Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa
File: 34392e3135362e36302e302f32342d3234203d3e203535363637.roa (raw, json)
Hash identifier: 5nBpHkwL82Gi9NUGyKestOksjx7zZUbyEsgUlUqCAVE=
Subject key identifier: B8:E4:22:78:4C:5B:28:53:CD:4D:33:88:EA:46:3A:B3:F0:79:50:79
Certificate issuer: /CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060
Certificate serial: 5A70B134A43CBDB23C6B5CE3A26C540F5006654D
Authority key identifier: 5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa
Signing time: Thu 03 Oct 2024 08:03:06 +0000
ROA not before: Thu 03 Oct 2024 07:58:06 +0000
ROA not after: Thu 02 Oct 2025 08:03:06 +0000
asID: 55667
IP address blocks: 49.156.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:70:b1:34:a4:3c:bd:b2:3c:6b:5c:e3:a2:6c:54:0f:50:06:65:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060
Validity
Not Before: Oct 3 07:58:06 2024 GMT
Not After : Oct 2 08:03:06 2025 GMT
Subject: CN=B8E422784C5B2853CD4D3388EA463AB3F0795079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4f:8f:70:06:0a:a9:37:84:a2:d5:72:16:25:
1b:00:03:33:82:71:46:bf:e6:4f:6c:ac:45:fd:fa:
b8:4b:e7:a9:46:2c:65:27:2e:81:6c:6d:b3:7d:2b:
a5:8f:c2:c0:33:a1:24:12:6b:d6:66:15:0a:00:f2:
f8:38:3b:b4:82:b6:52:13:b8:02:0f:1f:cb:bf:0f:
9d:8f:45:dc:cd:7d:43:5c:c2:fb:b4:ad:0c:d6:99:
29:4a:54:5a:a1:73:70:e7:fc:b8:5d:66:1d:f5:43:
4c:65:12:56:c5:2a:c5:69:af:c1:c1:53:a0:56:df:
c6:24:5a:a0:5b:c7:ec:73:0f:ee:6d:2a:1a:00:24:
2c:b5:02:6a:15:ac:17:1c:c8:c2:c9:1b:46:cc:80:
ce:85:c5:b6:56:68:c9:e5:4c:e3:d7:e1:1d:cf:bc:
8d:41:71:66:ec:d8:52:9b:4b:c2:45:e0:b4:1c:e9:
b8:54:00:33:58:43:fb:57:c2:5a:32:59:c7:e1:61:
b5:8b:a7:61:69:ab:b4:6d:7f:8d:4a:c5:76:2b:25:
36:c7:99:fe:46:4f:9f:54:fe:b3:f0:f1:1b:61:76:
e4:d0:1b:11:f9:bf:35:92:81:8c:44:ef:36:eb:2a:
56:ce:32:c4:8f:c3:69:96:7d:9f:0c:0c:da:a5:68:
66:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E4:22:78:4C:5B:28:53:CD:4D:33:88:EA:46:3A:B3:F0:79:50:79
X509v3 Authority Key Identifier:
keyid:5D:DD:CC:DF:3A:FC:49:2F:6C:C4:87:1D:60:72:A5:AF:A9:73:A0:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DDDCCDF3AFC492F6CC4871D6072A5AFA973A060.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6206cf50-a3d1-4cc9-9260-987b2ca0c927/0/34392e3135362e36302e302f32342d3234203d3e203535363637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.156.60.0/24
Signature Algorithm: sha256WithRSAEncryption
86:bf:e6:d9:09:89:80:68:06:fa:df:2c:04:f3:58:ce:55:60:
65:f7:e7:55:8c:f5:12:06:75:c5:02:45:4e:83:b5:50:b6:87:
be:74:93:24:47:17:e0:31:a1:d7:8f:fd:b1:96:9b:6f:9d:cb:
8d:04:67:c4:49:f9:e0:f4:21:4e:bd:9c:f4:dd:ab:50:a9:42:
00:55:f1:67:39:62:57:76:e4:7d:d3:74:68:db:f1:8c:dd:27:
f7:11:33:e3:55:09:e9:6e:a8:48:d9:59:ed:7b:0c:65:34:1d:
14:45:60:78:65:4b:c4:b6:39:87:ff:5c:94:3f:70:3a:ca:7a:
cd:22:79:6c:d3:90:c1:6e:89:f4:62:76:06:74:57:4e:85:93:
23:48:13:ce:ee:7f:85:60:6d:16:74:a2:69:0a:aa:05:6e:ee:
b6:80:60:30:99:d0:17:f0:ac:3c:50:6d:14:59:cb:d1:3c:09:
13:75:a4:d5:8e:67:bd:c6:0b:4a:bf:aa:8b:a2:e2:e1:7e:8f:
c8:8c:ba:df:bb:68:52:d2:e4:5c:96:c9:68:af:61:d6:7a:3f:
cf:71:f5:d5:73:c6:97:46:93:dd:62:66:e1:09:d8:5d:61:34:
02:0f:19:c1:f3:b9:a3:8b:bc:4f:e8:cf:63:f5:00:81:e3:82:
4b:d1:f4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:28 2025 by rpki-client