Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa
File: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (raw, json)
Hash identifier: WQ3o4ScBRNrBdkrsNj1S2rAOurS9wRqMMCvcQilACbA=
Subject key identifier: 5A:AE:FC:D1:E7:B6:52:B7:A2:44:62:0F:84:25:FA:80:48:3B:AF:A7
Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Certificate serial: 568E9EC9C0D36FE5537AA502767FF0A9E6C3CD03
Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa
Signing time: Thu 30 May 2024 12:24:36 +0000
ROA not before: Thu 30 May 2024 12:19:36 +0000
ROA not after: Thu 29 May 2025 12:24:36 +0000
asID: 152418
IP address blocks: 157.20.178.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:8e:9e:c9:c0:d3:6f:e5:53:7a:a5:02:76:7f:f0:a9:e6:c3:cd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Validity
Not Before: May 30 12:19:36 2024 GMT
Not After : May 29 12:24:36 2025 GMT
Subject: CN=5AAEFCD1E7B652B7A244620F8425FA80483BAFA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:8c:0e:e9:91:3b:24:43:65:54:fa:43:52:
65:78:bd:45:6f:ee:e9:49:02:2b:df:ef:84:65:c2:
7d:c8:25:50:f1:49:a9:49:8a:03:67:a0:ea:50:0e:
ad:58:7a:6b:2f:55:6f:3b:dd:ad:c0:30:5d:0b:8f:
31:27:67:03:29:6b:53:e2:bd:d9:ad:0c:4b:26:30:
e1:95:71:5c:f3:b0:1a:87:82:e9:c0:8a:0b:4e:d0:
96:60:47:3e:3e:65:5f:ec:cb:d8:a4:45:98:32:dd:
0f:c0:56:e2:a6:fe:7d:2d:78:cf:e7:0f:70:26:26:
64:05:fa:ab:42:c1:4b:96:cb:19:1e:4d:5d:3d:40:
6d:86:89:01:12:33:b5:dd:43:67:9f:c5:1c:c1:91:
e4:df:60:6d:60:ba:d6:c2:ef:86:2c:1a:11:9b:95:
7a:f4:11:02:a9:19:93:05:4e:b9:24:d9:6d:2f:ef:
a5:34:b2:96:78:fb:2e:a2:75:2c:c7:5e:92:3e:bc:
cf:50:44:35:8a:32:33:d5:e7:1f:f5:02:51:f6:6c:
ca:52:8d:c8:ee:48:bc:71:92:36:20:1c:11:2a:50:
c6:cc:16:16:ac:49:02:c1:2b:6e:12:8a:15:c8:5f:
d3:a0:15:3d:23:63:e6:61:a1:ff:e0:e7:c0:25:b7:
b1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AE:FC:D1:E7:B6:52:B7:A2:44:62:0F:84:25:FA:80:48:3B:AF:A7
X509v3 Authority Key Identifier:
keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.178.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:5b:3f:b2:f8:0f:d3:73:67:ef:70:e1:54:ed:74:d1:da:38:
8d:22:77:93:0b:ed:3a:af:8b:4d:ef:be:7a:4d:53:ed:31:48:
e2:9e:95:be:d6:02:dd:57:6a:ff:b0:b8:00:00:8a:49:c7:02:
f5:2e:e2:bb:c0:ec:a5:ec:d0:6a:63:9a:1c:8a:c7:cd:4a:d7:
d7:49:a8:35:2e:43:57:8d:0a:ba:43:91:d2:ba:8c:98:5d:fc:
67:57:c6:b4:da:74:47:a9:aa:0e:21:fd:1f:57:9c:16:45:9a:
b6:9a:bb:9e:33:84:c7:ee:3c:1e:78:f1:a6:ee:b1:cf:4c:12:
d2:94:18:e1:c9:0e:fd:3f:c1:9a:67:26:e3:49:c3:1a:2d:a6:
50:18:cc:60:36:cf:e8:65:aa:78:42:f8:95:18:32:9b:ae:2e:
4d:4f:f2:73:2b:c7:9c:c2:ab:11:40:b5:fc:1a:46:58:91:8a:
6c:e9:e7:f4:ab:f3:91:8f:71:14:3a:f3:eb:5d:fd:31:0a:41:
72:61:29:1c:5f:79:ef:a3:fb:3d:b4:87:87:f4:a0:c4:36:e5:
00:04:17:29:ab:88:97:e8:0c:9f:89:b1:2d:04:b3:23:36:4c:
f4:bd:a0:07:ba:c7:93:16:69:d0:88:48:d1:bf:29:be:50:d3:
8f:08:64:a6
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUVo6eycDTb+VTeqUCdn/wqebDzQMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz
NjE4MjMxQTAeFw0yNDA1MzAxMjE5MzZaFw0yNTA1MjkxMjI0MzZaMDMxMTAvBgNV
BAMTKDVBQUVGQ0QxRTdCNjUyQjdBMjQ0NjIwRjg0MjVGQTgwNDgzQkFGQTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUS4wO6ZE7JENlVPpDUmV4vUVv
7ulJAivf74Rlwn3IJVDxSalJigNnoOpQDq1YemsvVW873a3AMF0LjzEnZwMpa1Pi
vdmtDEsmMOGVcVzzsBqHgunAigtO0JZgRz4+ZV/sy9ikRZgy3Q/AVuKm/n0teM/n
D3AmJmQF+qtCwUuWyxkeTV09QG2GiQESM7XdQ2efxRzBkeTfYG1gutbC74YsGhGb
lXr0EQKpGZMFTrkk2W0v76U0spZ4+y6idSzHXpI+vM9QRDWKMjPV5x/1AlH2bMpS
jcjuSLxxkjYgHBEqUMbMFhasSQLBK24SihXIX9OgFT0jY+Zhof/g58Alt7G3AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUWq780ee2UreiRGIPhCX6gEg7r6cwHwYDVR0j
BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4
NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4
MjMxQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNjA2NmU4LThlMTktNGRlNy05
NDdiLTk0ZWUzY2QwOWY4NS8wLzMxMzUzNzJlMzIzMDJlMzEzNzM4MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSyMA0GCSqG
SIb3DQEBCwUAA4IBAQAOWz+y+A/Tc2fvcOFU7XTR2jiNIneTC+06r4tN7756TVPt
MUjinpW+1gLdV2r/sLgAAIpJxwL1LuK7wOyl7NBqY5ocisfNStfXSag1LkNXjQq6
Q5HSuoyYXfxnV8a02nRHqaoOIf0fV5wWRZq2mrueM4TH7jweePGm7rHPTBLSlBjh
yQ79P8GaZybjScMaLaZQGMxgNs/oZap4QviVGDKbri5NT/JzK8ecwqsRQLX8GkZY
kYps6ef0q/ORj3EUOvPrXf0xCkFyYSkcX3nvo/s9tIeH9KDENuUABBcpq4iX6Ayf
ibEtBLMjNkz0vaAHuseTFmnQiEjRvym+UNOPCGSm
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:19 2025 by rpki-client