Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa
File: 3131372e37342e3131382e302f32342d3234203d3e203338353233.roa (raw, json)
Hash identifier: znSniW+lPXCPGxomzmN2hrx17CR9++zAKICSSEuO9Vw=
Subject key identifier: 53:1C:1D:0F:FE:F5:27:9B:1C:41:C6:6F:89:3F:2D:0A:A5:21:30:87
Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Certificate serial: 0F3DE340AA2A3860D23F47EBE4A99C8BDBBF1CAF
Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa
Signing time: Fri 02 Aug 2024 15:00:02 +0000
ROA not before: Fri 02 Aug 2024 14:55:02 +0000
ROA not after: Fri 01 Aug 2025 15:00:02 +0000
asID: 38523
IP address blocks: 117.74.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:3d:e3:40:aa:2a:38:60:d2:3f:47:eb:e4:a9:9c:8b:db:bf:1c:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F
Validity
Not Before: Aug 2 14:55:02 2024 GMT
Not After : Aug 1 15:00:02 2025 GMT
Subject: CN=531C1D0FFEF5279B1C41C66F893F2D0AA5213087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:69:ef:1e:ec:41:38:ac:b8:88:05:c2:f6:23:
81:c8:ca:6c:cf:cf:f7:f3:27:73:c5:17:b9:a4:2a:
43:4f:59:0e:b5:fb:53:93:59:48:41:6c:25:d2:5e:
b8:6d:b7:54:1b:51:f2:a2:0c:cf:ac:58:a4:b3:c2:
c3:7c:92:1d:5a:4f:7d:29:d6:a7:ad:e4:f9:77:53:
e1:24:44:dc:46:29:40:57:3c:06:78:f3:12:34:3b:
25:4d:60:d3:08:bc:0d:5b:b1:50:01:f7:b2:d8:9b:
ad:d4:55:62:5d:ef:ae:28:59:a2:a1:ae:bd:b8:a2:
1e:85:8e:85:66:e4:88:9c:3c:f4:e9:b6:86:7e:7c:
c2:60:ec:b1:e1:34:78:bc:2b:ab:e3:3a:8b:91:3a:
96:ed:c3:a2:6d:e9:69:fb:2a:80:1b:8e:f6:5f:1f:
02:23:52:da:f7:e5:57:cc:04:36:82:26:77:3d:98:
08:ce:31:58:1e:cc:dc:12:05:3e:0c:e1:40:92:14:
e6:6e:34:40:6a:f2:26:b5:06:08:f4:2c:be:96:86:
3f:59:a5:d6:07:34:db:25:a9:bc:d8:88:2b:69:ec:
67:0a:3c:b4:23:62:16:7b:37:bf:bd:86:d4:97:f1:
45:25:64:fe:22:71:1d:c9:69:bc:ee:18:4c:b6:37:
2a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1C:1D:0F:FE:F5:27:9B:1C:41:C6:6F:89:3F:2D:0A:A5:21:30:87
X509v3 Authority Key Identifier:
keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131382e302f32342d3234203d3e203338353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.74.118.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:5f:9a:90:1f:84:5d:32:9b:63:6a:67:87:c3:6f:ed:dd:76:
85:64:a5:79:df:e4:97:ce:a4:f1:80:50:01:d4:d3:94:13:7d:
9f:4d:05:44:42:2f:9e:44:5b:aa:af:a5:a9:a6:a5:36:2e:89:
5c:b3:8f:75:da:31:a5:97:a4:2f:26:17:49:06:d1:97:0f:ae:
4d:a2:b6:ad:09:17:1b:fc:95:e3:c3:33:76:0e:f0:b7:5a:32:
50:c1:03:fb:52:30:73:3e:f7:57:7a:fd:a0:67:59:c7:4c:a5:
51:80:c9:54:ad:78:d5:00:c5:54:82:3f:bb:a2:aa:3c:93:5e:
5f:a3:12:58:ae:dc:68:4f:56:28:be:e2:2c:32:57:93:ea:9f:
dc:31:99:24:c9:64:9f:06:7a:4d:9b:25:9d:67:27:36:90:6c:
aa:6f:5a:ba:87:96:4c:33:a8:de:2b:b5:3a:85:d1:fd:99:69:
23:1a:0d:6b:c5:08:fc:99:65:28:44:20:76:0f:83:e5:3c:f8:
91:e5:d1:8b:29:a2:53:fd:b4:30:18:40:e0:86:72:5f:f2:cc:
47:7c:18:65:5c:17:bc:2b:80:bb:ef:de:55:72:88:8e:e5:f6:
f7:32:a1:56:54:e7:d6:a5:16:2f:e0:c6:bd:90:38:89:0d:16:
27:15:01:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:50 2025 by rpki-client