b6:6d:
11:2b:bd:1e:ec:af:ea:1c:b6:28:21:f1:83:9b:aa:
8a:cf:46:7d:cc:17:49:94:9c:1d:38:43:2b:58:48:
8b:c4:d8:29:dc:5b:78:b8:54:de:bf:87:f4:87:73:
a4:e4:75:d9:85:c9:8a:48:ac:71:64:81:93:01:95:
7d:df:76:3c:3c:99:3f:10:ac:13:51:73:d5:ff:c6:
36:12:5d:23:aa:7c:d8:28:70:13:75:1e:6b:3d:8b:
27:93:44:78:97:0f:63:bf:74:1b:74:a1:ca:dc:53:
c2:86:4b:ab:6a:b7:29:13:c5:dc:b0:40:be:0e:f0:
7d:e1:e0:eb:14:5e:37:e2:ab:49:99:81:3a:f8:8d:
34:5f:d5:ec:72:0e:e8:4b:e4:6d:09:ad:1e:3a:b5:
8f:47:2f:bf:64:d1:d7:ce:21:e3:d8:40:51:66:a4:
42:22:45:12:0b:14:ad:37:6c:94:5e:e4:40:65:4a:
db:89:c4:25:df:89:da:7d:8b:d0:ed:39:27:2c:3d:
a1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FF:5F:E2:EA:B1:9B:B5:EA:57:11:C5:BB:53:17:CB:33:61:71:21
X509v3 Authority Key Identifier:
keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3138302e3137382e39362e302f32302d3234203d3e203338373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.178.96.0/20
Signature Algorithm: sha256WithRSAEncryption
59:65:53:19:c0:af:e7:a3:ea:6b:41:79:0d:eb:b1:c3:fd:07:
ea:36:4c:cc:63:91:0c:8b:3c:97:a4:b5:da:87:ca:c4:b7:10:
c1:6c:26:47:72:86:3d:d3:ed:6c:4e:4d:b5:9e:c2:de:5e:a9:
23:65:19:72:65:11:72:2c:19:a1:20:58:c7:d7:63:9b:47:5e:
ca:9f:f1:ed:c9:a4:33:aa:d6:48:12:45:d7:5f:3f:15:c7:14:
4d:18:ee:51:13:12:34:1c:79:d7:c0:96:d7:6d:ee:76:80:ae:
0c:c1:75:15:ee:10:85:e7:5d:44:24:c8:50:11:fb:ec:89:c3:
f9:98:a7:f1:dc:d0:c2:24:f2:43:18:37:b6:8e:8e:24:54:a1:
1b:d4:67:fc:b1:b2:98:eb:73:50:64:cb:65:23:68:45:35:41:
83:01:56:ce:4d:0a:35:fc:2b:d6:2f:00:78:5d:25:9b:7c:a7:
a6:32:34:b5:7a:16:00:0a:dc:c2:26:23:cb:16:5c:2b:00:0f:
36:8a:ff:d3:21:d3:c3:de:c9:b3:55:4f:81:02:e7:51:96:79:
af:d7:92:5c:98:0e:0c:62:f0:b3:e7:51:69:8a:5e:3c:42:03:
60:eb:9b:09:bb:31:9f:c0:f4:3a:82:64:dd:f8:d7:bb:b5:88:
40:1c:9f:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 21:57:16 2025 by rpki-client