Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa
File: 3131362e36382e3235352e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: LDzgPO5EmJpkOf/0ZWdnOJ6z/tacGIM96iSoqG1ikwA=
Subject key identifier: AE:A8:AB:7F:67:E7:5A:0F:A9:D3:AE:9B:23:66:38:77:9B:C8:6C:C0
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 5D2C357779B0D51925577B6094E64478C92F7D90
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:43 +0000
ROA not before: Mon 01 Jul 2024 00:59:43 +0000
ROA not after: Mon 30 Jun 2025 01:04:43 +0000
asID: 38500
IP address blocks: 116.68.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:2c:35:77:79:b0:d5:19:25:57:7b:60:94:e6:44:78:c9:2f:7d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:43 2024 GMT
Not After : Jun 30 01:04:43 2025 GMT
Subject: CN=AEA8AB7F67E75A0FA9D3AE9B236638779BC86CC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:77:cb:2a:2c:27:81:f9:3b:04:e6:50:1a:5f:
2d:90:6a:bb:c3:f3:62:eb:a0:7c:50:e7:92:8d:10:
d2:98:37:5f:95:44:40:9e:11:13:e0:0a:6b:2e:ec:
01:f9:8c:2a:d2:20:70:89:8d:2b:df:39:a2:b9:c1:
12:80:9c:4e:de:27:d2:e0:2c:95:d7:35:af:84:3d:
06:9e:14:8a:46:2a:44:32:ee:55:b0:ae:04:1d:9b:
c6:d7:15:15:3d:ef:50:1a:2f:3e:0f:ac:39:44:15:
f6:e9:c4:a7:37:a9:25:4d:3c:26:06:d4:c9:93:ee:
33:ef:cc:9f:72:7e:73:34:66:b0:3e:e3:cb:31:b2:
f6:9a:eb:89:ff:99:fc:1e:83:c2:92:8e:9b:d1:ae:
13:c3:67:da:d9:d7:c9:ae:0b:0d:10:5a:e0:5f:ca:
e3:b8:2b:2b:a7:4a:a8:b5:f5:3a:78:01:25:9e:85:
60:88:5c:be:32:67:1f:63:e7:12:8f:a7:d3:2e:a2:
a3:56:24:49:b2:49:7f:12:40:33:ac:a9:35:46:6b:
2a:c6:a1:40:57:fe:aa:33:05:e4:23:6f:68:67:98:
b6:aa:e0:73:c3:f2:9f:9d:20:c4:7c:dc:3a:f6:7f:
12:7d:0a:ea:3f:d4:2f:57:e4:db:89:48:e6:8d:94:
92:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A8:AB:7F:67:E7:5A:0F:A9:D3:AE:9B:23:66:38:77:9B:C8:6C:C0
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3131362e36382e3235352e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.68.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e7:d4:8e:d9:53:bb:04:fd:3e:72:e5:a6:ad:8f:63:4b:1c:
4d:03:16:84:15:06:ba:a7:40:9e:54:44:af:22:09:b4:3b:81:
64:1a:8b:ea:bc:82:63:4d:46:73:00:ca:c3:66:e1:e7:2b:3b:
d5:ef:b9:8e:c7:9d:8f:2b:23:7f:66:4c:f5:19:95:16:33:f5:
39:f5:f4:4c:4f:be:9b:2c:e6:9a:34:3a:24:5a:87:dc:f6:c8:
8e:ef:b0:3f:b6:6b:c6:06:35:8b:e2:ed:32:e2:a4:6a:72:3d:
61:27:60:70:cb:8f:0b:dc:ad:29:86:5b:de:bd:0a:f5:c4:74:
71:9c:af:e2:e4:07:20:98:7a:e7:1f:d6:80:2d:db:96:f5:89:
76:87:72:0b:bf:c1:21:f8:17:de:0a:03:d5:ad:02:7d:c4:05:
4f:7f:be:ad:7b:2c:cb:f0:d9:8e:a3:d1:e1:8a:e0:b1:a0:d7:
1a:86:15:f6:37:2b:96:b7:a8:77:b7:70:02:cb:8b:db:ac:4c:
9e:82:9e:47:4a:35:7e:82:22:8f:b6:36:85:bc:28:9f:b8:05:
21:d2:ec:09:64:6e:42:97:5b:ba:2d:89:df:87:2d:70:8b:b8:
07:e5:74:a9:6b:f2:2b:ff:be:31:cc:22:3a:ca:3b:b7:8b:ab:
83:50:c6:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:30 2025 by rpki-client