Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa
File: 34352e3131352e36342e302f32332d3233203d3e203338373533.roa (raw, json)
Hash identifier: TV4AtuSERFgyXPQ8go6SPeJZb67xp527Pi6f8u1ppWQ=
Subject key identifier: 84:C8:22:67:3D:88:DB:B1:2D:22:BF:5E:EE:FB:EF:D5:12:EA:D6:9D
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 07E8DF14A3A621E7491A91C5F6DC130109449523
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa
Signing time: Tue 02 Jul 2024 08:03:18 +0000
ROA not before: Tue 02 Jul 2024 07:58:18 +0000
ROA not after: Tue 01 Jul 2025 08:03:18 +0000
asID: 38753
IP address blocks: 45.115.64.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:e8:df:14:a3:a6:21:e7:49:1a:91:c5:f6:dc:13:01:09:44:95:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Jul 2 07:58:18 2024 GMT
Not After : Jul 1 08:03:18 2025 GMT
Subject: CN=84C822673D88DBB12D22BF5EEEFBEFD512EAD69D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4c:b4:b5:58:ed:cd:61:25:c8:f0:99:3f:8b:
4e:c2:4c:6f:07:b8:d9:da:97:ab:70:30:34:04:85:
de:f8:49:6d:16:20:69:bf:d0:d8:98:b3:c9:b7:f4:
a2:d1:ce:0f:8d:3c:74:05:40:27:f3:f9:ea:87:3e:
1f:a4:6a:db:ae:b8:c4:f4:90:ad:ce:85:42:62:48:
be:ac:63:d4:34:b0:fe:65:ab:64:74:d7:60:c6:bd:
95:73:0b:b3:8b:bb:c5:8b:52:6e:d2:e3:db:48:25:
c8:1f:28:82:98:22:be:e2:ae:05:81:cd:97:ff:3e:
46:4d:4e:96:83:06:5b:f1:c7:c6:85:68:1d:d3:48:
8f:e4:f2:26:86:ef:df:53:cf:97:25:72:b8:cf:2a:
34:e6:2c:53:3d:00:f1:ec:39:ae:a0:9f:13:0f:4b:
4e:91:e5:b5:57:ba:37:ab:4c:17:c6:43:6d:7c:47:
ad:c9:8c:d9:4a:44:bb:b0:73:a5:36:10:ee:21:a3:
0c:2c:9b:6c:3c:39:dd:3d:42:a5:db:73:fc:3e:9b:
16:9a:ad:a5:77:96:d3:61:f4:99:c7:b9:f3:d4:2a:
13:4f:fe:00:08:1c:c5:b1:cd:da:1e:85:25:54:ce:
33:8c:37:62:be:fd:da:fb:2f:8a:1c:b1:1f:31:22:
2e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C8:22:67:3D:88:DB:B1:2D:22:BF:5E:EE:FB:EF:D5:12:EA:D6:9D
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/34352e3131352e36342e302f32332d3233203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.115.64.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:0e:a5:ac:cc:bc:c3:fb:6b:0a:9f:3b:f9:fd:c1:bd:ef:de:
4f:60:f3:7d:9e:ae:62:b9:1d:2b:06:8a:9b:26:c7:78:36:93:
44:ad:34:6b:21:ca:c7:32:c5:ff:c6:bc:17:a1:59:90:7e:83:
eb:d1:c8:39:aa:d1:b6:ab:09:63:7d:1f:63:43:c5:b5:a6:b6:
8c:ed:21:2e:1e:e8:57:13:d9:51:64:a1:05:61:15:c5:d0:1c:
3d:3a:04:62:56:ac:cc:72:34:a8:cf:34:0d:5a:3c:01:63:48:
f4:fe:1f:27:51:44:6a:f1:ab:22:d0:64:6b:79:fc:f2:1a:df:
f9:68:ea:92:7f:99:ce:4b:09:96:9a:39:91:dc:07:82:81:19:
06:4b:1b:96:bd:44:c6:5a:df:d8:bc:8f:4d:01:25:3f:35:34:
f3:cb:e3:8d:d6:d7:c6:e5:42:49:77:d7:7d:bc:60:8d:59:26:
ce:cc:45:69:c4:5f:49:b0:00:58:5d:75:6b:3f:6a:8a:00:8c:
19:70:e6:53:2a:88:cc:28:3e:b4:c4:61:9c:9a:86:b2:8c:ca:
e7:93:d7:65:51:1e:6b:18:4e:d0:33:80:c5:8e:19:0e:84:b5:
c4:88:85:19:ae:ee:14:f1:3b:7e:e5:09:de:0d:16:06:4c:7c:
16:93:35:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:54 2025 by rpki-client