Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e362e302f32332d3234203d3e203338373533.roa
File: 32372e3133312e362e302f32332d3234203d3e203338373533.roa (raw, json)
Hash identifier: pwz7d5jhsxkt2BibdrXzD8OXxZz3L3mvvVk89Gd3a9I=
Subject key identifier: 1F:2A:D4:B0:33:B2:CB:36:A1:53:38:3E:AF:5D:E9:31:D8:02:AE:F3
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 63EC2747879CCA65A9C5E96C40BC96DB35D3B0BB
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e362e302f32332d3234203d3e203338373533.roa
Signing time: Thu 24 Oct 2024 05:00:01 +0000
ROA not before: Thu 24 Oct 2024 04:55:01 +0000
ROA not after: Thu 23 Oct 2025 05:00:01 +0000
asID: 38753
IP address blocks: 27.131.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:ec:27:47:87:9c:ca:65:a9:c5:e9:6c:40:bc:96:db:35:d3:b0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Oct 24 04:55:01 2024 GMT
Not After : Oct 23 05:00:01 2025 GMT
Subject: CN=1F2AD4B033B2CB36A153383EAF5DE931D802AEF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3b:5f:55:35:bd:48:da:9b:f6:2f:00:30:80:
cb:00:0c:23:64:c8:5f:3b:8f:f4:08:0c:26:ca:53:
e4:40:e8:c1:bb:96:38:4d:5a:08:2f:9b:a2:c7:a4:
a0:79:d8:05:69:06:93:4e:d2:b5:32:fb:26:89:43:
ea:0b:16:6d:19:a9:21:0e:4b:35:82:d3:fa:ba:42:
25:b7:34:d2:a3:5b:58:28:87:46:b0:72:1c:8d:cc:
00:a5:de:17:c2:8e:e1:9c:b9:73:60:2d:f8:d6:bc:
e1:0c:de:c0:8a:87:c9:8d:17:bb:19:56:b1:03:61:
a3:cc:01:1d:3a:9d:f3:14:50:07:a6:ff:3f:96:60:
fb:a5:1c:9e:53:fe:23:89:10:d6:f1:85:dd:fd:c2:
0e:34:dd:95:67:48:bc:40:d9:6d:f9:f6:60:27:54:
56:9d:92:12:2f:a0:38:11:08:07:e6:87:27:fc:c2:
e0:8f:ad:5d:78:a0:4c:48:5a:33:b9:c3:9e:2c:12:
9b:cf:23:e1:56:58:03:c6:7a:29:41:70:f7:0d:02:
b0:f1:0d:e8:d6:08:56:25:ba:8c:68:02:10:d5:e5:
f0:df:81:2d:b4:12:c2:6a:06:9d:28:e1:4a:3e:44:
f6:33:4c:f4:e0:d0:9f:5a:db:e6:b1:4b:a0:1a:16:
cb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2A:D4:B0:33:B2:CB:36:A1:53:38:3E:AF:5D:E9:31:D8:02:AE:F3
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/32372e3133312e362e302f32332d3234203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.131.6.0/23
Signature Algorithm: sha256WithRSAEncryption
91:67:35:35:b9:b0:be:93:e5:c1:45:74:72:25:ea:38:44:59:
e1:22:70:87:b4:d9:3e:53:4e:6f:f8:42:c9:e9:0a:30:bf:8f:
7e:8e:0c:de:9e:1c:b3:55:26:13:c3:e8:d6:23:bc:ac:00:bf:
6c:24:94:6e:7d:c4:56:a0:82:f9:f1:a8:3d:4b:c3:c0:1a:99:
2e:87:d5:8c:cc:dc:91:6b:c2:8b:39:69:06:0e:c8:c5:e3:97:
c2:b1:67:90:ee:04:7a:41:8e:a5:29:2c:76:d0:a6:a0:39:19:
c8:6c:20:b1:8f:36:92:89:6e:55:d0:fb:b2:02:cb:33:ad:ef:
51:80:91:1d:62:42:e2:2e:5b:89:22:35:ef:98:b9:a8:02:61:
9d:cb:37:69:1b:8b:c0:fa:fd:71:c4:12:75:aa:3b:83:9d:f7:
38:1b:33:5d:65:33:3d:a5:0e:64:1b:ac:84:e3:46:09:e1:2d:
5a:05:28:59:59:aa:84:27:d8:f3:8e:d4:a6:59:89:b5:e9:1f:
dc:ed:80:1b:f5:78:52:52:9d:9f:97:9c:54:3f:8c:2f:0c:66:
f3:6c:08:b2:51:8a:af:53:00:a0:46:bf:d2:b5:e7:b4:72:87:
e0:55:fd:c6:03:d1:c6:83:21:9a:42:d5:1f:db:58:6b:5f:09:
a3:ad:10:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:55 2025 by rpki-client