Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa
File: 3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa (raw, json)
Hash identifier: dCJqos3Oibr4LecDULBKbmSIhSN7pN298xtiYiQZIlg=
Subject key identifier: 4C:3D:21:D2:91:02:5B:42:DF:8D:CD:AF:5E:A8:41:DD:3D:9F:87:7D
Certificate issuer: /CN=8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0
Certificate serial: 5947D132AFDACF47F7518183D33F205606DDAF98
Authority key identifier: 8C:21:08:40:D9:E2:8A:46:5D:4F:0B:9F:3A:1D:7C:31:CC:66:80:C0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa
Signing time: Thu 04 Jul 2024 02:27:44 +0000
ROA not before: Thu 04 Jul 2024 02:22:44 +0000
ROA not after: Thu 03 Jul 2025 02:27:44 +0000
asID: 152826
IP address blocks: 160.22.194.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:47:d1:32:af:da:cf:47:f7:51:81:83:d3:3f:20:56:06:dd:af:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0
Validity
Not Before: Jul 4 02:22:44 2024 GMT
Not After : Jul 3 02:27:44 2025 GMT
Subject: CN=4C3D21D291025B42DF8DCDAF5EA841DD3D9F877D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d4:dc:33:30:57:4b:0a:93:5c:d4:20:a8:11:
2f:7f:3c:5c:5a:c4:c5:a0:55:a5:40:b3:ee:68:31:
5f:fa:e8:3b:00:54:81:7d:14:dc:58:88:5c:82:e7:
a0:f4:e6:3a:c8:01:4b:d5:5e:a1:6a:f6:19:59:14:
83:9a:5c:03:ad:9d:2d:03:cd:e3:9e:9e:75:fc:99:
7d:22:ac:53:da:7f:41:33:4d:72:fb:42:a5:e7:ad:
1b:c1:e2:6a:9e:97:b5:2f:a9:2c:a0:14:2c:48:c7:
1d:2f:9f:47:ca:f6:16:5b:19:1a:af:ba:61:17:56:
44:06:72:9e:22:70:70:70:22:29:d3:e5:64:63:93:
28:58:bd:02:4f:c8:31:ed:3d:6b:37:aa:97:ac:94:
0f:65:05:32:fd:44:d6:ec:17:d8:fa:26:15:34:16:
d6:02:6d:e0:fa:80:9a:74:cc:28:dc:75:5b:97:14:
23:8f:95:17:ad:dc:7d:03:4f:83:3a:59:8b:6e:25:
bf:aa:b5:55:b1:8e:07:a6:d2:c6:3e:85:fc:ae:e4:
44:1b:18:03:26:33:bd:da:ef:16:56:5f:7c:79:b0:
6d:ab:f7:00:7d:0b:2d:b5:cf:82:71:44:4c:ea:fb:
5d:29:f0:93:e4:6f:85:ad:16:bf:23:e8:0f:08:5b:
e0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3D:21:D2:91:02:5B:42:DF:8D:CD:AF:5E:A8:41:DD:3D:9F:87:7D
X509v3 Authority Key Identifier:
keyid:8C:21:08:40:D9:E2:8A:46:5D:4F:0B:9F:3A:1D:7C:31:CC:66:80:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8C210840D9E28A465D4F0B9F3A1D7C31CC6680C0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0ba85a0-3534-49a4-a826-13a735f94369/0/3136302e32322e3139342e302f32332d3234203d3e20313532383236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.194.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:64:4c:a7:b3:c5:91:63:9d:cc:e9:c9:fa:96:c1:08:6b:49:
f6:d9:5b:6b:ab:78:d7:9f:e7:57:7f:77:b6:b4:7f:c5:81:44:
99:7f:80:a1:50:03:0b:37:65:b9:0d:ff:61:db:db:81:fd:d9:
20:d9:03:07:b8:33:92:d6:4a:c5:a2:d7:77:2c:d9:5a:92:b6:
4c:ca:7a:50:e0:51:92:99:90:d9:d7:09:c5:53:37:ce:2b:bf:
9c:5b:f1:c0:38:60:10:3c:95:41:18:58:20:ed:f6:b8:81:f1:
f2:01:d6:73:46:a6:ea:9f:6e:f4:ec:fc:1e:5f:b8:43:f0:e3:
9c:05:77:1a:8a:de:28:d9:45:4d:e7:eb:17:3c:22:a5:96:57:
7e:31:30:b8:f2:b1:eb:0c:7b:35:88:03:ea:eb:57:24:c2:ac:
a3:db:22:cc:76:f6:3a:1a:2e:17:7b:87:79:45:e7:68:9a:fa:
5c:35:7e:e3:f3:ad:d2:65:a4:22:12:02:70:9d:98:a1:04:d8:
f7:b8:5d:85:9e:0f:39:00:8d:53:a2:b2:fb:d7:6b:1f:8d:29:
13:34:0e:74:04:b6:10:23:97:a3:39:5e:db:f0:3d:a3:f4:ec:
65:52:80:7d:74:ff:bb:dd:2d:89:77:13:d2:e6:eb:61:a7:b1:
a0:6e:fc:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:49 2025 by rpki-client