Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS137342.roa
File: AS137342.roa (raw, json)
Hash identifier: CMk60fE5UdVZv/MxL6/n0+3Rya8vaHN7xLAuSG2v4iA=
Subject key identifier: A1:A4:41:CC:E4:B7:34:59:F7:8B:2F:92:55:B7:FD:63:94:98:09:A9
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 283AA758F21698B26A1886CCDB43E03909861F73
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS137342.roa
Signing time: Tue 21 Jan 2025 16:00:00 +0000
ROA not before: Tue 21 Jan 2025 15:55:00 +0000
ROA not after: Tue 20 Jan 2026 16:00:00 +0000
asID: 137342
IP address blocks: 101.255.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:3a:a7:58:f2:16:98:b2:6a:18:86:cc:db:43:e0:39:09:86:1f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Jan 21 15:55:00 2025 GMT
Not After : Jan 20 16:00:00 2026 GMT
Subject: CN=A1A441CCE4B73459F78B2F9255B7FD63949809A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:43:85:72:3d:24:d5:a2:af:14:18:78:41:
04:84:40:94:af:dd:5e:ad:cd:2e:d2:6e:09:e0:f7:
63:ad:84:54:fa:08:63:98:70:0c:ba:59:60:e3:f1:
73:52:0a:70:82:09:c2:91:d2:57:f0:bd:c5:af:ae:
d5:d6:81:24:27:ce:08:5e:95:68:4e:81:c9:42:f7:
0b:79:22:e4:0c:56:ed:c0:bd:4c:44:03:40:eb:49:
c2:a9:19:c9:99:c9:7b:2c:6e:b1:f5:77:9e:a9:27:
24:67:f9:11:d1:77:17:97:db:0e:33:a7:9e:3b:4e:
70:5e:76:72:68:b9:f6:f5:c5:b7:cd:17:28:7c:83:
48:ec:75:3c:42:a5:15:bf:d2:91:40:0d:76:8f:0a:
d3:4b:16:1f:27:00:e7:1b:13:1a:69:4b:ab:a9:23:
b2:24:86:d2:e0:ee:b9:81:92:e5:35:1b:41:51:37:
ac:20:f5:b9:bb:15:04:b6:85:15:e8:7e:6f:64:4d:
e9:d9:ef:01:f0:e4:92:38:d2:10:9f:3e:6d:90:f4:
87:a5:48:0c:4d:d7:5d:b0:1f:63:63:ae:aa:fb:c0:
cb:7b:a3:a0:e8:d9:c5:7f:92:5e:10:27:46:1b:f1:
95:96:8a:65:c7:a2:ea:19:a8:07:c7:c8:af:25:cd:
cc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A4:41:CC:E4:B7:34:59:F7:8B:2F:92:55:B7:FD:63:94:98:09:A9
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS137342.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.255.30.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6c:0c:d8:d1:7a:a9:c5:e6:55:ab:6e:ee:59:f3:b5:ca:43:
62:08:c2:b1:97:e9:9f:ac:d9:17:34:d3:d4:c2:14:30:c8:c3:
14:ff:77:71:2b:46:fe:91:77:cd:69:4c:fd:3a:74:1b:47:d4:
a8:fa:c2:b2:d8:40:81:28:c1:61:30:56:e1:6a:1a:e8:e3:87:
5f:79:4a:29:02:3b:07:35:b4:f2:6f:27:6d:34:31:f8:2a:91:
a5:b2:47:e0:e5:48:b9:83:63:8e:37:8f:2c:a3:f9:9d:f3:0e:
10:9e:70:44:0d:19:4d:3b:5a:fe:4c:67:84:ad:20:1a:a5:91:
7f:f9:7b:57:2e:a2:51:8d:2a:65:37:16:4f:16:4d:48:12:0d:
fc:a6:15:d7:5e:e7:2a:7f:11:a4:d1:e3:f0:76:c8:f6:ef:2c:
9a:ba:cf:44:85:91:64:ac:e3:a2:92:58:c2:fb:c3:b7:3f:fb:
fb:dc:6a:59:3c:0f:0b:88:e4:da:13:49:57:4c:89:6a:0b:ca:
83:14:74:88:7e:75:32:ce:21:10:3c:92:72:a0:e9:9e:76:b3:
8d:ad:6f:cc:47:74:80:6d:39:59:18:37:48:48:d7:cf:10:a2:
00:fc:5f:0e:85:1a:6c:05:8d:a7:d6:af:8d:a4:d5:f5:d0:02:
a3:2f:b5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:24:40 2025 by rpki-client