Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa
File: 3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa (raw, json)
Hash identifier: /CudCrCMBnJXhLDmiSFEsWoONy/3OPxt1BYejFAI8AE=
Subject key identifier: 5A:79:B1:91:4A:8D:6A:A7:E0:D1:1B:75:98:9B:0A:1F:D3:11:FB:D1
Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Certificate serial: 5616502953D895B1A62518E0E6D6C32541A7CA1F
Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa
Signing time: Sun 11 Aug 2024 11:00:05 +0000
ROA not before: Sun 11 Aug 2024 10:55:05 +0000
ROA not after: Sun 10 Aug 2025 11:00:05 +0000
asID: 63859
IP address blocks: 158.140.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:16:50:29:53:d8:95:b1:a6:25:18:e0:e6:d6:c3:25:41:a7:ca:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Validity
Not Before: Aug 11 10:55:05 2024 GMT
Not After : Aug 10 11:00:05 2025 GMT
Subject: CN=5A79B1914A8D6AA7E0D11B75989B0A1FD311FBD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:40:2f:32:a8:04:85:cd:e8:65:be:3a:ae:a1:
76:b4:27:15:97:8f:24:55:e1:a5:7d:8f:43:91:57:
a4:72:4a:99:c7:06:4e:9c:9e:1d:9e:5a:c1:f9:d7:
e4:01:c4:da:b4:2a:e3:6b:d2:53:d2:53:58:9d:65:
3f:b3:fc:43:ca:de:ee:7f:f6:9a:b6:1f:7f:af:77:
38:ad:53:fe:47:0c:22:83:53:3c:7d:82:72:e3:7d:
96:c0:61:e8:7e:2d:7b:2e:7e:ad:d1:d4:86:af:5a:
ce:9d:f3:ed:a5:cd:ec:ff:d8:86:6d:1f:4a:b6:f0:
d6:1c:64:83:0c:d2:3e:2e:ae:bd:a2:2c:db:a6:2b:
cc:41:21:59:b4:b9:9f:94:18:cc:e6:c9:a2:14:c5:
21:41:60:2a:6b:f1:84:f2:30:c2:08:2e:ea:c6:fa:
d1:13:49:2f:48:19:6e:59:ba:70:a0:5b:83:40:b7:
db:84:42:78:02:9b:ef:a8:ba:9d:79:63:c7:35:40:
c4:60:f0:95:c1:f3:24:43:13:48:f6:5b:1c:f3:a5:
eb:2c:25:b9:fc:ae:71:a6:be:fa:bc:8e:a6:bf:d0:
fe:94:cc:64:e8:38:5e:ef:7c:e8:07:36:0b:65:6a:
ef:4e:bd:d4:a0:76:3b:c6:2b:4d:4b:35:ad:23:72:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:79:B1:91:4A:8D:6A:A7:E0:D1:1B:75:98:9B:0A:1F:D3:11:FB:D1
X509v3 Authority Key Identifier:
keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.140.169.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:cd:95:8e:7f:23:cc:09:80:a9:19:33:be:dc:b7:f3:47:0b:
89:1b:1e:74:f5:9f:c0:a8:07:9d:d4:70:f2:4b:9f:91:12:ea:
67:75:33:0c:7f:54:ba:fa:3b:f7:9b:32:3f:56:22:c1:ed:1d:
d9:93:0e:60:fe:c0:be:11:da:ba:62:d7:d2:66:04:fd:17:a5:
17:f2:21:8f:de:1d:38:1a:93:9f:cb:9e:c4:98:93:f4:41:0f:
4b:a5:4e:14:7d:bc:cb:25:eb:c9:75:ac:1f:26:18:7b:2f:ea:
fe:44:df:ff:d2:df:13:b7:07:77:86:af:fa:5c:23:b8:f7:77:
8e:94:82:a6:1e:48:07:44:6a:92:67:e9:f5:60:3a:25:9d:6c:
67:c0:d1:c4:82:1a:7a:23:10:76:87:ad:50:3f:e8:de:c9:0e:
e9:46:ce:28:ca:3d:1d:b8:d8:48:09:24:71:b7:f6:d3:ff:36:
88:df:41:18:2e:78:0c:78:7d:e2:4d:7c:5f:a0:f0:15:b5:0f:
5a:d9:b0:9d:34:13:02:aa:a5:47:21:da:2a:02:b2:4f:ce:08:
35:f7:51:0b:f6:b2:06:7f:5b:60:ef:2b:23:ce:00:2c:52:ab:
a1:82:b3:66:9c:1a:59:0a:ac:3f:e8:0f:23:ac:51:28:0e:ea:
24:e8:20:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:56:59 2025 by rpki-client