Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa
File: 3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa (raw, json)
Hash identifier: t3o5KGjpsLpuqXe+p8RMIhbFlMfTjypsGsI9H9/9kmQ=
Subject key identifier: 80:C7:03:7B:24:15:E0:95:1C:9A:95:4F:84:B4:E1:2B:C6:A4:97:7A
Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Certificate serial: 68AEE9159ADF2807E1DD5E4947CA42BDAF1C7965
Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa
Signing time: Fri 25 Oct 2024 05:01:30 +0000
ROA not before: Fri 25 Oct 2024 04:56:30 +0000
ROA not after: Fri 24 Oct 2025 05:01:30 +0000
asID: 63859
IP address blocks: 158.140.190.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:ae:e9:15:9a:df:28:07:e1:dd:5e:49:47:ca:42:bd:af:1c:79:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Validity
Not Before: Oct 25 04:56:30 2024 GMT
Not After : Oct 24 05:01:30 2025 GMT
Subject: CN=80C7037B2415E0951C9A954F84B4E12BC6A4977A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ee:12:93:d8:83:55:56:f2:96:5e:dc:34:8c:
b3:db:d1:23:46:ed:9e:db:e1:2c:53:dc:01:59:47:
12:d2:15:62:74:06:09:07:87:9a:4a:47:c1:84:96:
f2:a0:61:b2:66:a0:68:ac:30:8a:a5:38:1e:53:63:
1a:65:14:3b:27:4a:fb:87:50:10:d8:6b:19:e2:9f:
34:8a:ec:d7:16:ac:b4:7c:3a:99:4f:ee:fa:71:ce:
f4:c0:5a:5e:b7:c4:a9:4d:5a:63:da:2c:f9:07:b5:
58:40:cb:05:a4:83:7d:cc:fc:39:29:67:f9:f6:77:
b8:94:c6:e5:f9:76:a7:f1:75:2c:9c:66:55:99:3b:
4c:1f:3e:22:63:51:1b:80:2a:6c:be:e5:9f:08:56:
02:50:41:34:94:39:20:01:8f:2b:1b:5b:4f:11:84:
66:32:6f:db:8e:e5:30:75:48:7b:20:84:8b:b1:99:
e1:fa:b3:2c:87:65:e4:98:80:0e:f0:33:a1:2f:c0:
04:fb:e4:b9:be:b8:d4:e9:95:4f:c1:0d:27:e8:74:
c7:6c:3e:81:5f:48:c4:49:1c:86:e6:f8:e2:f0:d9:
af:a7:f3:f0:46:9e:52:c9:a0:83:fc:a7:17:13:46:
12:21:44:a1:85:19:b7:4f:4a:be:06:37:7d:a6:e9:
3d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C7:03:7B:24:15:E0:95:1C:9A:95:4F:84:B4:E1:2B:C6:A4:97:7A
X509v3 Authority Key Identifier:
keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.140.190.0/23
Signature Algorithm: sha256WithRSAEncryption
60:d8:fe:16:d0:01:d3:98:f5:2e:fe:b1:1a:b0:0e:b6:8f:7a:
e7:f8:14:df:26:28:6f:fb:7c:7d:ea:2c:b0:b0:bc:22:33:f9:
25:1d:51:13:b0:b4:31:75:f9:90:bb:d8:ef:bf:f0:52:29:a4:
23:41:1f:5e:d1:21:ef:60:ab:6a:55:27:d0:b8:34:59:e4:0c:
a4:76:99:62:57:2a:29:4a:f9:5e:66:a2:04:ef:07:50:39:01:
bd:86:ce:d7:04:30:41:43:f5:81:1c:5f:c4:c0:c5:42:c1:b6:
ec:59:6f:dc:a0:2e:42:12:5a:76:2e:4d:45:c8:38:f0:84:60:
79:f8:3f:fd:d6:f7:6f:7a:66:bf:78:cf:de:5d:68:e3:79:6d:
a7:46:96:03:f2:b6:5b:90:35:9d:c5:b4:bf:f9:dc:14:fb:34:
f7:c3:af:dd:c4:55:1c:4e:35:88:09:3f:d1:d2:9a:b2:61:e6:
ce:5e:40:92:19:a3:34:a4:84:07:9a:da:36:0b:6c:59:1a:80:
02:6e:d1:26:2c:00:a9:6d:6d:e6:86:0b:df:94:f9:82:8c:e9:
42:4b:95:98:e4:ba:c9:28:49:4a:20:93:e2:b0:37:eb:54:b2:
fa:4f:22:29:04:fd:12:9d:08:d9:a5:4e:b3:0d:a2:18:60:b5:
4d:e5:ff:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:03:57 2025 by rpki-client