Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234392e302f32342d3234203d3e203633353031.roa
File: 36312e31342e3234392e302f32342d3234203d3e203633353031.roa (raw, json)
Hash identifier: BAE11o0NNolz1vCRng0wsgmveTea1izoZwH4BvIVYDI=
Subject key identifier: 46:99:A7:51:34:7B:80:9F:B0:7E:50:C1:9A:86:A0:F0:CD:CC:1C:BD
Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Certificate serial: 5CA201C6A9BEDA060CD84D304536DFAA1100F30C
Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234392e302f32342d3234203d3e203633353031.roa
Signing time: Sun 23 Jun 2024 17:00:02 +0000
ROA not before: Sun 23 Jun 2024 16:55:02 +0000
ROA not after: Sun 22 Jun 2025 17:00:02 +0000
asID: 63501
IP address blocks: 61.14.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:a2:01:c6:a9:be:da:06:0c:d8:4d:30:45:36:df:aa:11:00:f3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Validity
Not Before: Jun 23 16:55:02 2024 GMT
Not After : Jun 22 17:00:02 2025 GMT
Subject: CN=4699A751347B809FB07E50C19A86A0F0CDCC1CBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:79:2e:8b:16:f2:87:d6:1b:ef:2c:bd:ad:1d:
62:58:a8:e2:d3:d3:70:aa:fc:14:c5:5e:ba:5b:9e:
ae:e0:0a:ed:38:a8:53:00:49:26:3a:0b:1a:9e:9c:
63:81:47:99:2f:23:63:2f:37:1d:97:cb:9c:4e:b6:
ae:c5:15:f6:9e:ca:88:7d:50:6b:30:54:3d:1b:55:
c0:c4:a8:f7:3d:a9:50:9a:85:5f:c4:12:7a:3e:0d:
51:24:e8:15:92:da:54:08:2c:8a:c2:aa:a0:3e:e9:
33:d4:c8:07:2d:95:6d:56:4d:98:49:26:16:3a:54:
94:bc:44:3c:bf:d2:90:dd:28:b7:18:37:ad:03:62:
fc:b7:a5:a5:a1:d4:d6:41:81:67:d9:a3:b5:f3:77:
8d:b8:fd:e7:98:34:54:3b:9e:ca:b2:a5:f8:4d:7d:
f2:08:ca:81:cf:aa:18:de:a3:ff:77:cb:fd:5b:b5:
c7:6f:2e:8e:b5:92:52:7f:47:9b:6a:51:91:89:5a:
0e:d1:d3:84:ac:d4:fa:84:d4:0a:bf:14:6a:ad:f9:
cf:a0:e1:5d:c8:ce:12:a1:40:58:1b:52:d8:8f:88:
db:91:03:48:43:26:43:02:94:c9:a1:c9:e9:ce:96:
b0:f6:86:c8:e9:e4:cd:fa:ba:96:bb:2e:96:90:c3:
32:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:99:A7:51:34:7B:80:9F:B0:7E:50:C1:9A:86:A0:F0:CD:CC:1C:BD
X509v3 Authority Key Identifier:
keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/36312e31342e3234392e302f32342d3234203d3e203633353031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.14.249.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:58:6e:c9:be:35:47:73:b3:10:ab:68:82:9d:61:f4:5d:a5:
43:1f:8b:d1:6f:9e:45:80:28:1a:79:a5:2f:fc:19:a3:da:96:
e1:d3:19:13:4c:1f:04:5e:c9:b5:ce:60:d4:5f:41:6c:f0:dd:
95:4e:21:fc:87:d6:57:fb:2f:3e:c0:5f:9f:3e:5a:c6:61:79:
be:ff:b8:e7:25:c4:54:45:ac:3c:e4:34:f6:eb:94:2a:b0:61:
33:10:48:78:6f:95:e1:2f:a1:48:0e:77:55:0b:40:97:b8:c6:
ab:3d:4e:89:2b:1f:6d:49:9f:37:cb:4b:e2:1a:7a:3a:c2:ea:
df:0d:f4:aa:f4:63:67:30:50:4a:a8:63:80:07:b6:fe:34:ce:
be:7a:c2:62:d4:8d:1d:9d:6c:bc:a3:f0:9a:34:d2:af:5a:44:
b5:cf:f6:c1:94:b7:39:a3:94:c7:bb:23:c2:b2:a1:7e:79:6b:
75:0f:9f:8b:3a:e7:ff:ef:cf:fe:d1:dc:67:15:80:87:83:38:
05:3a:d3:38:30:6b:02:ea:f6:da:7e:e2:7d:23:8a:80:24:ad:
db:27:22:56:aa:4c:d2:ee:96:55:04:2a:fd:dc:b5:3b:76:21:
57:11:8f:e8:c6:76:98:5a:6d:69:1a:b9:48:b9:d2:f9:cf:fe:
89:44:aa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:21:28 2025 by rpki-client