Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138312e302f32342d3234203d3e20313337333136.roa
File: 3131362e39302e3138312e302f32342d3234203d3e20313337333136.roa (raw, json)
Hash identifier: nPsfVfpj/6mym6s8DsS4dMnOOMfHROdq77GONBa8/CQ=
Subject key identifier: 72:03:D3:B7:82:AB:30:51:AE:FB:F0:9A:04:D5:27:23:D5:31:F1:5F
Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Certificate serial: 3B8A73DA1A806B4B2E1C272B9B7FEFE13B8A07CC
Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138312e302f32342d3234203d3e20313337333136.roa
Signing time: Fri 16 Aug 2024 14:00:01 +0000
ROA not before: Fri 16 Aug 2024 13:55:01 +0000
ROA not after: Fri 15 Aug 2025 14:00:01 +0000
asID: 137316
IP address blocks: 116.90.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:8a:73:da:1a:80:6b:4b:2e:1c:27:2b:9b:7f:ef:e1:3b:8a:07:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Validity
Not Before: Aug 16 13:55:01 2024 GMT
Not After : Aug 15 14:00:01 2025 GMT
Subject: CN=7203D3B782AB3051AEFBF09A04D52723D531F15F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:38:7a:2d:09:1d:ed:61:37:26:da:d8:ab:0e:
f2:f9:ce:05:f5:90:87:14:07:8c:3f:78:ee:db:83:
15:a3:8c:d7:3b:c9:7d:18:7f:62:8a:d5:b5:60:36:
ee:ed:23:7d:f0:c7:a4:da:f3:fd:65:85:72:79:cc:
ff:4f:cc:e5:13:8e:63:7f:42:d7:eb:71:27:6b:61:
fb:6e:e3:4d:8d:38:dc:1f:7c:b2:e4:27:eb:f2:04:
71:f2:a0:6b:69:d6:a8:99:f6:ce:19:11:4c:6d:c2:
f8:ba:dc:64:bd:59:b1:4e:0b:76:db:3d:d5:29:e3:
f0:df:8c:86:a2:54:54:c6:1f:91:ca:05:79:11:14:
d7:87:43:5f:ee:81:c9:6c:43:33:31:a1:da:01:e3:
a1:ec:46:ec:90:c5:b8:72:b2:e3:90:ee:ed:05:ff:
a9:f5:37:30:1e:65:50:36:cf:9b:24:3a:dd:19:db:
5e:11:e4:bd:af:f8:0d:b1:d4:f7:b5:29:e9:50:33:
e7:a8:76:71:f8:11:cd:ec:57:d7:20:5b:32:ac:4e:
5e:e5:80:98:ff:c7:c1:4e:42:18:df:75:48:79:05:
50:13:1a:b1:c3:d2:36:cb:a0:51:db:ed:58:29:49:
bc:40:85:12:a7:32:ce:f1:98:42:63:00:2f:80:b4:
48:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:03:D3:B7:82:AB:30:51:AE:FB:F0:9A:04:D5:27:23:D5:31:F1:5F
X509v3 Authority Key Identifier:
keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138312e302f32342d3234203d3e20313337333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.90.181.0/24
Signature Algorithm: sha256WithRSAEncryption
10:d0:f4:41:f1:3c:ae:a0:69:2c:d7:07:d5:34:18:b4:3f:88:
4b:28:c7:1e:15:4d:4c:87:ae:a5:7e:b5:ab:05:12:a2:79:a8:
9f:1f:b6:81:2d:26:7d:24:23:fd:dd:92:69:13:38:b6:36:42:
62:34:b7:6b:b7:d7:18:28:3f:d3:18:c8:d3:fa:ec:94:df:51:
60:c6:39:eb:94:a5:21:33:81:bd:23:a0:62:96:57:3a:30:94:
bf:38:d8:8d:0c:7e:38:a6:92:9f:17:de:3d:4a:a9:04:2f:19:
81:98:07:eb:e4:2e:c0:81:51:7b:8d:8c:ce:a6:28:cf:f0:7b:
46:17:a3:fa:25:b1:d0:0c:40:56:90:10:57:53:f2:bf:19:7a:
c3:2a:fb:03:d5:4e:83:a6:ac:af:6f:41:34:9e:7d:5a:ec:d2:
b3:13:04:f7:0c:50:39:e7:91:da:e0:8a:be:5e:3e:44:f7:20:
e0:29:65:07:53:79:08:4f:c0:c9:bf:28:d7:dc:5f:e6:c3:1b:
26:07:96:93:44:f2:ea:4d:d3:d5:f8:2c:8c:b1:77:38:5c:07:
00:c3:c2:c3:c9:85:a2:7f:c2:7a:06:d7:ee:4b:73:3c:c4:06:
d5:5b:19:d7:66:95:31:45:d4:15:c7:36:df:4b:18:f7:14:df:
59:b2:0d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:41 2025 by rpki-client