Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa
File: 34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: ojFdU43pMzAF8Kl2ss98Rrj2MseDcSjIaVkU6XMeYuI=
Subject key identifier: 1A:F5:1E:80:84:B3:76:5C:C6:EC:3E:C4:E4:ED:3F:CD:02:33:DE:9C
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 51E1305BD638C1093F8B5CC09A222E5D139E527E
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:45 +0000
ROA not before: Sat 21 Dec 2024 17:55:45 +0000
ROA not after: Sat 20 Dec 2025 18:00:45 +0000
asID: 149746
IP address blocks: 49.128.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:e1:30:5b:d6:38:c1:09:3f:8b:5c:c0:9a:22:2e:5d:13:9e:52:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:45 2024 GMT
Not After : Dec 20 18:00:45 2025 GMT
Subject: CN=1AF51E8084B3765CC6EC3EC4E4ED3FCD0233DE9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:10:20:36:6a:27:4d:2e:15:3d:15:87:2f:d3:
36:ce:52:7f:b7:11:cc:56:6a:53:ec:79:2b:ca:6b:
aa:0a:ac:52:38:21:be:9c:d8:0b:eb:e0:cf:f4:ac:
0e:c4:5e:7e:0f:3d:0c:98:f5:2c:87:ee:99:0a:ba:
40:17:c2:97:2d:d8:62:40:88:6e:96:a9:f6:dd:21:
b7:a2:0a:d3:bf:00:a0:45:6e:82:1e:14:ac:c1:e8:
98:f6:99:2c:6c:f4:90:48:06:8b:59:26:1d:e0:bd:
04:94:a3:b1:26:3e:f9:31:c3:37:34:35:73:8b:0e:
ae:06:c0:02:59:bd:bd:8e:e2:80:de:57:5e:b5:0c:
28:18:e8:80:78:a8:38:f0:1d:9a:7a:6e:cf:f5:54:
5b:8b:48:3b:ca:91:ea:42:5a:6a:f4:e8:4f:93:83:
d3:f0:50:97:0f:49:73:26:aa:ab:d7:9f:a8:e9:3d:
e8:86:54:4d:bc:69:90:ca:21:90:19:18:69:92:80:
12:03:c8:78:25:89:7c:8f:90:67:fd:ed:51:32:51:
1e:6d:53:31:c0:6b:7b:6f:57:b5:fc:27:83:dd:49:
84:c8:7f:43:f3:ba:0f:9d:a2:8c:f9:a6:da:2e:87:
8b:d7:33:7e:ac:0d:4b:a2:2b:27:2d:cc:1b:2a:c0:
80:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F5:1E:80:84:B3:76:5C:C6:EC:3E:C4:E4:ED:3F:CD:02:33:DE:9C
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
49.128.178.0/24
Signature Algorithm: sha256WithRSAEncryption
58:42:0f:02:64:6d:60:2a:c0:ec:d3:c6:eb:0d:fd:dd:7d:fb:
57:f5:29:c8:ae:e0:8b:64:ce:ba:7c:6a:17:ae:61:d1:20:d4:
79:85:53:b8:2a:58:6f:9f:a2:fe:56:00:97:50:a4:ec:ea:67:
4e:86:bf:16:c4:5f:9f:4c:90:c2:16:3a:1b:fa:24:a4:79:f6:
be:bd:15:31:cf:53:24:7d:12:01:1a:3d:b0:1a:c3:bf:15:60:
83:50:e5:37:07:85:44:51:8a:fd:1d:01:1c:4b:dc:c7:a2:43:
d8:7c:88:e2:57:7d:b4:69:18:62:fd:93:97:e4:b7:f0:dc:0f:
55:a8:cb:4e:07:89:7b:3e:8d:ed:08:4a:1d:82:1d:59:a6:20:
a8:72:e1:ab:4b:d9:52:8e:f6:66:56:fe:a6:43:2a:48:1d:3a:
a4:dc:6a:6a:c2:17:75:77:0e:09:48:1e:93:dd:cc:e8:27:8d:
61:e4:d6:97:8c:25:61:53:4e:f4:58:cf:26:d4:df:6a:bc:9e:
05:66:78:84:37:04:9b:17:7a:28:d7:00:51:da:45:ea:32:c9:
ee:54:8d:51:d6:b1:dd:33:48:46:34:7d:88:82:92:71:98:e9:
ad:e8:48:11:0c:3e:e7:65:e0:0b:4d:a3:55:1f:81:63:b4:f7:
a9:fe:37:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:18 2025 by rpki-client