Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3234382e302f32342d3234203d3e203338353030.roa
File: 3131362e36382e3234382e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: F4tFSHRlMedtfZGNmeyngJUkPlEO+pT9H13rSOwjrYQ=
Subject key identifier: 6A:90:9B:5B:F8:F4:3E:77:5E:71:49:6D:76:D7:D0:97:5E:A0:B3:4B
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 3035FCDA1E0CE5E737CDB8AC0CC94B24DCFBB791
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3234382e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:41 +0000
ROA not before: Mon 01 Jul 2024 00:59:41 +0000
ROA not after: Mon 30 Jun 2025 01:04:41 +0000
asID: 38500
IP address blocks: 116.68.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:35:fc:da:1e:0c:e5:e7:37:cd:b8:ac:0c:c9:4b:24:dc:fb:b7:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:41 2024 GMT
Not After : Jun 30 01:04:41 2025 GMT
Subject: CN=6A909B5BF8F43E775E71496D76D7D0975EA0B34B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1a:67:45:42:ec:4c:92:a2:31:04:30:54:85:
7a:c7:91:32:98:92:87:ec:3c:3e:53:5d:9b:a0:9f:
dc:75:3d:4f:48:c4:d9:29:93:04:ff:dd:7c:ed:17:
f7:01:37:4d:e0:9f:e3:a3:5f:93:e7:73:f8:38:36:
c8:8b:a3:a8:4d:b8:21:09:cc:07:74:08:e8:21:48:
a2:a4:87:26:ed:20:9b:77:88:8e:95:33:76:f9:8d:
37:09:d2:88:63:e4:2b:53:73:b6:ab:25:cb:2e:c5:
83:16:8d:9a:47:1c:1b:ec:4d:34:ff:20:9c:76:2e:
b0:36:ae:cc:9d:6f:ee:44:07:54:f5:18:50:23:a6:
ed:8b:81:0e:bd:a6:7e:1e:aa:6b:e6:9f:ff:6d:35:
5d:70:db:b8:f2:c1:b2:42:a0:69:5d:f8:9d:1b:13:
0b:91:99:99:2a:cc:6e:b1:d1:91:59:de:cf:ad:fd:
d2:42:16:2e:61:3b:e5:b4:af:b6:82:69:88:0c:47:
43:6f:e9:da:dd:82:a0:34:2a:37:4c:7d:6a:6e:a0:
d7:d5:7b:75:c8:74:b7:d0:e7:14:d2:04:d2:d5:66:
a8:e1:55:c3:5b:8d:77:0b:94:33:7f:aa:1c:a9:a5:
43:fe:4c:28:19:e5:d3:9d:d2:34:e3:33:b8:09:f8:
b2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:90:9B:5B:F8:F4:3E:77:5E:71:49:6D:76:D7:D0:97:5E:A0:B3:4B
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3234382e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.68.248.0/24
Signature Algorithm: sha256WithRSAEncryption
42:0f:b7:aa:24:fe:47:a3:72:21:bc:22:31:b3:2d:4b:c4:b9:
b8:60:ea:45:bb:11:29:9a:b5:01:66:e4:b8:40:47:48:32:54:
0a:ac:a0:5e:85:64:33:77:73:dc:c5:77:c2:19:e1:fb:4c:51:
fb:fb:43:30:40:0b:a2:e1:06:7c:e5:16:10:d7:40:08:af:a6:
32:00:6a:6d:01:de:2f:bc:ae:dd:84:00:24:e8:71:65:b5:c0:
27:24:5b:c0:2c:67:92:7e:d6:9a:e1:02:c4:53:dc:3b:61:b6:
31:4f:cf:06:08:76:06:34:60:ff:1d:1e:5b:b0:9f:a3:3d:a8:
1e:00:94:a6:94:cc:b1:38:5e:04:04:56:ed:93:89:d6:12:b5:
11:cc:65:b7:ac:88:94:6c:01:57:36:46:06:4a:d0:44:81:00:
83:56:32:47:dc:c6:23:27:fc:83:b2:8f:5a:e3:cc:24:41:33:
c9:16:33:89:83:6d:48:fe:a3:10:1e:34:e0:cf:8f:c3:6a:2f:
b5:89:0d:47:be:8b:71:3d:17:6a:2f:bd:0f:b6:d3:28:00:b2:
21:8d:00:c8:cf:fb:26:29:88:00:74:c7:8d:4b:d6:3e:fc:75:
85:b8:c8:d0:06:87:c1:fb:23:71:27:d6:73:7b:5a:71:c3:25:
f3:f7:b9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:07:31 2025 by rpki-client