Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa
File: 3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa (raw, json)
Hash identifier: jz7yjPO/h0Hd3tRfN+ZclqniexoPCfBHldRalYARglE=
Subject key identifier: DE:15:C4:05:03:A9:19:19:97:B6:22:78:C7:52:7B:F3:BC:0C:2A:90
Certificate issuer: /CN=E3FB5E3343EC63D705FF51B645113F74C7965236
Certificate serial: 0A4FE32C76D95B4DB24686F2E3759BDBAAF2604A
Authority key identifier: E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa
Signing time: Fri 09 Aug 2024 11:32:36 +0000
ROA not before: Fri 09 Aug 2024 11:27:36 +0000
ROA not after: Fri 08 Aug 2025 11:32:36 +0000
asID: 153087
IP address blocks: 160.25.222.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:4f:e3:2c:76:d9:5b:4d:b2:46:86:f2:e3:75:9b:db:aa:f2:60:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E3FB5E3343EC63D705FF51B645113F74C7965236
Validity
Not Before: Aug 9 11:27:36 2024 GMT
Not After : Aug 8 11:32:36 2025 GMT
Subject: CN=DE15C40503A9191997B62278C7527BF3BC0C2A90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:98:56:d7:07:ad:d5:37:c4:af:1d:e3:b1:e7:
56:05:37:f2:8c:c6:52:b0:f0:e8:b7:62:4e:d1:65:
63:81:ab:26:cf:3c:72:b8:9d:84:69:8d:5e:48:09:
7a:a3:d3:92:12:96:a7:c0:da:7a:5c:4a:2c:ed:dd:
68:13:9b:fe:ee:34:e6:b0:12:5d:d5:44:c9:81:9d:
b6:34:d7:10:44:90:70:41:1f:ed:ce:54:69:4b:66:
5f:e5:53:00:2c:10:4b:ef:54:bb:78:d9:b2:f2:66:
ca:2f:d9:1e:6a:fc:0e:a9:42:73:f1:3c:4b:5a:77:
33:32:9c:8e:23:ce:bb:14:6d:1c:c2:32:2b:71:5a:
e1:43:20:23:71:f1:87:a0:17:e3:15:dd:2e:5c:eb:
ff:c8:71:82:da:8f:d2:c9:fb:12:ef:97:58:7c:a8:
e8:93:d7:bc:5b:b2:60:ee:4f:29:18:35:40:9b:5e:
c5:3f:bf:8c:a1:ad:7f:20:a8:fa:27:ed:a3:54:b3:
71:0e:a9:74:12:91:09:7b:61:0f:75:63:20:8f:86:
b4:d5:76:b5:07:33:0a:70:98:ef:95:ef:08:69:d5:
e7:55:56:8a:0a:20:45:40:06:2c:73:7b:19:83:c0:
72:8d:96:27:9b:e7:d8:ac:c9:04:dd:97:66:00:9f:
2e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:15:C4:05:03:A9:19:19:97:B6:22:78:C7:52:7B:F3:BC:0C:2A:90
X509v3 Authority Key Identifier:
keyid:E3:FB:5E:33:43:EC:63:D7:05:FF:51:B6:45:11:3F:74:C7:96:52:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/E3FB5E3343EC63D705FF51B645113F74C7965236.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/E3FB5E3343EC63D705FF51B645113F74C7965236.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/0/3136302e32352e3232322e302f32332d3233203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.222.0/23
Signature Algorithm: sha256WithRSAEncryption
97:02:bc:86:19:c7:2b:e1:92:25:92:52:92:45:1f:5f:bb:de:
22:62:82:c3:e6:86:61:9c:2c:72:28:d1:b3:8f:79:84:f3:1a:
fa:0c:d6:e9:9f:ed:32:5e:38:d7:83:bb:d6:7e:c6:70:4b:90:
4b:56:ed:23:ba:37:24:98:cf:60:e5:2b:80:4e:93:99:08:43:
7a:d9:27:39:75:71:03:36:d3:41:e4:8e:19:44:f7:d0:06:0e:
a7:8c:7e:00:f9:3c:8f:a9:9a:e6:a1:1d:0d:8b:d9:ac:6c:24:
2b:f4:68:fd:ec:5b:cb:75:78:f4:d6:4b:84:9c:94:78:0a:2a:
e7:95:14:55:d8:6f:ba:af:74:9b:a6:03:b7:4f:b7:68:bb:29:
e2:8d:e8:92:6f:09:1e:4d:89:83:60:cb:50:d2:93:dc:6b:02:
3d:df:e4:42:75:8a:ba:40:a8:a8:90:5b:ff:7a:23:56:78:91:
ef:80:ea:d7:55:c6:c1:51:ea:0c:b7:21:20:63:66:f5:3f:7d:
6a:dc:dc:00:f7:86:81:dc:cd:0e:3b:d1:5f:d4:ad:66:0d:a8:
f9:1c:82:08:30:e1:ae:0d:19:aa:23:95:e3:69:58:8e:7c:0a:
13:19:03:5a:71:1c:e6:01:e0:77:50:06:a9:30:e3:d3:a0:3c:
91:4b:f3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 14:23:47 2025 by rpki-client