Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa
File: 3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa (raw, json)
Hash identifier: HKdDrsWDkAEnJ6eI7ZqOPeb8e5bF+cd3+bp0HL/Z/po=
Subject key identifier: AA:A1:FF:9F:64:79:77:1A:02:E9:93:67:3F:47:E9:F2:6E:36:03:71
Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282
Certificate serial: 4B3F86E282A4FC2B72E4473CCDE4E8524AFBE6F8
Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa
Signing time: Mon 01 Jul 2024 01:03:13 +0000
ROA not before: Mon 01 Jul 2024 00:58:13 +0000
ROA not after: Mon 30 Jun 2025 01:03:13 +0000
asID: 23756
IP address blocks: 150.107.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:3f:86:e2:82:a4:fc:2b:72:e4:47:3c:cd:e4:e8:52:4a:fb:e6:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282
Validity
Not Before: Jul 1 00:58:13 2024 GMT
Not After : Jun 30 01:03:13 2025 GMT
Subject: CN=AAA1FF9F6479771A02E993673F47E9F26E360371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:85:6e:a7:35:79:8d:19:97:5c:b3:82:01:10:
31:4f:0c:5a:af:24:4e:1f:f1:3c:0d:73:5b:91:ff:
c5:d1:86:1f:bc:fa:62:a5:47:02:31:53:d9:e7:31:
8c:73:97:d2:c6:45:7d:86:f6:76:a7:64:16:63:14:
e7:f7:2b:49:27:bb:7a:9c:11:5f:72:2a:25:c0:0f:
bd:a1:9e:5b:26:63:08:a4:63:8d:3e:08:d6:0b:ed:
e6:2d:58:f3:bd:98:a7:40:f9:cd:05:2e:e1:c1:54:
cd:cd:2f:74:d3:9c:15:89:d1:9f:2f:df:f4:48:8a:
d5:71:83:dc:3a:aa:9a:ba:3c:2e:05:50:c6:f2:16:
a5:51:51:4d:72:7f:ed:e2:d1:40:9b:00:2c:04:49:
f7:54:82:7b:63:c4:6c:54:92:40:ef:dd:73:f8:b9:
fe:f4:f2:a9:c8:15:69:fa:2c:37:ed:fe:72:3f:20:
67:92:bf:0d:6e:48:dc:fb:5f:89:cc:ed:06:26:96:
c8:3e:a8:94:6a:84:01:e4:33:91:6e:e8:bf:82:53:
9b:27:9c:75:60:ce:47:3f:4f:f0:fd:58:7a:4f:80:
e2:6e:7a:26:94:c8:55:8c:e9:db:66:0a:5b:2b:7a:
d0:61:68:e2:2f:57:48:37:b1:9a:dc:bf:b8:67:63:
6d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A1:FF:9F:64:79:77:1A:02:E9:93:67:3F:47:E9:F2:6E:36:03:71
X509v3 Authority Key Identifier:
keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3135302e3130372e3133322e302f32322d3234203d3e203233373536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.107.132.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:ee:5e:c4:71:20:a6:5a:35:31:6f:d5:95:27:a6:30:66:b0:
a6:22:16:9e:cb:a3:4b:7a:97:72:48:0e:c1:55:95:db:2a:5e:
3e:f1:3f:d0:73:da:df:21:2c:82:d1:ad:9c:1d:37:34:98:d6:
03:c3:fe:fc:d9:ee:0a:19:21:e6:c4:55:e3:ac:bf:45:cb:2e:
1d:d1:7d:bb:37:db:48:0c:2d:0e:f1:48:e5:35:2b:e6:36:2a:
0d:02:6d:d2:a0:cb:69:b2:80:98:81:7f:8f:8a:67:3e:50:47:
ec:6e:7e:bb:a9:7f:5d:67:38:20:f2:eb:1d:e9:de:6b:1e:b2:
3e:df:d1:ad:97:d8:a6:6a:ae:b2:a0:3d:35:17:38:2c:aa:90:
5b:3f:88:d0:8d:0e:52:55:85:9a:4d:5a:71:4b:85:3a:0b:89:
a0:ef:6c:f1:69:d6:00:d1:3c:1f:4c:32:86:51:85:98:b1:d0:
4d:d5:10:1a:77:ad:6e:b6:c0:0d:8b:43:8c:a7:5a:f2:21:b1:
dd:bb:3c:d8:9c:7d:fe:29:6f:7c:65:ca:97:0b:97:0b:7b:d8:
3f:d3:9b:c2:98:c7:71:b8:0d:5c:7c:c7:ac:1a:f7:06:05:1b:
78:fc:6a:c7:36:6b:cb:d0:d4:b7:26:74:27:fb:bc:b7:a8:ab:
c9:e6:43:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:45 2025 by rpki-client