Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa
File: 3133372e35392e31342e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: wqxXgoPAkQNKaWpdoRcEwNeMU8YvEX1OVvWJwgaKZRo=
Subject key identifier: CE:28:A1:B0:9E:FF:77:E0:30:83:1F:14:F2:DA:55:C7:82:E7:89:6A
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 2678B3C9CE998B2C79965B7D30CE2F2FD57BB225
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:47 +0000
ROA not before: Mon 01 Jul 2024 00:59:47 +0000
ROA not after: Mon 30 Jun 2025 01:04:47 +0000
asID: 38500
IP address blocks: 137.59.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:78:b3:c9:ce:99:8b:2c:79:96:5b:7d:30:ce:2f:2f:d5:7b:b2:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:47 2024 GMT
Not After : Jun 30 01:04:47 2025 GMT
Subject: CN=CE28A1B09EFF77E030831F14F2DA55C782E7896A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1c:95:f3:d5:5b:5a:12:2f:99:70:65:94:03:
18:c8:dc:f1:41:7c:c6:f0:4c:aa:fe:db:4a:c8:70:
84:c1:c8:83:46:20:82:e2:3f:46:d6:69:48:96:ca:
32:4a:9f:af:a8:5a:96:2f:23:ef:0a:cb:fe:ac:54:
bd:8e:16:8a:b5:a7:ab:38:d8:d2:e3:97:98:c1:0e:
c7:06:1b:70:a9:e4:eb:88:16:d6:ea:d8:d3:6b:68:
c8:2a:3d:39:f0:80:40:76:bd:a7:8f:53:98:3e:6d:
99:9f:21:64:ed:49:46:16:d7:eb:08:f7:7e:c8:71:
33:24:0c:84:32:8c:0f:e1:9e:2c:bc:65:b1:7b:03:
f9:1d:2f:f9:d7:4d:22:fc:18:cc:a8:8c:63:7b:2c:
39:a4:db:4b:69:50:d7:43:5c:32:5c:0f:9b:32:c7:
41:4a:22:4b:83:f9:ed:30:c3:03:a4:10:7b:71:c8:
e0:80:35:ce:38:d5:02:62:44:14:14:a8:47:9e:b0:
c0:f6:d9:b1:03:f5:07:7d:11:0c:3e:88:70:de:b7:
4c:b0:eb:0c:d0:3b:37:52:7c:f2:55:7d:8b:92:df:
85:b3:a4:a5:0e:d7:07:e3:cc:bc:03:6a:52:f9:94:
42:e5:12:b2:20:90:91:a3:70:c8:6c:be:e7:44:c8:
60:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:28:A1:B0:9E:FF:77:E0:30:83:1F:14:F2:DA:55:C7:82:E7:89:6A
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31342e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.59.14.0/24
Signature Algorithm: sha256WithRSAEncryption
60:73:23:81:36:a8:af:18:4f:79:38:c4:cc:6e:d8:e1:e0:c2:
43:3b:95:26:5b:ae:8d:f4:87:a3:9d:e9:27:98:e9:96:c1:a5:
82:56:fc:b4:45:ca:7d:f2:d1:4b:24:d7:d5:79:da:2b:65:4f:
ad:e7:22:6d:df:62:1e:81:cd:e5:86:a2:84:28:90:80:11:43:
cf:50:2e:87:4a:97:4a:30:ef:06:a4:88:ea:4f:39:80:dd:47:
d7:dc:6a:cf:18:b5:77:df:81:bd:b1:11:0d:33:88:ef:c5:0f:
85:ff:72:d0:2c:4e:3d:11:c3:80:58:81:5c:e3:dd:57:95:f0:
db:be:9e:bf:bf:10:52:58:fd:93:fc:27:43:fb:b2:32:a2:c0:
0c:0f:be:a2:b4:fa:ca:a0:f8:b9:2f:65:35:3f:09:1f:3c:29:
ce:e5:24:af:31:dd:66:d5:b3:71:e4:ee:1c:6b:1d:b6:f0:44:
eb:74:60:91:4f:11:13:71:52:69:d5:ca:b9:a2:d6:53:bc:ef:
d6:9a:f6:bd:6c:ec:8d:8e:0f:52:94:9f:db:d5:ee:bf:1f:30:
15:95:77:8d:13:38:4d:33:25:e8:72:58:a8:9c:e8:5d:07:28:
4b:41:b7:5e:d7:b9:ac:b2:1a:85:99:47:bb:40:5b:ae:12:ce:
94:9b:71:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:46:56 2025 by rpki-client