Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa
File: 3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa (raw, json)
Hash identifier: n0idqAAuE50Cj/bGGCbY0uwiIVXsU1cdHPDhEeqJtd0=
Subject key identifier: 45:CE:46:0E:66:87:2F:7D:42:EB:F7:5E:F5:22:2A:F3:F2:E3:AE:32
Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Certificate serial: 36481B83C73B1EBDE7680EE327140762BDECCAED
Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa
Signing time: Mon 01 Jul 2024 01:04:04 +0000
ROA not before: Mon 01 Jul 2024 00:59:04 +0000
ROA not after: Mon 30 Jun 2025 01:04:04 +0000
asID: 55699
IP address blocks: 116.193.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:48:1b:83:c7:3b:1e:bd:e7:68:0e:e3:27:14:07:62:bd:ec:ca:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Validity
Not Before: Jul 1 00:59:04 2024 GMT
Not After : Jun 30 01:04:04 2025 GMT
Subject: CN=45CE460E66872F7D42EBF75EF5222AF3F2E3AE32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cc:40:c2:9a:50:46:b8:6f:fa:0a:d5:24:e7:
a9:9b:4d:9b:2c:46:58:f1:90:53:f6:29:9c:3b:eb:
31:5d:31:71:c0:2e:0e:8a:71:1b:7a:8f:b3:7c:48:
d7:fd:60:49:56:72:a4:22:1c:c0:ae:86:f6:97:5c:
34:85:0c:ab:05:d8:b4:ff:a0:80:94:f4:c8:b0:95:
5f:13:cb:43:26:1c:bc:5f:33:f4:42:14:a5:8d:01:
cb:fd:56:bf:d0:93:40:b1:8c:8a:e4:ec:b4:91:6a:
c7:ac:dd:78:ab:49:2d:c0:56:f3:10:ee:0c:e8:7b:
81:6e:88:7a:25:c3:56:21:40:9d:f3:59:95:13:89:
dd:2a:9c:c8:f0:01:32:75:a2:69:df:f4:fb:7c:64:
4d:58:cc:2b:a6:4d:3c:40:a1:5e:ed:d6:43:eb:cf:
38:00:58:b1:b7:57:bb:43:ea:5f:8c:ab:00:71:c3:
51:19:63:cf:51:eb:fc:25:66:44:40:41:b2:35:2b:
84:4d:e6:d2:bd:96:0e:39:e1:cc:d2:c2:34:81:de:
5e:ee:d0:f9:61:66:44:37:21:b5:65:11:cc:e1:80:
8e:38:24:2d:3f:24:0e:86:59:b2:46:55:7b:d7:04:
53:90:56:b2:e0:fb:d5:bf:4b:72:d9:b9:19:aa:1b:
89:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CE:46:0E:66:87:2F:7D:42:EB:F7:5E:F5:22:2A:F3:F2:E3:AE:32
X509v3 Authority Key Identifier:
keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3131362e3139332e3137322e302f32322d3232203d3e203535363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.193.172.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:95:79:5c:4e:39:a0:a3:ab:59:ee:8c:9c:42:56:7d:f3:b4:
6e:1c:ab:b0:c7:bf:28:58:a4:25:1c:75:b4:12:73:84:dd:98:
73:19:a7:6a:1b:f0:90:63:60:1d:07:a2:97:24:b8:22:52:49:
14:14:42:90:db:70:82:a4:b1:15:4f:91:59:c6:37:cb:83:96:
02:d1:5b:b2:f3:49:7d:0b:72:c3:0e:54:9f:48:b8:7e:f3:99:
69:d3:52:d7:ea:6f:e2:23:85:78:07:40:d6:d9:c9:27:05:47:
ef:52:6b:63:22:c5:10:e5:8a:2e:5e:c2:6f:d1:23:fe:d3:79:
f0:b0:22:8e:16:71:38:66:c1:a8:be:07:92:4f:8f:45:73:98:
51:dc:81:3f:21:9a:21:58:18:40:41:77:64:16:4f:55:59:68:
cc:c3:82:fd:96:0f:e2:9e:9f:6b:45:d5:8e:d2:d3:0e:4b:63:
d3:af:7a:fe:3c:6e:8f:81:58:67:ae:d3:de:be:a5:43:66:e9:
6b:8c:c9:9d:ae:34:93:ec:66:fb:ff:4f:ef:e2:e6:4d:da:12:
87:a7:9d:7d:2d:23:9b:32:12:95:bc:e2:a2:13:d0:3d:40:61:
cd:f6:78:de:5b:ec:78:7f:43:72:32:13:1e:88:0b:32:65:0d:
98:28:ca:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:20 2025 by rpki-client