Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa
File: 3131372e37342e3131372e302f32342d3234203d3e203338353233.roa (raw, json)
Hash identifier: BbLwPxFe+tWzZ8sOAXoZbHTuvfXUw6/yE4h7IQcYxzA=
Subject key identifier: C4:92:4D:D4:82:95:8A:39:89:85:97:88:D7:14:B6:64:3C:F8:9C:BE
Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Certificate serial: 23116ACEB00AEBE751445B0792CB3512C1E58592
Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa
Signing time: Fri 02 Aug 2024 15:00:03 +0000
ROA not before: Fri 02 Aug 2024 14:55:03 +0000
ROA not after: Fri 01 Aug 2025 15:00:03 +0000
asID: 38523
IP address blocks: 117.74.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:11:6a:ce:b0:0a:eb:e7:51:44:5b:07:92:cb:35:12:c1:e5:85:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Validity
Not Before: Aug 2 14:55:03 2024 GMT
Not After : Aug 1 15:00:03 2025 GMT
Subject: CN=C4924DD482958A3989859788D714B6643CF89CBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:63:db:1e:66:e7:f2:b7:10:3d:a1:9f:35:f6:
0d:2f:a3:7b:ce:f4:1e:9e:04:1d:a4:08:d5:98:79:
19:12:62:a7:76:1d:f4:b0:99:7c:d5:c4:55:f8:fc:
66:8c:ad:2b:bb:6b:41:88:fc:91:3e:29:5e:1a:dc:
d9:10:a4:a8:0a:48:59:99:f1:dc:94:7f:01:8f:87:
89:19:b8:fb:2f:12:35:36:56:6b:60:65:dc:07:0b:
74:99:72:c3:a9:62:b3:f9:6d:63:6c:8c:c7:39:07:
49:83:08:49:be:79:a4:83:63:84:04:68:9c:e5:32:
73:b9:68:b7:47:34:58:ab:b8:2a:dc:ad:a9:33:9e:
bb:91:a5:18:8e:87:d3:01:d5:45:d1:5f:7e:00:ce:
fb:47:e0:7d:9c:1e:45:ca:08:e5:79:bd:bf:11:d7:
08:dd:d2:83:60:ba:e4:a0:bd:96:6b:bb:9e:63:2f:
12:e4:e7:e3:b2:e2:28:b0:c0:4d:ea:2b:2f:54:82:
72:83:60:2b:d4:33:fb:71:66:f1:13:44:9a:7d:cd:
15:46:f0:53:9d:85:8d:d3:01:ff:3d:0d:0e:e6:1b:
3e:ad:e3:06:63:9f:b6:e0:11:55:01:8c:c7:a5:a6:
66:4d:7a:02:9e:8b:68:7a:3e:e9:5d:76:f2:00:ed:
da:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:92:4D:D4:82:95:8A:39:89:85:97:88:D7:14:B6:64:3C:F8:9C:BE
X509v3 Authority Key Identifier:
keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131372e302f32342d3234203d3e203338353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.74.117.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ce:3f:21:6c:6d:f4:00:62:2e:12:3a:c0:da:cf:38:78:cd:
3a:89:20:91:94:d9:0c:6c:93:07:71:76:e2:a7:95:46:d7:4f:
d8:0b:c6:0f:84:4e:ed:61:ae:db:a8:78:90:b8:e0:5f:0b:5d:
38:26:84:8f:b5:b5:53:7b:de:12:55:0e:e2:b9:23:94:d4:84:
ac:1a:6b:75:6d:a2:d2:b5:06:6b:1e:f7:0c:ea:fc:75:1c:40:
e2:be:fe:c3:72:dc:3e:af:d3:ac:dd:12:4c:cd:27:7a:79:18:
65:13:c0:93:24:f4:e8:bc:ad:9c:2f:21:7d:b2:9b:72:38:dc:
9c:23:a7:ee:5a:dc:db:4a:fc:f1:25:01:ab:1a:eb:61:dc:81:
f0:12:43:68:4e:31:26:c8:36:81:2d:26:10:de:e4:1d:50:83:
62:d6:90:06:34:bb:ae:d6:6f:a2:0a:d4:c1:95:91:6a:a9:d5:
53:8d:91:bb:de:cb:aa:e2:98:1f:00:b9:c8:b2:9a:b2:f3:29:
b4:a3:dd:f6:69:29:c7:8b:b2:a3:66:8a:f1:e9:98:86:b4:36:
60:d6:18:22:67:a8:19:88:49:e4:03:40:5d:51:6a:12:89:d9:
f0:04:56:e0:a1:15:f5:6c:b4:1e:8e:8e:2e:c3:a9:d8:86:36:
55:b6:00:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:29 2025 by rpki-client