Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa
File: 34392e3135362e35372e302f32342d3234203d3e203535363637.roa (raw, json)
Hash identifier: SjmKWLBiEMFhWXiRMo2sqEynUyemXFh8rKM/uEFt5LQ=
Subject key identifier: C3:3F:1C:A2:48:15:83:47:AA:A3:79:D3:A0:FD:4F:47:08:C2:74:1C
Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060
Certificate serial: 4157ABE4E926E935373361C3C47F18553A486B3A
Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa
Signing time: Thu 03 Oct 2024 08:03:06 +0000
ROA not before: Thu 03 Oct 2024 07:58:06 +0000
ROA not after: Thu 02 Oct 2025 08:03:06 +0000
asID: 55667
IP address blocks: 49.156.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:57:ab:e4:e9:26:e9:35:37:33:61:c3:c4:7f:18:55:3a:48:6b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060
Validity
Not Before: Oct 3 07:58:06 2024 GMT
Not After : Oct 2 08:03:06 2025 GMT
Subject: CN=C33F1CA248158347AAA379D3A0FD4F4708C2741C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6e:28:01:0e:8f:27:0c:e7:03:8b:3d:54:b3:
46:0e:a9:71:11:7f:5e:36:7c:89:2c:c5:0d:14:88:
9d:4f:12:f9:7d:7e:e0:40:72:49:cb:d1:45:eb:65:
01:79:96:2e:99:c2:28:d5:5a:a0:a7:d3:07:d3:5f:
20:e0:87:41:95:82:c0:79:13:bb:92:8b:2d:de:40:
26:ba:cf:c0:3f:67:be:06:56:55:2f:48:16:31:e8:
8d:dc:ce:07:3a:bc:7e:6f:aa:99:de:3c:8c:b4:b0:
63:93:a2:c1:82:00:cd:4c:f8:ea:98:3b:33:7b:37:
98:eb:e3:e2:cd:6a:08:58:93:7a:6e:2c:9e:02:2f:
77:f1:1a:1f:9e:5d:27:af:85:53:ef:9c:fd:4c:02:
3a:e6:56:86:37:6a:4f:e3:04:81:8f:69:61:68:de:
f8:14:de:17:7b:ea:06:88:a6:d9:07:94:26:0e:8e:
08:35:7f:da:1a:ef:d0:71:d5:d6:7e:d4:79:b5:f4:
51:ef:4b:20:f7:9d:f7:1b:73:ff:61:c4:4b:c2:47:
a5:99:d3:a4:97:9e:a4:33:3a:38:8b:eb:5e:69:f0:
c9:7a:bd:43:ff:6d:2a:7f:80:ae:ba:9f:fb:8d:28:
60:df:15:67:ab:75:d2:9b:e3:27:ce:e5:fa:b8:68:
2a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3F:1C:A2:48:15:83:47:AA:A3:79:D3:A0:FD:4F:47:08:C2:74:1C
X509v3 Authority Key Identifier:
keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e35372e302f32342d3234203d3e203535363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.156.57.0/24
Signature Algorithm: sha256WithRSAEncryption
27:01:76:94:a1:05:a5:25:12:88:b6:2e:2d:7f:03:30:f2:25:
e2:44:ab:d6:eb:66:40:65:0c:4a:d8:9e:3e:9c:0b:5b:2e:d3:
cb:2e:2b:84:09:31:e0:4b:95:a3:c9:06:72:1f:8b:3f:a4:56:
d2:f8:19:6d:38:15:1b:62:a8:3b:35:30:e9:d7:c0:ab:8c:ae:
82:30:f8:14:1c:e6:3d:0f:c5:1a:77:3b:05:f5:ad:95:35:01:
f7:05:1f:a4:d5:9b:99:dd:36:e0:8b:fa:ab:24:7e:3d:8e:aa:
d5:68:70:36:ad:8b:84:06:ee:f4:5c:b3:2b:69:48:49:99:27:
4a:2c:71:26:ff:93:38:ab:ed:cb:67:97:64:45:33:43:e7:95:
9f:b4:76:0c:fd:35:aa:41:54:68:96:5f:4b:ab:c4:a7:c4:e7:
bd:93:d1:61:29:e8:43:e1:e8:95:f9:12:0a:bb:f4:37:57:5a:
a3:16:7d:47:67:fa:5a:0c:62:76:f3:61:b8:2d:c2:c9:bb:02:
d6:ed:aa:0f:78:14:22:b8:63:70:0b:f9:53:11:65:90:4d:9a:
3d:b7:47:9e:20:07:32:8a:d4:89:d8:0d:b2:d2:ce:72:34:ae:
f2:e5:b8:dd:64:ae:c3:7b:b9:3e:00:52:a8:c2:67:ec:a0:33:
63:97:7c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:26 2025 by rpki-client