Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138342e302f32312d3231203d3e203436303139.roa
File: 3137352e34352e3138342e302f32312d3231203d3e203436303139.roa (raw, json)
Hash identifier: E6dG5xzAhmGOOI9hqLkzzpPLdq+Po/vVFCvAL/IU7eU=
Subject key identifier: 23:77:04:AD:3A:0F:4C:51:E7:60:5C:1D:DF:5B:81:86:6C:6F:22:07
Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5
Certificate serial: 67199B12AE109C54BEF3AA003A764FCDC3190206
Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138342e302f32312d3231203d3e203436303139.roa
Signing time: Sat 05 Oct 2024 04:00:01 +0000
ROA not before: Sat 05 Oct 2024 03:55:01 +0000
ROA not after: Sat 04 Oct 2025 04:00:01 +0000
asID: 46019
IP address blocks: 175.45.184.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:19:9b:12:ae:10:9c:54:be:f3:aa:00:3a:76:4f:cd:c3:19:02:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5
Validity
Not Before: Oct 5 03:55:01 2024 GMT
Not After : Oct 4 04:00:01 2025 GMT
Subject: CN=237704AD3A0F4C51E7605C1DDF5B81866C6F2207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:bd:00:ae:2e:af:a7:c8:a3:f2:b3:c1:b8:
9a:84:66:a1:ed:03:88:5b:5c:2e:5a:27:6a:26:87:
84:ba:b2:0b:2a:5a:8d:45:30:7c:bf:6c:7e:c8:66:
cd:bb:64:5b:9c:ec:10:9f:8a:e6:b5:c9:ca:76:d5:
58:3d:12:05:3f:06:6c:bb:e8:1e:d8:92:ea:f6:c5:
78:9e:f9:b1:f6:a4:98:5c:cf:6a:16:b2:2a:7d:a9:
e8:ea:74:e8:57:19:26:e9:8f:5a:76:4b:fb:ac:8e:
e6:fe:98:c3:d1:af:3b:5b:96:65:f8:d3:69:70:ed:
4b:32:cf:88:8c:4a:7e:89:e6:e0:bf:d5:a7:6b:8d:
6d:5a:ef:18:5b:93:b9:b7:29:cb:5e:d2:59:13:ea:
d9:15:ec:e2:0e:7c:ac:eb:b9:95:60:17:09:6d:23:
a2:37:3f:40:cb:76:e0:66:27:f7:ea:88:fc:1b:f5:
7c:08:2a:31:23:ed:28:25:cc:ad:1e:a7:d7:95:87:
51:88:68:d4:39:17:f2:06:7c:38:09:8d:dc:2e:31:
1f:de:32:5b:3d:83:ac:55:c7:9d:d7:79:3d:e5:50:
85:a2:9f:f2:15:2e:fd:30:49:32:f1:6c:83:c2:b5:
69:c2:9d:d6:1e:45:1e:b0:9b:97:42:51:e4:30:08:
6b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:77:04:AD:3A:0F:4C:51:E7:60:5C:1D:DF:5B:81:86:6C:6F:22:07
X509v3 Authority Key Identifier:
keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/3137352e34352e3138342e302f32312d3231203d3e203436303139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.45.184.0/21
Signature Algorithm: sha256WithRSAEncryption
02:0d:95:54:8d:8c:71:1f:89:04:8e:af:14:4c:c9:b4:df:87:
9a:81:16:08:b4:88:ab:2f:a7:0a:d2:e9:d0:4b:51:06:a5:32:
76:d8:6d:8a:f9:fe:1d:1e:f7:78:88:53:9f:74:51:bc:38:8a:
14:1f:e2:7d:f9:d0:a7:74:41:7e:18:de:09:d7:7d:62:71:04:
82:92:de:df:f3:e6:26:72:8b:83:ee:ae:0a:c1:74:6a:9a:ba:
45:2c:69:1f:89:56:85:9b:b2:76:21:fa:53:91:7b:1c:1d:bd:
e3:8c:d9:2a:c3:a0:0d:f5:44:22:84:81:bb:68:a7:3c:3e:a5:
0a:cf:91:54:6f:8a:89:6e:0d:6b:ed:5b:6f:5f:44:f9:5a:d9:
35:2b:a1:fa:8a:75:2c:5c:46:9d:44:1b:1e:7e:17:5c:ee:27:
1e:cd:0c:5d:d9:d4:3d:5b:63:02:c9:da:b3:72:67:c0:20:36:
49:11:ac:62:db:d4:bd:95:ab:94:64:89:0e:2b:d7:87:9d:76:
70:bc:79:eb:7b:9c:46:30:ac:00:67:74:0e:1f:1e:86:a3:21:
22:5a:f1:cc:c1:60:00:24:da:41:52:05:7d:b5:e6:1d:f7:c2:
44:41:5c:c8:24:16:82:64:41:85:28:ac:9d:a0:da:f5:4f:19:
ba:43:0f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:06 2025 by rpki-client