Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138322e302f32342d3234203d3e20313337333136.roa
File: 3131362e39302e3138322e302f32342d3234203d3e20313337333136.roa (raw, json)
Hash identifier: 2uRhH4bVvbR+/91NpfbsmpwHSYVAzxm1oYSgCbeBWYY=
Subject key identifier: D1:BB:FF:1B:3A:A1:73:B6:86:4B:EF:B8:78:CA:54:7B:0C:44:0E:40
Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Certificate serial: 38878739EE66C467ACC618C5E82205AAFE2553D9
Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138322e302f32342d3234203d3e20313337333136.roa
Signing time: Fri 16 Aug 2024 16:00:01 +0000
ROA not before: Fri 16 Aug 2024 15:55:01 +0000
ROA not after: Fri 15 Aug 2025 16:00:01 +0000
asID: 137316
IP address blocks: 116.90.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:87:87:39:ee:66:c4:67:ac:c6:18:c5:e8:22:05:aa:fe:25:53:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Validity
Not Before: Aug 16 15:55:01 2024 GMT
Not After : Aug 15 16:00:01 2025 GMT
Subject: CN=D1BBFF1B3AA173B6864BEFB878CA547B0C440E40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:2d:f6:48:85:29:64:35:99:66:e4:ce:5d:
01:cf:b9:d1:b2:52:c7:3a:41:c5:70:54:3f:2a:da:
32:9b:9e:2c:82:3c:3e:38:01:f4:06:e4:d8:43:27:
8b:95:db:8d:14:ff:52:f6:6f:30:e0:84:82:a4:f3:
2e:dd:39:23:9b:2b:06:29:f6:b4:d7:05:ca:4a:65:
2b:93:c9:99:ac:54:0f:de:57:f7:30:f1:c0:10:cd:
6c:80:ad:c1:5a:40:81:61:37:67:75:dc:2d:f4:af:
ee:a1:aa:38:95:74:9e:4e:b6:52:e8:44:10:2c:23:
4b:23:f6:f4:6d:75:dc:8b:64:ff:06:4c:6d:ea:5b:
56:9c:7a:03:a2:50:0d:b0:c8:0b:03:33:89:4f:e2:
66:40:99:15:e4:11:43:62:0f:a3:c8:5a:7d:5d:03:
9a:e4:1b:a4:95:b1:09:6a:d6:37:95:08:cf:5e:fc:
20:80:89:62:f6:b7:48:8f:1d:2a:ce:b6:e2:78:08:
3e:22:98:a9:c6:29:61:1c:0d:60:3a:09:99:ab:a0:
30:14:2d:ea:a4:31:47:6a:64:ef:c4:1f:32:41:a3:
eb:25:af:c9:85:6e:bd:be:72:39:84:f9:f4:a6:78:
3b:54:72:91:7e:24:45:42:32:df:a9:18:91:0a:7f:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BB:FF:1B:3A:A1:73:B6:86:4B:EF:B8:78:CA:54:7B:0C:44:0E:40
X509v3 Authority Key Identifier:
keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3131362e39302e3138322e302f32342d3234203d3e20313337333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.90.182.0/24
Signature Algorithm: sha256WithRSAEncryption
03:80:95:1d:38:a1:5e:a4:16:81:b5:fe:2c:f6:ee:8e:f1:0c:
6a:a6:7e:14:ec:51:ea:f4:5a:04:b3:5b:4f:ed:7f:ff:7e:7e:
c5:18:37:61:8f:c3:6f:f4:a9:d4:93:80:ae:3c:b7:b1:22:e4:
2c:f5:26:60:be:f2:d8:78:f4:11:0b:af:7c:c6:f7:ee:02:26:
89:a4:81:39:2d:b7:12:54:eb:0a:94:b3:a4:6d:0d:f7:cf:6d:
6e:00:84:38:26:55:98:d0:8f:0f:00:1e:41:34:85:a6:53:30:
34:3f:57:42:ff:50:27:68:10:68:80:cb:7f:da:38:a6:63:40:
7c:5a:63:7c:82:b4:66:25:cc:ce:d9:3c:66:06:9f:19:c8:99:
9b:05:7e:84:b4:bd:8b:61:eb:74:35:f9:2d:0d:43:65:ca:16:
07:df:97:34:8f:41:b2:6e:9f:ce:08:1d:b5:dd:03:40:43:4b:
ab:66:00:d1:53:2a:2c:69:12:92:a4:30:12:74:0c:58:94:d5:
22:91:ac:fa:69:ad:d9:a5:fc:1c:c2:eb:c9:00:5d:e0:f4:6a:
e9:9d:37:3e:38:b8:f2:b3:e5:61:e7:dd:0a:ba:9c:1e:14:ed:
f1:2d:e0:26:06:f9:3b:a8:94:fb:37:fe:ea:d9:75:57:b3:da:
ec:68:f7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:18 2025 by rpki-client