Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa
File: 32372e3133312e322e302f32342d3234203d3e203338373533.roa (raw, json)
Hash identifier: pw2TlTpdPMTP9srkm8pqvWVp8VPJ7wznWnjzphGpd+g=
Subject key identifier: 56:39:C4:7E:6F:DC:36:5E:27:33:C5:48:E6:95:7E:C2:59:DD:B0:A5
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 694FB6A19FA92EE5153AE115AE87117C6DC41B89
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa
Signing time: Tue 03 Sep 2024 07:01:06 +0000
ROA not before: Tue 03 Sep 2024 06:56:06 +0000
ROA not after: Tue 02 Sep 2025 07:01:06 +0000
asID: 38753
IP address blocks: 27.131.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:4f:b6:a1:9f:a9:2e:e5:15:3a:e1:15:ae:87:11:7c:6d:c4:1b:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Sep 3 06:56:06 2024 GMT
Not After : Sep 2 07:01:06 2025 GMT
Subject: CN=5639C47E6FDC365E2733C548E6957EC259DDB0A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:e7:33:36:f7:07:78:7a:33:8d:ec:bb:4b:
b7:bb:29:ff:96:ec:6b:0d:8a:88:d1:b9:a7:53:05:
cb:1a:13:a2:8c:8a:05:74:12:bb:d7:51:ea:76:ff:
f6:33:bb:27:f8:94:6d:cb:e9:6e:ee:d8:ef:f0:5b:
86:aa:c6:63:b2:c8:f0:7e:d5:6b:82:14:12:cc:d6:
bb:ee:fb:e2:37:c0:09:a8:11:2f:26:79:43:95:d3:
81:f0:b5:38:87:b9:0d:44:38:26:4f:87:99:64:02:
be:1d:34:1c:4d:24:a8:47:b2:6b:43:c3:72:b8:41:
d8:8d:75:ec:46:ae:8c:0e:e5:5f:dd:7b:02:a2:33:
9b:cc:f7:2a:22:c9:7c:66:28:1e:64:6f:bf:87:1a:
f5:90:c7:ae:8c:45:13:03:05:95:7c:2a:10:e5:11:
aa:50:28:3f:4d:03:eb:6e:84:bf:34:6c:ea:3b:5b:
0d:20:ab:2d:54:19:c7:3c:60:c7:36:8e:c7:73:94:
59:04:a2:16:28:2f:a1:75:92:bb:98:72:5f:50:ce:
cf:1b:3b:90:35:75:69:3d:bb:a1:8b:25:e8:af:78:
c1:60:e2:8e:4e:d2:15:4d:d9:b6:6a:e0:78:00:64:
95:22:7f:c8:f2:6a:11:12:1a:40:09:f4:f9:ef:90:
ee:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:39:C4:7E:6F:DC:36:5E:27:33:C5:48:E6:95:7E:C2:59:DD:B0:A5
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e322e302f32342d3234203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.131.2.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ef:fb:ef:78:f4:0c:1c:e2:28:32:01:19:09:9c:f3:09:27:
96:a6:c4:dd:f3:e6:03:d3:b1:6b:2d:0f:9d:d2:62:c6:7b:0c:
74:fc:92:22:cf:88:7f:c7:40:c7:b2:cb:17:eb:36:95:eb:8c:
86:e7:43:58:9f:76:74:29:94:4b:77:13:d1:6b:89:76:0b:75:
72:06:45:a2:f5:65:78:15:08:2a:52:c2:37:5d:d2:f3:e4:2c:
78:70:49:6e:af:ae:ab:53:81:55:de:b9:0a:fa:99:3d:b6:fb:
15:06:12:0d:d2:c0:a6:37:48:54:cf:63:13:74:c3:1e:f7:54:
a8:76:6a:13:e6:a9:f4:29:bb:83:77:d6:db:30:c6:e3:aa:ed:
1b:6b:c7:bf:65:74:02:18:17:90:71:32:4f:ca:b7:2e:54:c0:
fe:78:a3:cd:ea:9a:13:f8:59:ff:a6:43:d8:fc:23:1d:cd:bf:
e5:b8:0d:32:88:12:3c:d5:78:e8:c9:ce:e3:61:82:aa:45:9c:
e8:66:27:8f:9d:c9:72:53:77:06:9e:9a:2b:ee:3d:50:d9:f9:
6c:62:0c:59:32:38:20:76:a1:d0:ca:01:f8:70:aa:0b:bf:e7:
1a:03:93:ba:2c:ad:4c:5e:c1:f0:32:76:ab:32:4e:2e:07:d6:
3a:2f:fc:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:33 2025 by rpki-client