Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa
File: 3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa (raw, json)
Hash identifier: lc89lFRvMQIz7uTqrlcEMfYnshZrWUp2xbVgo2KfUEM=
Subject key identifier: 14:5D:13:6D:77:DD:3C:67:7A:76:12:31:BB:5D:2B:C6:E3:B2:C5:E9
Certificate issuer: /CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819
Certificate serial: 6CD1BAC2922A5A58EDF5BB32FD1AE5111DB8C191
Authority key identifier: A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa
Signing time: Mon 08 Jul 2024 09:32:24 +0000
ROA not before: Mon 08 Jul 2024 09:27:24 +0000
ROA not after: Mon 07 Jul 2025 09:32:24 +0000
asID: 152780
IP address blocks: 160.20.124.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:d1:ba:c2:92:2a:5a:58:ed:f5:bb:32:fd:1a:e5:11:1d:b8:c1:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A3D74765C1F178F72C3CD0DE0B6287F4B082D819
Validity
Not Before: Jul 8 09:27:24 2024 GMT
Not After : Jul 7 09:32:24 2025 GMT
Subject: CN=145D136D77DD3C677A761231BB5D2BC6E3B2C5E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:28:8b:fe:ef:85:43:f8:bb:c2:cf:2f:32:fe:
80:34:c8:a1:af:e5:17:2e:54:58:f8:cd:ec:ab:bf:
73:d9:17:f5:bb:a0:33:76:1e:49:3d:5a:d5:db:14:
dc:8c:5c:09:8d:15:55:65:45:1c:8c:4a:62:53:2b:
2d:f6:88:8a:9b:9a:88:f9:25:f2:4c:d5:b3:cc:ec:
b9:a5:96:26:cd:5a:96:5e:21:27:6c:27:bc:89:ae:
53:d3:23:60:f1:3b:73:ae:ca:c4:a8:9c:63:2b:9b:
bf:7b:93:f1:71:43:4d:cd:d8:93:f4:cf:68:a4:b1:
1c:61:2e:07:8b:bf:08:a2:36:11:b4:9b:ed:8d:ad:
42:ef:e3:c9:bb:9a:58:6d:46:c4:2c:2b:5a:e4:04:
63:e4:70:ac:8f:06:8f:c2:d1:86:4b:11:22:3a:73:
66:f1:ad:4b:03:66:35:ea:60:3a:a0:2a:57:79:a0:
0e:9c:c5:c4:48:85:5c:44:7e:a6:fc:32:b4:74:c9:
4b:de:4d:38:89:a7:52:9a:37:d9:02:53:80:80:ec:
bd:3a:5b:bc:6f:16:62:5b:27:be:3b:b4:02:86:01:
aa:83:4f:ca:e6:aa:83:38:8e:b6:85:74:f6:b9:33:
32:5a:a5:8f:41:d4:97:4c:72:1b:cb:58:18:49:53:
a8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5D:13:6D:77:DD:3C:67:7A:76:12:31:BB:5D:2B:C6:E3:B2:C5:E9
X509v3 Authority Key Identifier:
keyid:A3:D7:47:65:C1:F1:78:F7:2C:3C:D0:DE:0B:62:87:F4:B0:82:D8:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A3D74765C1F178F72C3CD0DE0B6287F4B082D819.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9357921d-ee18-435c-8b6e-eba2241b83ab/0/3136302e32302e3132342e302f32332d3233203d3e20313532373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.124.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:c2:a2:8e:15:64:b3:8d:ec:7f:8f:08:db:81:6c:fc:c7:2a:
f9:30:c6:09:72:7f:13:3a:18:27:e0:14:06:5b:7f:50:d1:e7:
62:2e:34:d1:6e:41:b0:2d:62:1e:4e:30:f4:80:05:23:23:67:
54:b6:31:7d:b6:de:10:9f:21:34:be:f1:7d:fe:85:ac:5d:11:
09:21:9e:aa:7e:86:c0:f2:60:a8:3b:6a:48:bc:5d:47:74:ae:
a4:50:d9:6e:d9:dd:6b:fb:1c:98:61:0f:9a:b0:d8:d0:72:03:
b3:1b:00:16:2c:f4:85:e0:87:6a:91:8c:15:3a:47:8e:f8:99:
62:de:1c:cc:22:68:98:cf:e6:8c:cc:4e:81:53:82:ae:06:e0:
1f:51:b4:33:28:70:e9:8d:03:dc:b8:a1:ca:da:41:e2:2a:43:
a2:f9:62:24:ef:3a:38:84:19:6f:8f:2a:c1:50:4c:25:ab:d3:
05:58:29:8e:37:0e:6b:e9:c5:91:06:db:a2:59:cd:bf:7c:23:
be:78:7d:c3:c2:59:b7:d7:f5:c2:8d:77:f9:0f:ad:84:79:b2:
44:29:e9:0d:bc:e7:83:93:d3:75:7e:50:52:85:5d:65:c6:37:
32:e2:3b:a9:0c:45:74:f9:1c:ac:eb:b6:b0:ff:48:d2:96:0e:
69:93:8d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 09:36:59 2025 by rpki-client