Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa
File: AS59281.roa (raw, json)
Hash identifier: 3OoTAmlO4zWNGL/bSRhl8jP1S0EccRMZ9zeQlEN9DAw=
Subject key identifier: 3B:CA:98:BC:C1:B4:21:5C:1A:35:2D:4F:18:F0:92:F2:2A:A1:C0:DE
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 632B5A0FDF43A3E2F72D7DFAA97C75E319A0E82A
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa
Signing time: Fri 04 Oct 2024 15:47:10 +0000
ROA not before: Fri 04 Oct 2024 15:42:10 +0000
ROA not after: Fri 03 Oct 2025 15:47:10 +0000
asID: 59281
IP address blocks: 101.255.170.0/23 maxlen: 24
115.124.70.0/23 maxlen: 24
202.182.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:2b:5a:0f:df:43:a3:e2:f7:2d:7d:fa:a9:7c:75:e3:19:a0:e8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Oct 4 15:42:10 2024 GMT
Not After : Oct 3 15:47:10 2025 GMT
Subject: CN=3BCA98BCC1B4215C1A352D4F18F092F22AA1C0DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6a:6e:24:ad:f2:54:48:cb:15:29:27:b5:b8:
b5:cd:37:b2:76:bd:44:5a:cf:ee:47:bb:95:c6:42:
10:c4:59:44:32:8f:a9:c9:f7:34:c3:8b:58:7a:b5:
b4:eb:08:4b:d4:09:2e:e6:33:f2:f7:84:5f:fa:e9:
88:1a:28:26:3b:be:15:c4:f2:e9:58:0a:c7:fe:92:
ca:da:23:e1:cc:54:4d:a7:86:76:3b:96:b6:88:3b:
8c:c8:99:6d:38:a8:52:2b:bc:39:d2:e3:b2:5a:d4:
e0:56:5c:d5:e4:9b:9d:b2:09:c2:89:66:65:cc:08:
d5:1b:5f:66:4c:42:27:85:37:63:7a:a1:53:c3:0c:
19:c2:27:e2:17:e0:da:4b:14:42:27:ab:44:d3:36:
29:7b:38:d4:a9:59:5e:e9:dd:58:bf:48:a9:e3:f5:
65:bd:78:a4:9e:9f:45:0e:35:75:6c:fa:51:46:16:
87:2c:0d:87:e3:5b:7a:f3:3e:05:fd:9e:d4:33:72:
c6:6d:8e:e3:f5:e2:2a:f0:cf:d4:93:e1:02:92:00:
87:ef:97:be:17:f1:08:77:58:b1:c0:56:9e:f4:c8:
a4:8b:cf:ba:b8:73:0c:4f:2b:52:01:fa:70:3f:b2:
f6:75:d2:63:a6:bd:0e:97:7a:79:46:f2:d5:5b:99:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CA:98:BC:C1:B4:21:5C:1A:35:2D:4F:18:F0:92:F2:2A:A1:C0:DE
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/AS59281.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.255.170.0/23
115.124.70.0/23
202.182.49.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:23:e5:23:2f:17:ba:f6:c6:59:ca:b7:94:25:75:51:6f:8a:
c1:5f:66:6b:10:4d:aa:43:bc:23:66:da:06:db:11:27:96:9e:
db:13:2e:94:37:db:8d:18:c4:e6:e1:22:d8:e1:42:6b:3d:e9:
60:21:30:1e:ae:6c:c9:ca:87:29:b5:3d:0e:d2:b4:6e:b0:8d:
52:57:fe:4f:74:6e:fe:f6:10:d7:33:46:63:a2:90:ea:c1:5f:
f9:2b:df:83:8e:12:49:ab:fd:c8:be:1f:85:4a:6e:e6:52:fc:
17:de:2b:dc:2f:9d:c4:df:21:2d:13:a7:23:71:6b:0e:32:f9:
73:f7:9e:8b:27:fe:5e:53:d4:e1:e9:d8:71:ec:30:bc:25:61:
2d:13:5b:be:27:a9:7e:29:7c:58:52:c2:bc:51:c2:65:fb:5d:
fb:ed:c0:bf:a4:5b:5c:8f:bd:c0:65:27:b8:08:70:62:ff:93:
49:fe:2c:e2:91:60:eb:50:fb:8e:c0:d3:e2:75:40:bd:38:60:
d1:b2:e5:38:82:ce:c4:19:10:b1:29:cf:0c:5a:94:93:4a:ed:
06:1a:d7:41:2b:9a:9c:ab:ae:f6:ac:fe:f9:65:04:16:f0:32:
39:5e:b5:5c:02:38:7b:20:4d:d0:db:fe:a6:e9:bb:13:1b:05:
d1:d5:aa:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:25:06 2025 by rpki-client