Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa
File: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (raw, json)
Hash identifier: MO6/lQY/Nl8VnXin+gA+foQOLuvJOUz6SX7TNLs7MqE=
Subject key identifier: 45:7E:7A:CD:46:24:7A:D1:CD:99:AE:98:07:FC:89:32:6C:C8:E7:A7
Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36
Certificate serial: 7FF82A6DB9A155F6EC264738D27451911E5FD1CB
Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa
Signing time: Fri 01 Nov 2024 06:00:03 +0000
ROA not before: Fri 01 Nov 2024 05:55:03 +0000
ROA not after: Fri 31 Oct 2025 06:00:03 +0000
asID: 140456
IP address blocks: 160.22.250.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:f8:2a:6d:b9:a1:55:f6:ec:26:47:38:d2:74:51:91:1e:5f:d1:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36
Validity
Not Before: Nov 1 05:55:03 2024 GMT
Not After : Oct 31 06:00:03 2025 GMT
Subject: CN=457E7ACD46247AD1CD99AE9807FC89326CC8E7A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:98:0c:40:ee:72:6e:56:9d:2f:c4:60:de:
b7:5b:84:fe:56:c6:fe:bc:8b:ea:59:80:e2:eb:7f:
bd:a3:52:e9:e6:ec:96:4d:ad:92:31:4b:42:56:b2:
8e:91:7f:77:7e:8e:4b:b4:fd:b2:d3:a4:e4:5e:b7:
04:7d:82:da:f8:2d:5b:3f:5f:e3:5c:c1:55:e6:6c:
5d:55:8a:10:6a:07:50:79:af:be:28:11:38:dc:d0:
c5:e9:12:57:05:6f:6d:12:e3:41:a1:b2:1d:b1:54:
ff:48:77:22:4b:b6:f8:8d:51:cc:6c:77:13:c6:19:
9b:7b:1b:bd:34:e2:0e:ae:ed:f1:32:b4:9c:b2:39:
ae:52:f6:3c:5a:15:83:ef:45:5a:ab:24:49:b9:9a:
c5:84:7e:ff:f8:47:a0:ca:2c:8e:4b:f5:c9:db:66:
09:f3:3c:de:e5:54:37:57:19:49:09:1a:c9:50:cb:
97:ed:43:f4:20:3a:a6:f6:34:9f:b8:ee:52:ca:53:
b4:14:f3:fe:6d:4e:ae:1f:46:46:62:23:de:b3:1c:
de:49:4f:39:93:dd:bb:59:dc:2e:29:ea:ca:0f:29:
43:b4:49:5c:33:aa:ed:90:cb:7e:eb:c6:69:77:b7:
91:b4:57:09:fc:2a:58:5b:e2:28:03:fc:4c:25:b4:
4d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7E:7A:CD:46:24:7A:D1:CD:99:AE:98:07:FC:89:32:6C:C8:E7:A7
X509v3 Authority Key Identifier:
keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.250.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:9d:46:aa:0e:f0:d9:30:4b:bf:26:42:2d:cb:6b:01:e8:e6:
93:3e:ef:4c:ca:c3:38:c8:ef:a2:8b:1c:48:81:ab:6f:75:37:
25:6b:65:4a:fd:38:13:68:2f:a0:bc:5d:92:25:e5:55:a7:49:
61:10:65:ca:27:b4:2f:48:0c:3f:95:41:a8:bb:e5:97:bc:c8:
8c:d9:90:af:92:5a:37:1b:b7:98:fb:89:12:a0:11:7f:76:ae:
51:9c:9f:87:ec:80:57:2e:7f:63:24:df:52:ab:73:c9:db:82:
c5:8b:f8:4f:4b:bc:15:ed:84:11:a7:64:1e:41:20:2e:fe:67:
c7:b9:06:b1:f1:a4:d5:a7:5b:3c:7c:57:22:86:f9:80:fc:1a:
02:d8:0b:bc:3b:4b:d4:46:4b:4c:ec:bc:37:e9:4c:16:97:81:
1d:df:4a:dd:d6:8f:28:89:57:d7:08:c4:7f:52:27:70:c2:a3:
cd:5d:27:23:0a:2a:de:d4:78:24:fc:2d:aa:a2:8e:60:63:96:
95:dc:f1:12:dd:8f:f0:db:16:8a:d8:e7:55:9b:ae:d6:7e:37:
73:2f:d8:11:61:70:fe:12:7c:31:f8:16:9f:21:82:27:01:45:
07:18:59:51:e5:b8:43:8a:48:02:ce:c4:2c:b0:5a:94:4e:0b:
cb:1c:fb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:55:41 2025 by rpki-client