Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa
File: 3131322e37382e33322e302f32312d3234203d3e203535363636.roa (raw, json)
Hash identifier: 4drbhys0k9nwMVhQ3qP8hx5pwYTiOzSCA3fRbQudv88=
Subject key identifier: A3:C8:68:B9:65:54:8D:AA:9D:57:05:E9:D0:84:28:44:10:3A:39:2B
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 79BB8F70A6DC10315BB0A0B89A7B5E1E4BF0F803
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa
Signing time: Mon 01 Jul 2024 01:06:10 +0000
ROA not before: Mon 01 Jul 2024 01:01:10 +0000
ROA not after: Mon 30 Jun 2025 01:06:10 +0000
asID: 55666
IP address blocks: 112.78.32.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:bb:8f:70:a6:dc:10:31:5b:b0:a0:b8:9a:7b:5e:1e:4b:f0:f8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Jul 1 01:01:10 2024 GMT
Not After : Jun 30 01:06:10 2025 GMT
Subject: CN=A3C868B965548DAA9D5705E9D0842844103A392B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c7:0c:1b:59:4c:16:5e:49:e4:41:c6:c9:70:
33:25:d2:56:ce:05:2f:5c:d9:0e:f6:8e:ed:c6:1d:
28:f9:b5:56:47:7d:29:a6:93:0a:dd:7f:6e:9d:49:
9a:e0:fb:fc:ec:88:b9:e0:24:48:e1:3b:78:19:b9:
de:3e:77:17:51:3b:38:44:a9:b0:c2:3f:ee:62:c6:
c9:ee:e1:68:48:5e:7e:c8:5b:63:83:33:a6:1f:3d:
ee:f2:d6:89:f2:82:e0:5f:90:a0:89:2c:c7:fc:8c:
6b:35:9e:d7:2c:70:bc:93:0f:1e:ca:7f:73:74:19:
e8:a8:31:a3:36:68:15:71:91:1b:ae:50:18:11:4f:
b5:3b:13:cc:6a:8a:07:4f:f7:9c:8c:e5:06:30:32:
64:74:0c:2c:84:a6:96:7b:e3:86:0e:fd:32:9a:eb:
86:18:56:67:19:6d:a9:c5:87:a0:70:a7:82:4e:c3:
d6:8c:76:6c:d7:ef:9e:1f:6d:80:18:5d:30:c1:8a:
38:ed:75:9f:1b:a3:06:bb:88:d4:a4:db:52:93:7b:
fc:4d:31:77:2e:c7:aa:3d:86:df:07:d6:1e:ef:f3:
f2:5e:90:82:ce:c8:1d:ae:fb:24:3c:de:22:f4:78:
51:03:c9:a8:59:6a:69:97:18:c4:30:44:1b:13:9e:
55:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C8:68:B9:65:54:8D:AA:9D:57:05:E9:D0:84:28:44:10:3A:39:2B
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33322e302f32312d3234203d3e203535363636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.78.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:69:0f:3f:39:2b:ff:ed:76:69:03:a0:7d:c7:f3:9b:59:f3:
00:1f:b6:03:e2:d7:e1:42:bf:a3:87:6b:f8:56:38:fa:f6:37:
69:3e:09:37:44:fd:8a:26:94:ba:28:10:0e:a6:f0:1d:e0:21:
eb:2e:d2:c5:96:86:3f:71:5c:a9:f9:9c:51:1e:9c:9d:64:6b:
ce:be:71:8d:4f:54:4f:50:ff:ff:29:e1:47:e5:4a:c2:41:fc:
80:4f:ec:ea:a6:cc:2d:c6:31:92:8f:d1:52:37:4d:51:c8:8f:
dc:64:a8:45:50:48:b3:d2:87:57:1e:bc:2d:8d:ea:18:41:c0:
bb:29:45:e6:bd:e0:b8:bd:fe:f3:73:d3:8a:9d:11:43:33:56:
fc:6a:9f:a6:8c:15:11:14:27:0d:d0:79:f3:19:1a:56:e6:3e:
f2:10:a2:d1:07:89:85:8f:18:0e:dd:57:fa:ec:40:84:d4:67:
f1:fe:42:03:ae:98:1c:f9:88:22:e6:14:41:85:69:1b:c3:4d:
d0:af:5c:70:23:67:c0:15:c0:5a:bf:28:f5:44:be:3c:65:95:
cf:fd:5c:33:59:85:cc:0c:65:7d:8e:67:20:ca:7f:44:dc:b3:
c7:0b:be:66:4f:3b:f4:09:a9:cd:cf:f7:78:25:4d:2a:b8:1b:
ab:0a:14:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:41 2025 by rpki-client