Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33382e302f32342d3234203d3e20313439373436.roa
File: 3131322e37382e33382e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: /9HEDitBud2JL5PjNF8lccXxuUn2nEtlKhSkIJ1OpE8=
Subject key identifier: 42:00:91:03:59:B0:08:31:C5:B1:CC:01:D7:47:8A:67:B4:00:8D:CF
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 6FEA13C8FFCBA36F33D7323E41DCE35B407802D3
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33382e302f32342d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:47 +0000
ROA not before: Sat 21 Dec 2024 17:55:47 +0000
ROA not after: Sat 20 Dec 2025 18:00:47 +0000
asID: 149746
IP address blocks: 112.78.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:ea:13:c8:ff:cb:a3:6f:33:d7:32:3e:41:dc:e3:5b:40:78:02:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:47 2024 GMT
Not After : Dec 20 18:00:47 2025 GMT
Subject: CN=4200910359B00831C5B1CC01D7478A67B4008DCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fc:de:2f:51:43:06:26:64:27:2f:ef:ea:ad:
56:c9:9a:70:4a:78:42:e6:49:b6:93:86:45:d0:d5:
37:ae:cb:0e:d4:a5:b7:3f:16:09:6b:a4:6e:91:e3:
4f:bd:f5:36:14:fe:8f:1a:4a:2e:6f:a8:93:12:33:
c0:6b:4b:fe:aa:95:3c:2c:2a:b8:5e:76:74:db:c6:
8b:be:20:2b:d0:09:c3:97:78:09:cc:a9:da:06:fb:
8b:1c:7e:15:cc:f6:79:5c:9a:42:4f:5f:00:9a:cf:
fd:32:96:08:11:b3:e1:df:d2:35:7b:15:6e:13:52:
02:63:f8:4c:94:cd:68:b0:78:e3:7e:56:f6:0a:8e:
c7:a6:f9:b9:cd:0f:20:ba:b2:cf:2e:9d:63:70:19:
70:4b:64:44:6d:41:4f:87:c5:38:af:8c:b3:39:c4:
47:25:bb:f4:a8:5e:06:ac:c2:36:83:cd:cf:21:d0:
09:d8:ef:8e:52:be:c3:14:5e:d8:5b:5e:69:a8:4c:
55:15:9e:ff:71:84:1d:75:58:5b:ab:76:55:92:99:
4f:16:8f:06:fb:c2:93:42:a8:81:3a:c7:cf:1d:c0:
41:de:db:b7:07:0d:bf:f6:8e:ca:6e:d4:42:15:73:
94:11:ce:f4:ed:a6:2e:3d:dd:92:32:59:44:89:3e:
5c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:00:91:03:59:B0:08:31:C5:B1:CC:01:D7:47:8A:67:B4:00:8D:CF
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131322e37382e33382e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.78.38.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:3b:d7:a2:aa:92:e1:7c:08:e8:67:3b:2e:95:d1:dd:87:60:
53:f8:40:4e:7d:96:8d:cb:65:94:c8:86:ba:8d:bf:b4:a9:20:
76:88:f4:16:0b:52:c3:20:f2:a1:76:e9:8e:c1:c5:b9:f2:8c:
f9:bc:97:65:6d:b2:0b:dc:49:7c:d0:ae:84:1d:7d:9e:38:56:
45:7b:7e:50:bb:31:4b:d9:88:67:86:80:a8:a9:a9:a7:74:46:
0f:6b:ba:29:4c:c0:9b:45:2e:12:c2:be:90:ae:86:67:6c:a6:
82:cb:e9:bb:64:7c:bc:1c:3c:17:2d:00:a0:c1:8f:e4:2f:82:
e9:9d:a3:97:cb:41:41:bd:32:e0:2b:5d:bb:e4:ac:96:2d:87:
f1:ed:e2:55:a2:77:7b:d1:c4:85:e8:1f:f5:62:15:94:b2:e2:
31:c4:a1:98:f5:29:24:33:9c:30:f7:12:9f:b3:4e:5b:32:16:
62:b2:d6:c9:70:68:09:04:b4:a2:3e:af:88:d5:ef:a1:b4:c2:
31:62:d1:03:46:9b:be:bb:fa:f8:27:ff:d0:b4:eb:1a:b1:80:
e2:34:7c:96:c3:c7:01:72:d9:02:7b:af:f7:3d:c2:80:7b:f5:
bb:1b:4b:82:20:05:ca:10:d2:b2:eb:d1:3b:88:99:c8:c0:ab:
db:ea:1c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:26 2025 by rpki-client