Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa
File: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (raw, json)
Hash identifier: k/SYZle1NkfnFNVvY93UJAk7vhv/223CGCuJXPKjR+M=
Subject key identifier: DF:96:3E:CB:9B:C7:50:59:B3:04:46:F2:50:DA:E9:C9:66:A3:83:A3
Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Certificate serial: 50090A16C373DA3C250103EBBB9BAC5C2CE67867
Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa
Signing time: Thu 30 May 2024 12:24:07 +0000
ROA not before: Thu 30 May 2024 12:19:07 +0000
ROA not after: Thu 29 May 2025 12:24:07 +0000
asID: 152418
IP address blocks: 157.20.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:09:0a:16:c3:73:da:3c:25:01:03:eb:bb:9b:ac:5c:2c:e6:78:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A
Validity
Not Before: May 30 12:19:07 2024 GMT
Not After : May 29 12:24:07 2025 GMT
Subject: CN=DF963ECB9BC75059B30446F250DAE9C966A383A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c4:50:c0:e5:2e:88:6b:ed:be:d3:f9:57:af:
8e:dc:12:82:9d:32:d2:4f:f4:ce:d3:13:79:4e:ad:
25:97:5d:27:d4:eb:e6:ec:c2:ad:36:9d:13:ac:f8:
ef:51:ab:60:7c:ea:b9:a7:c0:97:c3:9b:57:99:c3:
86:70:0d:4a:fe:79:8d:01:a5:62:e8:d9:b0:d3:0a:
de:89:1f:e4:c3:33:e4:7d:f8:b3:91:b3:6b:b0:4f:
2c:0a:29:c7:99:3f:1b:31:bb:7f:d2:b2:cb:01:71:
25:ef:99:80:37:03:c9:2b:82:3a:0f:56:dd:3a:ee:
7a:7e:37:4d:a4:7e:00:5b:6b:ed:ac:83:07:3f:5f:
6a:a3:d2:31:3b:1a:f3:b6:b8:4b:9a:a9:37:94:7b:
27:05:5d:7b:71:c6:86:e8:4a:b3:40:42:df:ae:e9:
37:4a:20:be:46:c4:15:c2:f9:c6:f4:d2:0d:1b:ec:
52:2a:38:b2:7d:2a:4b:bd:29:34:61:aa:88:b1:67:
ad:f7:db:8c:b6:9a:00:bf:63:50:40:97:2a:7e:6a:
57:40:c1:3f:a3:d5:d6:11:31:b7:84:8d:c0:71:cf:
c7:4f:e6:55:87:d1:7a:fd:c4:58:33:83:f6:7e:3e:
0a:09:3e:c5:b9:8c:c1:f3:94:98:8c:67:3f:b4:df:
24:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:96:3E:CB:9B:C7:50:59:B3:04:46:F2:50:DA:E9:C9:66:A3:83:A3
X509v3 Authority Key Identifier:
keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.179.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:07:c6:40:3a:6a:e6:31:ba:b1:1a:9d:1c:e0:c7:af:48:f7:
4d:e9:c4:91:82:50:9d:c3:70:09:d6:03:e8:88:30:68:c0:2f:
1c:05:d9:36:25:c8:36:aa:1a:06:4d:42:68:a5:4b:92:30:5f:
b3:46:f2:d7:52:01:9a:95:00:a8:3c:dd:82:32:bc:76:f8:94:
75:ed:35:18:59:b7:13:36:6e:4e:e0:7b:8e:2d:10:b2:fb:25:
95:57:f5:8d:2f:ef:ee:bd:44:85:f6:61:8b:ec:72:bf:10:e2:
89:14:e1:3f:bf:56:f0:a5:e3:ee:94:e7:50:d7:6b:48:e7:aa:
04:50:a5:41:81:c9:54:4f:ae:32:d7:4f:a8:57:2c:e0:2a:75:
09:e1:1a:1f:46:20:a3:f2:f3:9c:ae:33:0f:a8:ad:6e:2c:9b:
9e:2b:af:ea:e2:91:b6:ac:98:cc:32:d4:1a:54:31:df:86:2e:
30:0c:92:2f:c9:3b:89:ba:87:13:5c:24:de:d2:dc:3e:51:90:
d1:09:29:63:e0:d7:cc:64:1f:70:5a:42:8c:14:1b:64:b9:46:
1b:b4:ea:e3:c6:c3:d3:cd:73:74:8c:c5:26:51:c4:a5:53:de:
c2:0e:b7:a3:f3:c2:bb:fc:80:aa:20:db:31:64:9e:22:fb:a5:
a3:95:73:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:32 2025 by rpki-client