Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e36342e302f32322d3232203d3e203535363939.roa
File: 3136302e31392e36342e302f32322d3232203d3e203535363939.roa (raw, json)
Hash identifier: x+/p3Q5ADGqhUvhLNv+geBcsDnQ0jyijDiW56RBXbO4=
Subject key identifier: E3:A6:80:4C:47:47:F2:B6:F9:8D:1E:4E:94:6A:C6:07:DF:AB:BD:88
Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Certificate serial: 6ACAB4263028DBD96CE70BC5E4D4D157C9BE3D6F
Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e36342e302f32322d3232203d3e203535363939.roa
Signing time: Mon 01 Jul 2024 01:04:05 +0000
ROA not before: Mon 01 Jul 2024 00:59:05 +0000
ROA not after: Mon 30 Jun 2025 01:04:05 +0000
asID: 55699
IP address blocks: 160.19.64.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ca:b4:26:30:28:db:d9:6c:e7:0b:c5:e4:d4:d1:57:c9:be:3d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Validity
Not Before: Jul 1 00:59:05 2024 GMT
Not After : Jun 30 01:04:05 2025 GMT
Subject: CN=E3A6804C4747F2B6F98D1E4E946AC607DFABBD88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:47:28:f0:b0:1a:2f:c8:4a:f5:26:7d:db:f3:
15:7f:f3:fa:6c:2d:d4:38:04:a5:ab:e9:c7:eb:08:
67:a7:16:34:75:f0:24:b8:e6:e9:e5:40:c1:bb:22:
52:9f:2c:d0:4d:9a:f4:1b:be:ae:de:65:e6:52:a2:
d4:df:c3:bc:05:b1:89:b4:c0:ef:26:31:99:a0:65:
c6:ac:29:fa:ba:f3:47:99:2c:b1:36:b4:ff:09:f1:
a6:c5:3a:ce:17:c7:45:cd:09:00:25:91:cf:6f:e1:
7c:05:b6:27:de:23:63:e3:db:69:e7:47:3a:c3:58:
6d:b4:7e:08:29:0f:2a:e6:11:c4:fe:71:f2:b3:2a:
23:29:c1:c7:b7:6f:6d:07:f9:1e:f2:de:67:66:70:
eb:67:6f:9a:ed:fa:a9:3d:cf:37:bb:56:1b:1e:99:
15:37:ae:70:bc:52:a5:4a:19:d3:43:8b:52:0a:f6:
e7:0b:22:d8:17:b6:07:b0:79:fa:f3:db:67:ae:93:
04:9a:4e:7c:12:2a:ad:21:03:17:b4:dc:94:40:de:
db:63:62:f7:3d:f7:cb:29:d9:03:f8:df:c5:e4:4d:
b6:c4:78:a3:3a:03:a7:14:92:2e:29:4d:c8:00:40:
ef:0d:df:06:ac:9f:43:02:1d:c0:ff:ac:72:0c:e6:
7b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A6:80:4C:47:47:F2:B6:F9:8D:1E:4E:94:6A:C6:07:DF:AB:BD:88
X509v3 Authority Key Identifier:
keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3136302e31392e36342e302f32322d3232203d3e203535363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.19.64.0/22
Signature Algorithm: sha256WithRSAEncryption
41:86:8c:ee:2a:e4:99:3c:be:09:14:bb:ee:75:b7:2c:91:19:
5d:ff:c3:4b:23:9b:14:4c:3f:4e:f7:5c:55:15:d3:ea:d5:94:
b3:12:b3:ad:76:57:f9:99:6b:6b:bf:c3:89:1d:fd:cf:04:f9:
86:77:45:53:a7:cb:5d:1d:96:89:6c:4d:6d:3c:2c:45:19:89:
4d:23:8d:17:e7:58:1c:86:67:ce:4b:04:47:16:3a:70:da:d7:
fc:8d:fe:f9:3f:9a:dc:cd:29:f8:77:b9:6a:c9:4c:84:ad:2c:
f5:77:d2:43:27:08:ca:1b:b6:cf:a7:0b:64:2e:4a:9b:87:9b:
5f:88:67:eb:59:7c:8e:67:67:9f:44:00:fa:ed:12:23:0a:99:
be:22:f4:db:d7:d2:98:6c:02:be:63:b4:84:a5:e3:ba:76:d8:
cc:d7:5f:42:4b:c4:a1:c4:85:03:d1:d2:ff:1a:48:ba:22:bd:
83:b5:4f:17:40:b4:c5:9d:eb:08:ce:db:a7:b0:4c:db:44:bf:
4c:0a:c3:7e:e3:0c:8d:88:8e:ef:34:42:55:b1:ba:ec:79:63:
0f:ed:7d:ca:06:4c:10:dc:00:38:14:78:f8:4c:73:d2:aa:96:
56:fa:ae:bb:5c:1b:73:4a:64:1d:61:80:ae:24:53:55:ac:75:
1f:4f:34:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:44:57 2025 by rpki-client