Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa
File: 3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa (raw, json)
Hash identifier: hOlyHuu2wphYhBJDocKFWHEZrEGEanCNnjs4wR5XHPw=
Subject key identifier: 1A:1A:CC:92:17:AD:37:D8:D0:03:B5:30:3C:7F:09:42:2B:C6:1D:B7
Certificate issuer: /CN=405E466852C38FD4CD20BA6115840947D5D24F5D
Certificate serial: 764F2E7A3A55DF348A5B91FFDDB2CC60BC04FB5F
Authority key identifier: 40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa
Signing time: Thu 15 Aug 2024 07:51:21 +0000
ROA not before: Thu 15 Aug 2024 07:46:21 +0000
ROA not after: Thu 14 Aug 2025 07:51:21 +0000
asID: 153108
IP address blocks: 160.25.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:4f:2e:7a:3a:55:df:34:8a:5b:91:ff:dd:b2:cc:60:bc:04:fb:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405E466852C38FD4CD20BA6115840947D5D24F5D
Validity
Not Before: Aug 15 07:46:21 2024 GMT
Not After : Aug 14 07:51:21 2025 GMT
Subject: CN=1A1ACC9217AD37D8D003B5303C7F09422BC61DB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0c:3e:57:c2:c9:1a:ee:99:d1:b1:1a:22:d4:
5b:20:17:08:7e:9d:ba:55:47:e5:a9:9b:da:52:a4:
16:c0:35:d9:ce:6c:5b:fd:64:b0:f9:ab:9b:ec:5b:
2d:91:b7:20:2d:bb:60:bc:bb:36:01:9f:a4:d0:30:
66:52:b4:5d:9d:fa:b6:fd:8c:89:21:c6:ca:17:78:
2e:fe:b3:80:b5:6c:82:80:07:fb:aa:3c:0b:01:e3:
0d:67:03:5b:38:65:15:ce:bd:d6:13:b7:d3:58:6c:
b0:a6:84:36:54:eb:ff:7d:7e:7f:ba:c8:0d:89:a9:
61:cc:31:93:6d:b0:a4:45:7f:45:58:a9:82:28:69:
40:ce:b9:b8:95:c9:ab:3f:40:a9:07:37:b5:6b:59:
dc:6d:56:98:35:cc:5c:10:b4:3f:be:29:70:b4:42:
78:ac:56:65:db:0a:b2:9f:c1:17:75:e8:1a:34:4c:
12:27:57:1a:6a:88:4a:e4:f5:36:ec:88:47:53:32:
2e:24:9b:fc:97:ff:25:5b:f9:dc:a0:df:f9:c8:a7:
62:c0:2f:e6:59:43:5d:ae:23:e6:bb:d9:b6:1a:14:
cb:c3:e3:52:93:16:6e:7e:d4:bb:f7:ac:0c:e4:19:
c4:4d:b4:ba:8b:0a:c6:58:5a:d1:d3:01:85:40:1a:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1A:CC:92:17:AD:37:D8:D0:03:B5:30:3C:7F:09:42:2B:C6:1D:B7
X509v3 Authority Key Identifier:
keyid:40:5E:46:68:52:C3:8F:D4:CD:20:BA:61:15:84:09:47:D5:D2:4F:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/405E466852C38FD4CD20BA6115840947D5D24F5D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/405E466852C38FD4CD20BA6115840947D5D24F5D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ac6155e-2d2f-4f9e-b218-eb525b3a1119/0/3136302e32352e3230332e302f32342d3234203d3e20313533313038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.203.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a0:c6:49:04:94:37:18:39:4c:0c:52:62:c0:28:b1:f6:5a:
65:05:50:85:4c:b1:5e:42:26:88:7f:d2:0b:b0:3c:0b:9e:40:
f2:63:05:fe:6b:ab:d7:22:57:ad:51:0d:04:64:b1:5e:1e:30:
8b:25:08:ee:35:05:c1:1e:7f:32:79:34:f0:f3:bf:89:9f:92:
c6:6c:56:b9:6e:0e:94:0b:ac:ce:ac:60:45:63:70:fb:17:a9:
83:70:9a:7b:36:5f:c4:50:2f:63:c5:0c:25:eb:f3:c1:73:d5:
97:5e:90:9e:83:7e:3a:42:b7:8a:51:29:53:93:89:f3:f8:55:
77:45:f1:46:8d:e6:c7:98:75:d6:e0:53:d4:81:50:60:41:9c:
5f:d0:cc:e9:cb:ae:b1:92:41:3a:7a:bf:9b:c7:15:fa:65:9e:
24:14:78:e0:19:99:f1:97:c0:38:9f:28:81:f6:a1:04:35:f6:
6e:1e:41:1c:90:d5:1a:86:77:dc:66:c2:06:bd:8a:94:00:85:
10:37:e3:a5:a2:ae:b5:6d:3d:f3:a2:bf:7f:2a:d0:9c:ab:9b:
59:3d:78:24:38:e7:23:42:13:72:56:1d:19:74:4d:a7:70:eb:
6e:1b:d0:e7:81:ca:67:08:44:5a:15:78:b2:73:86:ed:7c:63:
af:4f:c6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:47:03 2025 by rpki-client