Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/3135372e31352e37372e302f32342d3234203d3e20313338313331.roa
File: 3135372e31352e37372e302f32342d3234203d3e20313338313331.roa (raw, json)
Hash identifier: JkcKtcV//LYqaw+9zrmVkPhDbatpI5ildpclS3nEbmQ=
Subject key identifier: F7:AA:4E:12:35:40:38:9C:D4:D0:1A:99:38:1D:15:49:E8:91:FD:89
Certificate issuer: /CN=065943D1744CF4841A6D3D50944D2A4DB537A128
Certificate serial: 700558C9DC09BFE19AC2A178003327AB9D163ABD
Authority key identifier: 06:59:43:D1:74:4C:F4:84:1A:6D:3D:50:94:4D:2A:4D:B5:37:A1:28
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/065943D1744CF4841A6D3D50944D2A4DB537A128.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/3135372e31352e37372e302f32342d3234203d3e20313338313331.roa
Signing time: Mon 20 Jan 2025 03:00:02 +0000
ROA not before: Mon 20 Jan 2025 02:55:02 +0000
ROA not after: Mon 19 Jan 2026 03:00:02 +0000
asID: 138131
IP address blocks: 157.15.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:05:58:c9:dc:09:bf:e1:9a:c2:a1:78:00:33:27:ab:9d:16:3a:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=065943D1744CF4841A6D3D50944D2A4DB537A128
Validity
Not Before: Jan 20 02:55:02 2025 GMT
Not After : Jan 19 03:00:02 2026 GMT
Subject: CN=F7AA4E123540389CD4D01A99381D1549E891FD89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:73:6d:bb:40:17:93:17:f3:7a:8f:b9:18:91:
5a:64:9f:4b:67:95:d8:d2:c7:9a:97:fd:4c:01:4e:
fe:0a:62:b5:1a:2f:3d:40:1f:39:93:65:01:65:ba:
2e:d3:77:9d:26:da:ed:54:99:48:bd:0c:29:d8:28:
9a:a2:c1:54:1c:9d:09:bb:57:19:01:ce:1d:9a:b7:
62:cd:81:93:d6:12:cc:ae:14:dd:75:56:76:2b:b6:
47:4b:e3:d6:d1:04:8f:f6:ae:b3:ff:7e:77:16:8b:
ad:76:ca:92:57:58:8c:48:05:02:e7:61:44:76:03:
cd:37:14:10:6a:fe:01:34:cb:33:88:a3:89:c0:fd:
89:13:cc:37:8f:7a:1e:52:10:c2:40:e1:c9:52:ca:
23:e3:89:81:11:b6:25:da:2b:11:ec:c5:d0:25:f7:
5e:3e:9f:b3:b2:26:3c:05:33:f2:e6:51:9e:63:82:
12:23:7c:80:2b:7c:bc:ee:45:56:da:ca:be:31:b8:
dc:bc:82:5c:8a:38:7c:79:c6:72:61:1b:93:1a:d6:
71:71:93:89:ab:5f:a6:b1:7d:58:71:e0:03:73:fd:
84:7e:14:0f:6b:ea:0e:e3:f1:70:41:84:5c:b6:fc:
f3:1e:4e:38:3a:14:c7:36:48:50:e2:c3:e8:c4:23:
75:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AA:4E:12:35:40:38:9C:D4:D0:1A:99:38:1D:15:49:E8:91:FD:89
X509v3 Authority Key Identifier:
keyid:06:59:43:D1:74:4C:F4:84:1A:6D:3D:50:94:4D:2A:4D:B5:37:A1:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/065943D1744CF4841A6D3D50944D2A4DB537A128.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/065943D1744CF4841A6D3D50944D2A4DB537A128.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/3135372e31352e37372e302f32342d3234203d3e20313338313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.77.0/24
Signature Algorithm: sha256WithRSAEncryption
51:47:54:57:d2:1c:b5:0d:98:f4:e7:fd:4a:8c:f7:1b:1f:68:
d9:4f:40:65:8d:a2:1f:38:b5:b3:1e:0c:a5:01:6f:fd:17:e6:
9c:33:c7:a3:2b:23:b1:91:8d:e3:34:e7:79:27:d4:44:4b:33:
de:eb:d6:0f:0f:26:76:7f:96:ba:ac:90:27:e0:c2:85:7d:bf:
c2:e1:b1:69:0c:7c:04:77:fe:6e:9f:3c:fe:a1:19:3b:b9:9e:
5b:8e:d4:62:68:b5:bc:83:48:c3:6f:5e:6e:34:4b:89:0a:5e:
7f:3f:86:5b:6c:9a:59:41:82:85:0a:82:97:51:a1:43:fd:e3:
27:69:8e:1d:93:ac:59:95:b4:51:8d:67:a0:72:72:1c:e0:b4:
b7:0a:e3:54:29:2f:67:0b:7a:43:03:8a:2f:e0:c2:e9:d5:89:
bf:65:a9:88:4c:a8:5a:a5:d4:89:65:db:72:09:b7:1c:45:3e:
1a:78:54:bd:0f:56:cd:3c:d8:c9:95:47:25:37:bd:d1:24:42:
73:04:2f:7b:ca:73:ab:07:50:68:92:72:fa:c1:95:f1:a4:bd:
b2:cc:07:f1:5e:68:eb:0f:98:6b:85:af:71:5b:6d:89:6d:d6:
eb:60:87:6b:a0:ba:c2:86:78:c6:11:c7:46:9b:a5:cb:0d:17:
d2:7c:bb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:00:46 2025 by rpki-client