Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
File: 3135372e31352e34342e302f32342d3234203d3e20313532333931.roa (raw, json)
Hash identifier: GmvMNkypXN/dIsdT8yqrh6k/wsMAgACMxsXszxhLEFE=
Subject key identifier: 9C:EA:04:72:C9:6C:61:EB:02:8E:0A:B6:19:90:B4:84:16:77:43:2D
Certificate issuer: /CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Certificate serial: 706872409FB86CD32D4E449A44B9343C0DC9347D
Authority key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
Signing time: Thu 10 Oct 2024 05:26:57 +0000
ROA not before: Thu 10 Oct 2024 05:21:57 +0000
ROA not after: Thu 09 Oct 2025 05:26:57 +0000
asID: 152391
IP address blocks: 157.15.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:68:72:40:9f:b8:6c:d3:2d:4e:44:9a:44:b9:34:3c:0d:c9:34:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B
Validity
Not Before: Oct 10 05:21:57 2024 GMT
Not After : Oct 9 05:26:57 2025 GMT
Subject: CN=9CEA0472C96C61EB028E0AB61990B4841677432D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:48:08:fc:b0:c2:f8:1c:97:22:1e:2a:9f:43:
44:d1:a7:1d:d5:23:d8:68:7c:44:eb:ed:de:1a:fd:
96:5c:55:90:3e:b5:ee:ec:75:45:b8:cf:c3:5b:d7:
f7:b6:97:5b:a0:4a:9e:77:53:94:12:41:e0:cd:96:
df:44:d7:2c:f7:54:a1:12:66:11:7d:0e:b7:5d:77:
07:67:c8:90:f5:30:40:6b:a4:ad:c1:e0:f1:ba:ac:
c5:54:f4:a5:82:0b:a0:c2:ad:80:6f:0f:50:11:9f:
59:8a:28:72:41:b2:fc:aa:1e:bb:99:45:ec:54:f6:
e3:09:49:ac:df:07:53:bf:c5:f1:32:6a:13:64:4d:
f5:29:15:e3:7b:d7:e5:31:b2:9d:e1:d6:90:b9:10:
f5:db:52:4b:f2:47:06:06:77:ef:54:e4:0f:7e:fe:
2b:4b:03:34:94:15:a6:91:f3:60:74:e3:a8:bf:3f:
d7:1a:e4:70:d6:a5:fc:5e:d1:cc:64:34:2d:42:a9:
6a:d5:47:9b:07:57:8a:ef:a9:84:58:c7:3c:f3:e9:
f9:7b:ef:b6:da:5f:21:68:5e:51:6f:60:d8:ae:92:
9e:11:21:28:ee:62:0e:d6:37:18:f6:91:a2:0b:36:
93:74:3b:b1:25:6b:08:fa:e3:32:80:d0:da:9c:a6:
55:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EA:04:72:C9:6C:61:EB:02:8E:0A:B6:19:90:B4:84:16:77:43:2D
X509v3 Authority Key Identifier:
keyid:46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/3135372e31352e34342e302f32342d3234203d3e20313532333931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.44.0/24
Signature Algorithm: sha256WithRSAEncryption
24:0f:d3:ba:87:61:bb:c5:d3:a6:ca:f1:87:cf:22:78:c3:c0:
7e:12:76:e0:35:e1:38:af:33:1a:88:f9:82:57:86:8d:b6:be:
8b:f3:b4:b3:ae:5f:93:a2:9b:87:61:49:f1:34:2a:9a:1b:d8:
77:e4:be:a7:07:4b:fc:d5:55:76:d5:cc:e0:37:74:90:f3:b9:
28:45:cd:c4:1e:dc:94:20:26:5a:ec:25:f4:c9:4b:f4:9c:62:
6a:66:ba:7b:29:ad:6f:98:9e:28:e8:45:a9:f0:ef:b7:76:67:
e4:91:d2:2f:ff:f2:ef:a0:e9:0a:54:e7:fd:a3:55:aa:a3:a2:
6c:9a:7d:ce:9d:f5:3e:2c:0f:10:6c:8f:02:e9:03:69:df:c2:
73:a1:8f:bd:09:65:1f:72:c1:ea:d7:7f:6a:ed:75:58:94:ee:
8a:de:e9:e5:16:5c:e9:62:81:11:57:c9:d3:4a:a3:0f:02:54:
95:19:fc:94:60:13:46:17:38:48:67:8e:be:29:12:64:3e:5e:
94:3c:a6:a2:24:04:22:53:e3:d1:a1:84:a6:ae:f1:a0:b0:4c:
1b:ed:c1:3a:97:7d:58:9c:2e:fb:04:55:f7:78:c0:6c:e0:60:
c0:ee:48:b7:8c:13:03:6c:b0:c9:49:ef:03:79:93:01:93:1f:
c8:a9:16:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:00:39 2025 by rpki-client