Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa
File: 3131312e36382e32382e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: M5MIXM9yrLqkivi97+1D94IkM8JBddI+ZQwKNBZcwPA=
Subject key identifier: 8B:7C:A9:D0:17:C8:80:7D:91:7C:E3:0E:67:98:C6:C0:C9:16:EB:8A
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 7DF39C9C96564E5328C82CCEA0B35EC15B3078A1
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:45 +0000
ROA not before: Sat 21 Dec 2024 17:55:45 +0000
ROA not after: Sat 20 Dec 2025 18:00:45 +0000
asID: 149746
IP address blocks: 111.68.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:f3:9c:9c:96:56:4e:53:28:c8:2c:ce:a0:b3:5e:c1:5b:30:78:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:45 2024 GMT
Not After : Dec 20 18:00:45 2025 GMT
Subject: CN=8B7CA9D017C8807D917CE30E6798C6C0C916EB8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:95:e2:d1:f5:a5:88:f3:6c:55:f0:69:2d:e9:
09:05:ef:23:fc:ae:ec:c8:a1:ac:6f:8a:38:8b:de:
6b:0a:4d:4a:5a:fe:a7:0e:52:3c:e2:84:46:3f:c1:
d8:56:ae:77:99:b6:22:9e:2f:18:37:32:6a:39:a9:
da:08:a0:26:41:bf:5a:52:c4:83:51:83:46:78:26:
24:b7:20:b0:33:17:44:88:ad:ba:dc:3c:40:c9:0f:
a9:d2:4d:fb:b8:59:02:42:c7:4a:7b:cb:27:e3:f8:
36:c8:fe:e6:31:63:84:84:b7:88:20:67:b2:5f:cf:
d8:1a:3d:d1:a5:1f:cb:e9:94:0c:f5:91:80:b9:76:
d5:55:dc:2c:dc:1a:fc:97:32:b7:36:4d:fd:f7:e0:
2e:15:81:92:83:1e:b6:4d:bf:b4:5c:80:28:82:06:
e2:69:a7:a1:75:b8:d0:ac:24:e2:fc:9a:75:bf:e7:
1a:a7:07:10:5d:38:ee:dd:16:dc:f9:a7:1a:b0:aa:
48:97:c2:5c:20:94:1c:d2:43:cc:3c:6f:c0:ff:04:
18:79:dc:b3:12:89:07:df:17:ec:a7:03:e3:95:53:
09:8a:28:d6:5d:8e:b4:c6:b4:cf:0b:4e:fe:e6:dd:
35:7e:13:7a:78:16:14:f9:33:83:6d:16:00:35:ef:
07:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7C:A9:D0:17:C8:80:7D:91:7C:E3:0E:67:98:C6:C0:C9:16:EB:8A
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131312e36382e32382e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
111.68.28.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ca:c5:21:e9:eb:b3:ad:16:23:d1:95:2a:eb:05:e6:0a:69:
42:2a:57:f5:ea:61:7c:35:f8:9a:80:7c:8a:56:98:51:1f:08:
9f:93:35:69:81:d8:53:85:37:c9:21:c3:4d:36:55:3f:9a:f0:
69:12:32:83:5e:7b:84:8c:44:19:e3:09:30:7a:e5:4a:6e:0b:
90:a8:96:7e:27:33:6e:30:8b:28:2d:22:49:a5:4c:3f:b0:01:
a3:37:27:9f:1b:c7:18:8f:44:3b:f6:80:4d:f2:74:31:a9:26:
a6:65:a6:71:06:bc:e7:e0:fd:ff:01:44:b3:f5:40:fc:6b:b2:
c9:d2:cc:1c:27:d0:52:4d:f4:3a:07:3e:1a:5a:26:d8:5c:3b:
b9:2e:f4:e6:ce:d7:10:bb:de:58:3b:9c:3f:61:ab:c4:9a:70:
37:b7:b0:58:ce:90:b3:d0:a0:d2:20:83:86:9a:b1:0c:10:df:
3c:cc:14:40:b5:03:eb:eb:a2:83:e8:77:11:78:a4:94:5f:9e:
86:82:4e:b7:3d:9f:39:0a:10:68:f3:05:d2:5f:95:16:89:ac:
41:62:06:bc:75:c8:6b:69:7d:6a:dd:67:de:b4:e0:6d:5d:ea:
48:aa:0b:3e:27:0f:54:4c:bd:19:0f:12:b0:ac:83:3c:50:da:
da:6f:0a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:27 2025 by rpki-client