Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json)
Hash identifier: fCmuv22JKcQw5T0X5AWh4BcOe/zqqe61bniHVwvlRMM=
Subject key identifier: 8A:0B:39:3D:C8:3B:E2:C3:4D:75:15:D5:58:D3:2F:62:67:9E:AB:BD
Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255
Certificate serial: 343ABA9BE2F51C0E78AB3A54FE2B8265F125D4BA
Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
Signing time: Thu 12 Dec 2024 04:00:06 +0000
ROA not before: Thu 12 Dec 2024 03:55:06 +0000
ROA not after: Thu 11 Dec 2025 04:00:06 +0000
asID: 152082
IP address blocks: 157.10.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:3a:ba:9b:e2:f5:1c:0e:78:ab:3a:54:fe:2b:82:65:f1:25:d4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255
Validity
Not Before: Dec 12 03:55:06 2024 GMT
Not After : Dec 11 04:00:06 2025 GMT
Subject: CN=8A0B393DC83BE2C34D7515D558D32F62679EABBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9b:b9:c6:ca:86:99:f0:ec:da:20:93:4f:0c:
36:3c:7e:c4:4a:8d:54:3e:32:bc:f1:c3:23:4d:50:
9a:b8:d9:54:80:6c:ff:61:d2:db:04:0f:b1:9d:9c:
a9:b6:29:2b:25:10:5a:34:24:25:9f:d7:d4:72:79:
0b:6b:f1:7a:58:a3:4a:ea:6d:73:04:7d:5b:26:f0:
d0:46:fd:7d:04:6c:00:b1:ba:cd:78:4b:3e:f0:1e:
72:74:11:70:b9:6a:b0:fc:3b:5f:88:2e:f5:dd:2f:
fc:ec:3c:b7:98:4e:30:35:c4:63:3f:ae:98:32:4c:
37:ab:5f:de:b5:82:01:10:4b:ea:2a:e2:7e:76:3b:
f9:7b:dd:17:1a:80:40:f4:a5:49:41:3e:0b:af:d5:
04:cb:79:33:5b:00:09:fc:f1:9a:c5:6e:5d:67:04:
a6:ea:1a:6d:a1:c5:4b:ad:2b:ac:e3:d6:a3:11:2b:
88:bb:2c:85:dc:15:01:56:9b:ae:fb:8f:fd:29:e4:
60:c6:7e:98:14:c4:f8:35:47:5f:e1:c1:e4:f6:b0:
bb:d9:ff:07:4a:3d:d5:d3:37:e2:63:26:46:74:07:
6a:fe:c8:06:9f:b9:90:f2:85:89:5d:e1:df:0d:76:
2b:1a:9a:90:f0:2c:b5:f8:c5:b6:e5:cf:28:47:48:
ad:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:0B:39:3D:C8:3B:E2:C3:4D:75:15:D5:58:D3:2F:62:67:9E:AB:BD
X509v3 Authority Key Identifier:
keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.88.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:0b:3a:c7:1e:26:88:89:c1:0a:f9:24:2a:87:69:95:8f:a5:
06:51:5a:bb:bb:66:27:2e:7a:67:b4:47:63:8c:ab:7a:39:28:
09:fd:db:d9:b0:41:34:91:bb:52:12:bb:0c:07:3f:a9:13:8d:
b5:61:23:14:87:c2:5f:82:cb:eb:9b:f8:52:df:3e:17:17:4b:
c8:bf:34:43:7a:33:fe:fd:75:97:9d:35:13:f4:e6:89:0e:ec:
a5:c6:96:30:3f:ca:4e:88:6a:b4:71:d3:d0:65:1a:b4:70:3a:
d4:b2:72:a8:46:41:8d:e3:eb:cc:7e:a1:c8:35:b1:96:6b:32:
1a:30:60:f7:8d:4a:b8:c2:69:ce:32:36:fb:27:03:86:1d:39:
b8:fc:b0:b4:39:b9:b3:01:5f:51:6d:74:8c:ef:a8:a3:d1:9d:
20:3f:ab:94:af:95:97:bf:34:ab:9c:08:52:3d:6d:10:33:b9:
12:21:42:c0:a1:10:01:7e:ba:4f:f6:bc:dd:f5:67:6f:72:bf:
88:01:b7:36:ae:06:05:19:b1:05:72:8f:e1:fd:ca:79:ed:8a:
2d:2b:c9:7d:8e:d3:28:c3:ff:4b:b5:f1:b6:34:55:2c:c0:01:
9f:35:0d:51:48:43:92:18:4a:0c:08:1b:d5:66:a3:b4:07:61:
b2:73:41:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:26:51 2025 by rpki-client