Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa
File: 3133372e35392e31352e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: nl48j1D6iX1/Yru+wGEu5dOcsUS0RrCwuDZD9KggzB8=
Subject key identifier: 12:BB:7C:93:B3:CC:CC:F4:C4:F2:B8:48:83:EB:A1:88:2E:5A:ED:55
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 498ABD12AAA9568549E22840EAAF8761716738A3
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:44 +0000
ROA not before: Mon 01 Jul 2024 00:59:44 +0000
ROA not after: Mon 30 Jun 2025 01:04:44 +0000
asID: 38500
IP address blocks: 137.59.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:8a:bd:12:aa:a9:56:85:49:e2:28:40:ea:af:87:61:71:67:38:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:44 2024 GMT
Not After : Jun 30 01:04:44 2025 GMT
Subject: CN=12BB7C93B3CCCCF4C4F2B84883EBA1882E5AED55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:59:14:66:41:96:8d:79:ba:5f:0a:c6:bb:12:
1a:6e:55:2d:49:2c:51:8e:d5:4d:b7:7c:b7:e4:2b:
e5:ac:97:cc:ab:3b:80:64:d5:48:48:95:87:2b:37:
fd:eb:32:90:ff:c7:f6:92:87:07:57:4d:19:1b:3f:
23:55:8c:7f:cb:20:83:81:de:ff:72:0e:cd:41:ac:
e1:07:a6:73:89:63:1e:5a:95:03:e2:41:ba:9c:47:
0f:38:ba:c5:6e:c7:7f:8f:80:04:ea:a9:ad:01:d0:
81:81:67:91:5c:0e:35:96:fd:e0:a3:d1:51:f8:22:
98:3b:d1:24:78:21:57:86:59:da:42:b4:35:81:b9:
6d:53:6e:2b:41:d8:83:7a:da:ec:65:0b:bb:0c:d2:
9a:97:32:12:b7:48:b9:0b:b2:f0:7e:55:6b:05:36:
3c:00:0d:50:63:75:fb:60:f0:d3:99:86:ad:ad:76:
37:f6:7b:61:bb:2b:6e:cb:f5:cf:42:fc:96:db:71:
cf:7a:78:06:29:26:d6:bf:e5:0a:70:b1:e9:51:45:
15:62:2f:e5:c4:65:a3:f7:7b:70:6d:08:60:24:ec:
3a:5b:b0:c3:82:f9:fa:2f:90:58:8d:7f:f3:fb:06:
c9:f9:33:f6:02:19:3a:6b:2e:78:ca:4f:b3:af:44:
90:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BB:7C:93:B3:CC:CC:F4:C4:F2:B8:48:83:EB:A1:88:2E:5A:ED:55
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3133372e35392e31352e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.59.15.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:4e:c1:b2:62:2d:c0:30:fb:a4:14:57:b4:0e:7d:e7:83:f7:
43:8f:97:50:16:98:b7:61:e4:c7:20:3b:b6:cf:1c:12:4b:eb:
2f:4e:61:01:26:a9:e0:7f:33:b5:a4:b0:15:e1:b6:73:53:05:
7a:d6:3e:ae:d4:8e:85:a9:e9:8e:b7:45:cf:13:47:5b:c4:e7:
d9:1a:52:72:d8:e2:2c:e9:5c:e8:d0:bd:45:46:bb:db:23:81:
a3:60:0d:9f:0a:1c:c6:ae:01:3f:a7:32:57:2f:3f:0e:3f:8d:
3d:a2:e2:07:a5:72:0a:2e:d5:bf:d0:06:ae:a5:15:79:37:ac:
c6:e6:08:cd:d8:e5:07:27:c7:1b:6a:99:3c:9a:ba:fc:4f:4a:
bb:c0:a0:5c:e6:46:03:e3:7f:be:43:4e:28:45:8f:5e:2f:2d:
bd:98:bf:57:cb:1e:55:1a:d3:b6:dc:4e:cf:4a:33:d2:f1:8b:
a2:06:ac:45:9e:16:43:70:a0:78:c9:14:c0:44:fb:43:47:ca:
47:6a:d1:ce:01:cd:1f:37:5e:32:3b:43:66:b1:65:63:d3:7e:
1d:6d:d6:f7:0c:27:e5:9c:03:9e:31:20:65:f3:79:ba:0e:f3:
37:cd:f6:1a:7a:a6:32:ba:ea:59:45:c3:a0:15:4e:4f:71:ee:
82:43:1b:3e
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUSYq9EqqpVoVJ4ihA6q+HYXFnOKMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD
RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV
BAMTKDEyQkI3QzkzQjNDQ0NDRjRDNEYyQjg0ODgzRUJBMTg4MkU1QUVENTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQWRRmQZaNebpfCsa7EhpuVS1J
LFGO1U23fLfkK+Wsl8yrO4Bk1UhIlYcrN/3rMpD/x/aShwdXTRkbPyNVjH/LIIOB
3v9yDs1BrOEHpnOJYx5alQPiQbqcRw84usVux3+PgATqqa0B0IGBZ5FcDjWW/eCj
0VH4Ipg70SR4IVeGWdpCtDWBuW1TbitB2IN62uxlC7sM0pqXMhK3SLkLsvB+VWsF
NjwADVBjdftg8NOZhq2tdjf2e2G7K27L9c9C/Jbbcc96eAYpJta/5QpwselRRRVi
L+XEZaP3e3BtCGAk7DpbsMOC+fovkFiNf/P7Bsn5M/YCGTprLnjKT7OvRJBZAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUErt8k7PMzPTE8rhIg+uhiC5a7VUwHwYDVR0j
BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF
OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE
QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05
ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzMzNzJlMzUzOTJlMzEzNTJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACJOw8wDQYJKoZIhvcN
AQELBQADggEBAD1OwbJiLcAw+6QUV7QOfeeD90OPl1AWmLdh5McgO7bPHBJL6y9O
YQEmqeB/M7WksBXhtnNTBXrWPq7UjoWp6Y63Rc8TR1vE59kaUnLY4izpXOjQvUVG
u9sjgaNgDZ8KHMauAT+nMlcvPw4/jT2i4gelcgou1b/QBq6lFXk3rMbmCM3Y5Qcn
xxtqmTyauvxPSrvAoFzmRgPjf75DTihFj14vLb2Yv1fLHlUa07bcTs9KM9Lxi6IG
rEWeFkNwoHjJFMBE+0NHykdq0c4BzR83XjI7Q2axZWPTfh1t1vcMJ+WcA54xIGXz
eboO8zfN9hp6pjK66llFw6AVTk9x7oJDGz4=
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:21 2025 by rpki-client