Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa
File: 3131372e35332e34342e302f32322d3234203d3e203538333937.roa (raw, json)
Hash identifier: Kxj5n3XmBYqwY5xNhQm1hyvdBhggzR17lr3rokbc1x4=
Subject key identifier: 59:BC:53:05:9D:EA:D1:04:95:CA:5A:99:09:C6:A6:22:D0:6A:98:18
Certificate issuer: /CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24
Certificate serial: 785C57D054C2DD0175101749F865ED1F3788053C
Authority key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa
Signing time: Fri 08 Nov 2024 23:00:02 +0000
ROA not before: Fri 08 Nov 2024 22:55:02 +0000
ROA not after: Fri 07 Nov 2025 23:00:02 +0000
asID: 58397
IP address blocks: 117.53.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:5c:57:d0:54:c2:dd:01:75:10:17:49:f8:65:ed:1f:37:88:05:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24
Validity
Not Before: Nov 8 22:55:02 2024 GMT
Not After : Nov 7 23:00:02 2025 GMT
Subject: CN=59BC53059DEAD10495CA5A9909C6A622D06A9818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8b:3d:54:a8:49:2e:1c:f0:05:f2:ac:18:8b:
92:53:df:b2:24:8c:81:80:34:a5:d5:b4:20:97:84:
b5:db:24:4e:1d:9b:6a:5f:d1:75:de:c6:97:13:cb:
e9:18:98:b8:a8:f4:5e:0d:92:89:1f:74:9a:f6:60:
80:f3:3c:5c:94:23:cb:f8:93:7b:19:4a:c8:e3:75:
ff:3b:d7:a4:dc:31:11:dd:d3:f9:89:58:62:54:c1:
56:05:a2:28:42:53:0d:1f:f7:30:b7:3a:32:38:e2:
c5:cb:d1:50:09:68:b1:45:2c:5d:9d:6f:6a:12:23:
b8:6d:33:dd:cb:79:1d:b3:e7:12:f1:36:8f:70:46:
04:83:80:61:7d:e2:51:26:7e:59:45:95:da:17:fd:
3d:bd:9b:af:53:bb:e6:3f:98:aa:bd:0e:b9:ea:b3:
b9:73:d5:6b:0f:11:6f:8e:cc:0d:66:a5:b7:a1:6f:
69:a5:3c:49:31:3b:4e:a4:49:66:c5:8a:8e:3b:10:
51:ab:08:e7:38:61:ee:bd:2f:a9:08:08:16:f5:70:
12:f7:b5:b3:10:6b:89:9b:91:32:37:8a:f4:38:c0:
79:aa:42:b3:98:82:d1:84:c7:93:48:63:74:a7:aa:
4d:f5:af:e0:05:85:7b:b8:f3:67:00:7b:3a:68:25:
85:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:BC:53:05:9D:EA:D1:04:95:CA:5A:99:09:C6:A6:22:D0:6A:98:18
X509v3 Authority Key Identifier:
keyid:57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/3131372e35332e34342e302f32322d3234203d3e203538333937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.53.44.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:48:e8:c5:20:58:a7:e6:22:17:e7:78:ee:ab:da:51:87:cf:
32:8e:82:ea:de:78:bc:86:e5:ae:f6:ca:04:e0:05:23:b8:6e:
95:93:96:90:72:61:02:bb:06:1b:a7:ed:9d:52:69:24:a6:ec:
e6:07:79:08:e1:07:e4:87:08:7e:a3:d2:68:ad:4f:4a:a4:2e:
15:fd:8e:af:dc:ab:51:5d:38:08:ba:99:a2:b9:6b:8f:00:cb:
a9:d9:d0:a5:26:ae:51:e2:0f:75:54:7a:ac:b2:00:24:a9:6b:
46:25:23:42:fd:7f:20:3a:97:53:01:e1:0d:3b:dd:9c:43:65:
70:37:67:d1:07:aa:94:f7:bc:43:13:13:91:4b:ff:5e:6d:a3:
d2:73:94:f4:86:b5:35:9e:40:52:78:63:08:de:45:91:6e:56:
2c:4a:af:17:1c:64:4d:fa:dd:91:c9:eb:cf:00:ed:a3:13:ab:
3d:93:3f:cb:13:74:e1:75:69:47:11:18:72:c4:fe:5b:80:da:
c5:3e:3c:87:8b:2e:2b:89:6f:cf:b0:be:11:1e:c4:8e:41:8a:
f4:91:b1:d0:03:54:27:ec:fb:b5:bf:33:74:bb:87:53:ee:b5:
07:4a:e6:be:6b:3e:42:a3:96:63:73:1d:f3:10:21:6a:d0:53:
24:cb:4b:65
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUeFxX0FTC3QF1EBdJ+GXtHzeIBTwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNE
NkY2MEUyNDAeFw0yNDExMDgyMjU1MDJaFw0yNTExMDcyMzAwMDJaMDMxMTAvBgNV
BAMTKDU5QkM1MzA1OURFQUQxMDQ5NUNBNUE5OTA5QzZBNjIyRDA2QTk4MTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDziz1UqEkuHPAF8qwYi5JT37Ik
jIGANKXVtCCXhLXbJE4dm2pf0XXexpcTy+kYmLio9F4NkokfdJr2YIDzPFyUI8v4
k3sZSsjjdf8716TcMRHd0/mJWGJUwVYFoihCUw0f9zC3OjI44sXL0VAJaLFFLF2d
b2oSI7htM93LeR2z5xLxNo9wRgSDgGF94lEmfllFldoX/T29m69Tu+Y/mKq9Drnq
s7lz1WsPEW+OzA1mpbehb2mlPEkxO06kSWbFio47EFGrCOc4Ye69L6kICBb1cBL3
tbMQa4mbkTI3ivQ4wHmqQrOYgtGEx5NIY3Snqk31r+AFhXu482cAezpoJYVZAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUWbxTBZ3q0QSVylqZCcamItBqmBgwHwYDVR0j
BBgwFoAUV9S4JprdpGDo95JdCqEm7Nb2DiQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMC81N0Q0QjgyNjlB
RERBNDYwRThGNzkyNUQwQUExMjZFQ0Q2RjYwRTI0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTdENEI4MjY5QUREQTQ2MEU4Rjc5MjVEMEFBMTI2RUNENkY2
MEUyNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2LWEyNDYtNGQxOC1i
ZTg2LWY0NjFkOGY1NTljOC8wLzMxMzEzNzJlMzUzMzJlMzQzNDJlMzAyZjMyMzIy
ZDMyMzQyMDNkM2UyMDM1MzgzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ1NSwwDQYJKoZIhvcN
AQELBQADggEBAI1I6MUgWKfmIhfneO6r2lGHzzKOgureeLyG5a72ygTgBSO4bpWT
lpByYQK7Bhun7Z1SaSSm7OYHeQjhB+SHCH6j0mitT0qkLhX9jq/cq1FdOAi6maK5
a48Ay6nZ0KUmrlHiD3VUeqyyACSpa0YlI0L9fyA6l1MB4Q073ZxDZXA3Z9EHqpT3
vEMTE5FL/15to9JzlPSGtTWeQFJ4YwjeRZFuVixKrxccZE363ZHJ688A7aMTqz2T
P8sTdOF1aUcRGHLE/luA2sU+PIeLLiuJb8+wvhEexI5BivSRsdADVCfs+7W/M3S7
h1PutQdK5r5rPkKjlmNzHfMQIWrQUyTLS2U=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:08 2025 by rpki-client