Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa
File: 3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa (raw, json)
Hash identifier: k94x5SoND7taDJ9+hbvW2cBmPuj7Ew1S7TXgwXS9MvI=
Subject key identifier: C9:53:15:6E:47:2B:86:25:8B:B2:35:BF:D4:4B:51:47:A8:7B:0F:69
Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Certificate serial: 35D257F36C848C28B328797AAFFD480B3BCB3ACA
Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa
Signing time: Thu 26 Dec 2024 09:00:03 +0000
ROA not before: Thu 26 Dec 2024 08:55:03 +0000
ROA not after: Thu 25 Dec 2025 09:00:03 +0000
asID: 133840
IP address blocks: 203.161.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:d2:57:f3:6c:84:8c:28:b3:28:79:7a:af:fd:48:0b:3b:cb:3a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Validity
Not Before: Dec 26 08:55:03 2024 GMT
Not After : Dec 25 09:00:03 2025 GMT
Subject: CN=C953156E472B86258BB235BFD44B5147A87B0F69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b3:dd:88:78:d6:08:b7:90:ea:a1:ab:97:25:
db:d5:6b:98:37:0f:70:fe:86:1b:a1:aa:82:dc:0a:
b2:51:3d:1a:12:cb:ec:fb:4f:f4:1f:2a:d3:f5:5f:
94:ad:18:bd:56:14:33:4c:35:46:62:15:cf:9c:5b:
b2:a2:7d:2d:0d:52:02:d4:7a:aa:9e:84:88:bf:9b:
36:40:9a:3b:87:69:a4:13:e2:e8:43:29:da:78:eb:
c5:2c:ce:4f:53:81:bb:1e:00:ac:98:2d:c7:77:fb:
10:b3:c8:c7:f7:6e:98:5a:68:34:14:0d:8f:c4:e4:
97:20:ab:5b:cd:1a:7d:70:82:28:b8:54:1f:3a:36:
24:f0:fa:1f:3b:f7:85:6b:8c:64:d8:20:64:d8:d4:
62:66:cd:44:8d:cc:0f:df:a2:4e:24:d7:8f:48:38:
01:2d:c6:ff:a2:2b:c4:65:a3:f6:70:c5:b5:e1:49:
1e:8a:47:1e:5e:14:04:a0:41:af:d8:f6:72:2a:3f:
ba:21:fe:c9:1a:9a:ee:36:79:97:42:3e:cd:66:1f:
29:da:6f:6c:e9:3d:ee:82:80:1e:70:64:2f:8e:ce:
c5:b6:f4:27:a1:10:f6:d7:a5:72:c2:07:0a:f1:98:
e8:ce:74:f3:ac:53:42:a2:5d:93:9d:2a:ba:5c:0d:
13:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:53:15:6E:47:2B:86:25:8B:B2:35:BF:D4:4B:51:47:A8:7B:0F:69
X509v3 Authority Key Identifier:
keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.161.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:89:54:64:88:f3:1d:33:ba:be:3d:ad:4e:a3:b1:01:04:2e:
24:63:e3:cb:28:79:7c:80:b0:cd:8e:c3:5b:a9:da:f9:8c:79:
b8:a5:fb:16:4a:68:04:45:01:e8:8b:bd:0a:a2:23:b4:b1:40:
a1:65:41:0d:d4:f7:8a:53:8b:0f:68:80:06:94:6d:41:41:60:
62:db:1b:5a:25:92:53:ec:94:ce:86:23:0f:91:49:24:54:8e:
af:04:e3:58:9f:6b:52:9a:f9:26:01:c0:ff:88:18:37:4e:b0:
45:5e:b7:31:9e:09:08:5f:25:62:0f:e8:69:28:45:1a:c5:94:
26:c4:cd:2a:e6:c4:7f:c5:b8:95:5e:32:e0:f1:b7:a7:89:40:
d4:1c:d0:8a:74:33:37:12:dd:6f:d4:c9:0f:60:b0:bf:d5:80:
90:1a:dd:36:f4:f8:17:94:07:08:50:11:03:38:a9:5e:bc:72:
c0:15:0e:51:da:c5:ac:24:d7:7e:68:7b:c9:e4:e0:a1:bb:68:
b8:f3:76:13:77:cb:58:b7:8b:3b:ed:9d:a6:f0:1a:99:52:ed:
e1:7a:f3:b3:f9:70:f8:c9:52:4a:ac:8a:eb:99:c4:6c:dd:40:
29:b6:4c:14:33:26:a7:a2:ee:96:03:89:b6:b4:ba:9b:81:67:
93:e5:19:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:40 2025 by rpki-client