Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa
File: 36362e39362e3233342e302f32342d3234203d3e203633383539.roa (raw, json)
Hash identifier: ToS9VJsezv+H6VydFounDKw2+BnD9HpXqOzfUjyhNRc=
Subject key identifier: 6E:DA:D6:67:98:1B:4B:B4:B3:30:98:27:9C:61:E5:53:14:87:07:FB
Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Certificate serial: 31C117C706F8D94410A62B7EE27F8D58A38606B1
Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa
Signing time: Sun 11 Aug 2024 11:00:05 +0000
ROA not before: Sun 11 Aug 2024 10:55:05 +0000
ROA not after: Sun 10 Aug 2025 11:00:05 +0000
asID: 63859
IP address blocks: 66.96.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:c1:17:c7:06:f8:d9:44:10:a6:2b:7e:e2:7f:8d:58:a3:86:06:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF
Validity
Not Before: Aug 11 10:55:05 2024 GMT
Not After : Aug 10 11:00:05 2025 GMT
Subject: CN=6EDAD667981B4BB4B33098279C61E553148707FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:cb:44:5d:1e:7d:36:6c:ed:75:62:7e:02:
60:dc:e2:a7:1a:5d:13:37:7a:ca:be:ce:5b:36:4a:
c8:45:e9:0a:b3:19:c4:62:52:cf:f6:c3:3d:b3:3d:
05:24:8e:a5:76:d9:ef:e9:0b:5c:ab:63:91:78:9d:
21:44:f7:9d:04:c8:75:8d:39:24:4a:87:cb:6a:8b:
c4:d5:58:a0:3e:75:88:22:2a:ea:53:d5:34:3e:d0:
16:81:c5:d4:74:27:71:a9:d7:7e:4b:73:f0:0c:49:
15:7a:af:dd:64:c6:42:77:ad:fa:28:26:4b:28:d4:
be:03:f8:47:73:76:02:37:74:c4:17:47:9d:b4:f3:
97:3a:d1:76:40:75:96:46:c9:d4:e2:b3:f8:14:23:
ce:71:26:37:17:af:ba:eb:b6:d6:5b:6c:d4:20:37:
9c:43:e4:34:1d:ff:be:6b:67:e3:39:98:f0:57:0b:
1a:0b:f4:73:91:73:c2:02:c0:e1:4b:0d:cf:bd:6e:
1d:8c:bb:60:82:b7:62:0a:89:b1:12:c2:75:75:77:
ed:b8:40:40:c7:58:db:8b:1c:ed:93:17:3f:be:af:
d0:1c:05:28:65:f6:87:7f:23:0e:c6:b5:0c:de:0d:
bc:94:e7:c4:e1:92:9c:e9:c2:91:1b:1c:aa:95:8d:
b6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:DA:D6:67:98:1B:4B:B4:B3:30:98:27:9C:61:E5:53:14:87:07:FB
X509v3 Authority Key Identifier:
keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.96.234.0/24
Signature Algorithm: sha256WithRSAEncryption
08:51:c3:c7:75:e4:b2:62:1d:63:31:9d:8d:7a:76:db:88:f8:
46:24:ee:1b:46:f1:f5:5b:46:22:cf:b5:f1:40:87:99:11:65:
b5:68:0d:0a:32:98:eb:ad:1b:80:de:43:77:46:a5:3b:bd:88:
90:f0:d9:a0:50:e1:ec:41:21:82:41:5e:3d:76:41:83:cf:eb:
b3:d3:9f:5d:3e:f9:08:10:bc:5a:93:13:0f:d6:e5:fb:b5:90:
e6:60:07:63:7b:76:7a:c2:b0:f1:36:5c:b1:c1:7b:b6:40:71:
9f:ef:b4:b7:37:d5:81:6c:a8:f7:d8:97:ef:30:4e:95:69:e6:
b9:f1:06:26:50:47:00:2d:9d:ed:0c:f2:3e:fe:2d:cb:3a:38:
61:ee:5e:c9:22:03:d9:9a:2f:76:46:5a:ed:08:c1:9e:67:5c:
5e:ec:97:01:a3:2e:b0:26:9f:ca:88:e8:fc:8d:8d:70:13:56:
83:94:cb:3b:2b:96:05:e5:83:aa:c8:47:e3:87:f2:3c:23:61:
60:b9:65:47:b3:c5:96:3b:3c:fe:71:cf:90:62:97:ce:08:0b:
8c:ca:de:5a:c8:df:39:98:fd:b8:d1:f8:0e:c0:02:65:7f:dc:
da:07:ac:c5:06:00:0c:14:e6:15:c9:f6:1a:1f:72:07:40:a5:
02:f5:1c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:48:57 2025 by rpki-client