Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3136302e302f32302d3234203d3e203138303539.roa
File: 3131362e39302e3136302e302f32302d3234203d3e203138303539.roa (raw, json)
Hash identifier: i1IERBwQLu22z/CBS0qegiuU08euF67xqkMxnwBtK8Y=
Subject key identifier: 28:B1:AF:4A:10:7F:E5:8E:F7:B8:B0:0B:7B:82:1B:CD:B8:97:24:2D
Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Certificate serial: 0178DFCD002F62FD80B1DB6B041AC4D1FA109272
Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3136302e302f32302d3234203d3e203138303539.roa
Signing time: Fri 21 Mar 2025 09:02:23 +0000
ROA not before: Fri 21 Mar 2025 08:57:23 +0000
ROA not after: Fri 20 Mar 2026 09:02:23 +0000
asID: 18059
IP address blocks: 116.90.160.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:78:df:cd:00:2f:62:fd:80:b1:db:6b:04:1a:c4:d1:fa:10:92:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Validity
Not Before: Mar 21 08:57:23 2025 GMT
Not After : Mar 20 09:02:23 2026 GMT
Subject: CN=28B1AF4A107FE58EF7B8B00B7B821BCDB897242D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:47:f4:fc:e2:10:c2:9c:f7:57:30:b0:db:
8d:49:d4:f3:97:42:43:f0:6e:04:be:7d:35:ba:0a:
af:72:af:ea:cd:8d:ce:35:20:2d:ca:a1:9d:29:d8:
f4:a0:a4:e1:eb:8f:c8:82:c1:74:91:cd:49:29:f5:
ca:18:ad:5a:e7:f0:fe:98:ce:e2:bb:98:62:2c:88:
e8:c9:8f:78:9d:ed:dc:30:ad:7f:4e:c7:c9:56:39:
80:ef:dc:50:3f:1e:bd:a4:03:a5:d8:a9:3d:b4:77:
d0:29:95:da:87:9c:df:74:e3:1c:c7:81:cf:ba:73:
97:5f:06:dd:b2:ad:a3:f9:be:98:2d:7d:e7:e7:dd:
5f:10:08:73:b4:cc:a6:ff:d0:50:c8:49:8e:d3:2f:
d2:3d:49:81:97:73:da:69:2c:62:d1:56:a3:73:d6:
38:c0:93:4f:59:cb:e0:e5:e6:7e:7e:5c:df:76:8a:
c6:3d:f2:42:8a:bd:a1:53:a8:1a:b5:69:00:04:7f:
8c:d1:c3:00:ec:c7:6d:9c:87:60:dc:6a:37:d8:e1:
73:6e:d0:ab:df:07:e9:c3:4e:e6:6f:15:c0:aa:1b:
b0:2e:bd:e9:69:bd:c5:b5:fd:b2:09:38:d8:36:9c:
97:8e:c2:70:3e:83:20:40:cf:35:75:4b:ff:dc:dd:
ad:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B1:AF:4A:10:7F:E5:8E:F7:B8:B0:0B:7B:82:1B:CD:B8:97:24:2D
X509v3 Authority Key Identifier:
keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3131362e39302e3136302e302f32302d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.90.160.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:24:f4:49:85:94:06:bc:96:40:98:02:5d:59:b3:ac:39:33:
f2:e2:c1:a5:7d:5a:cd:be:b6:1e:eb:9c:9a:f3:92:cd:da:b9:
82:4f:4e:5a:d4:df:43:ed:92:91:a9:29:ef:7b:db:02:17:e2:
c8:7a:9f:f2:bd:6f:4f:e3:90:87:c5:df:06:45:e1:1d:cf:b5:
fa:cb:17:4a:bb:66:ef:d7:22:4d:ea:1c:f9:e7:40:3c:a1:73:
4d:50:01:9c:03:41:75:41:31:56:a2:b6:02:fb:11:bf:cc:57:
f2:51:cf:50:3f:98:47:27:ed:aa:2a:a9:ea:73:0b:cd:f5:02:
0d:ba:56:60:7a:28:dc:d3:07:91:80:dd:42:16:75:4f:61:dc:
33:2e:43:50:cb:94:3e:31:88:91:b1:4d:2b:e0:f3:be:49:cc:
fd:91:5c:34:b2:b2:d6:7e:60:35:ee:7f:ad:3b:d1:7e:5c:0c:
4c:7b:4e:89:1d:d4:47:a1:04:a8:f7:4a:03:98:76:c9:7f:56:
40:2a:80:17:b5:96:8e:69:26:fc:a8:0b:5b:20:59:84:e6:49:
70:3b:ee:64:88:43:07:33:9a:0d:c9:db:2c:60:b4:c2:5f:cd:
0c:82:36:ed:2c:e1:00:f1:dd:37:ef:87:dc:de:2d:59:9e:3f:
90:08:72:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:23:26 2025 by rpki-client