Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa
File: 3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: bCcQ1eUsvKRcahlMUsZR6bFvM5h2abxLpwu6sXsvIfI=
Subject key identifier: 43:0F:8C:A6:A0:D4:8E:DC:10:E3:71:B6:C1:7F:59:CF:8B:61:30:BD
Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Certificate serial: 269F47514030757F8FEBB201E7842C72DB3FDB9C
Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa
Signing time: Fri 25 Oct 2024 05:00:01 +0000
ROA not before: Fri 25 Oct 2024 04:55:01 +0000
ROA not after: Fri 24 Oct 2025 05:00:01 +0000
asID: 18059
IP address blocks: 150.107.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:9f:47:51:40:30:75:7f:8f:eb:b2:01:e7:84:2c:72:db:3f:db:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Validity
Not Before: Oct 25 04:55:01 2024 GMT
Not After : Oct 24 05:00:01 2025 GMT
Subject: CN=430F8CA6A0D48EDC10E371B6C17F59CF8B6130BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:2a:b9:a1:40:c7:b3:97:30:96:94:49:ca:
52:05:11:de:c7:81:8b:55:89:88:8e:e5:80:9a:98:
22:ab:b5:e1:9d:a1:c3:75:35:e5:ef:19:1a:4e:6a:
55:18:3d:12:d1:c8:9e:e6:dd:3c:41:60:06:01:22:
bf:3c:ad:71:70:2c:5d:77:42:48:35:40:d3:e9:d3:
92:88:d5:e3:21:b9:da:19:3b:7b:57:fd:c5:7a:e1:
97:9e:ba:ec:a0:c9:f9:0a:b8:4d:b6:4a:38:14:19:
e2:74:8d:91:1b:21:07:31:e8:38:75:aa:cc:0d:8c:
83:8d:18:68:0a:35:27:07:17:fe:df:ff:13:f2:d3:
6d:f4:b2:2f:62:80:64:9b:a1:c5:f4:44:d8:16:6c:
3c:15:d8:a1:a5:75:39:28:1b:33:8b:ae:46:bc:73:
a7:89:bf:0e:dc:d8:6b:bb:32:99:4c:16:8d:67:4e:
86:9b:6c:74:ca:aa:60:e7:6f:3b:57:f6:df:30:af:
64:85:35:00:86:d2:83:b1:cd:7f:3d:ed:cd:fb:c7:
53:68:ad:91:87:aa:b2:e6:63:71:5c:2d:18:ce:d9:
ef:79:bd:4b:4e:6e:97:32:e4:9e:1e:5b:81:be:0b:
77:2b:19:65:a0:10:75:81:e1:49:5c:49:c6:70:55:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0F:8C:A6:A0:D4:8E:DC:10:E3:71:B6:C1:7F:59:CF:8B:61:30:BD
X509v3 Authority Key Identifier:
keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3135302e3130372e3131312e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.107.111.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ac:58:a1:a1:81:3b:4e:15:68:ae:08:ea:91:23:aa:49:d5:
cb:10:e4:58:07:0b:85:76:c4:73:b1:21:0a:24:8f:5e:63:13:
a7:aa:f2:eb:5d:b8:01:73:a6:d6:d8:ff:62:e3:a3:6d:8b:84:
56:7e:77:55:e7:71:30:8b:0e:03:60:7b:2a:3f:d1:be:bf:26:
ee:01:82:36:87:f6:55:3e:f0:b6:5d:48:aa:29:6e:e9:d1:df:
06:6d:99:32:d8:70:34:91:13:8c:ad:ce:1b:29:cf:e7:eb:2a:
1b:94:72:e8:2d:82:b8:66:d5:6d:db:a7:29:41:8e:c2:c4:64:
91:bd:ec:27:47:b6:2f:20:ca:75:ce:7e:ce:af:50:79:a0:5f:
43:2a:38:cb:02:56:2a:8b:9d:81:a6:d9:39:fb:79:6a:d2:8b:
e3:0a:b5:f7:11:ea:4c:13:f6:0d:b4:8c:6e:e6:ef:49:1b:f7:
07:68:76:6a:a3:50:27:74:69:2c:0c:9e:c3:3e:bf:9b:8a:22:
78:53:3e:71:e1:1b:c8:38:c7:04:2f:60:ea:f3:69:67:79:e6:
ad:91:81:35:1d:3e:34:62:79:6c:e4:40:9e:03:3a:12:97:3b:
6f:f3:76:62:fe:a5:e8:de:6b:a0:43:8b:60:13:78:bc:a8:9f:
d1:0d:bd:bb
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUJp9HUUAwdX+P67IB54Qscts/25wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2
QzhBMUQ4RTAeFw0yNDEwMjUwNDU1MDFaFw0yNTEwMjQwNTAwMDFaMDMxMTAvBgNV
BAMTKDQzMEY4Q0E2QTBENDhFREMxMEUzNzFCNkMxN0Y1OUNGOEI2MTMwQkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPiq5oUDHs5cwlpRJylIFEd7H
gYtViYiO5YCamCKrteGdocN1NeXvGRpOalUYPRLRyJ7m3TxBYAYBIr88rXFwLF13
Qkg1QNPp05KI1eMhudoZO3tX/cV64ZeeuuygyfkKuE22SjgUGeJ0jZEbIQcx6Dh1
qswNjIONGGgKNScHF/7f/xPy0230si9igGSbocX0RNgWbDwV2KGldTkoGzOLrka8
c6eJvw7c2Gu7MplMFo1nToabbHTKqmDnbztX9t8wr2SFNQCG0oOxzX897c37x1No
rZGHqrLmY3FcLRjO2e95vUtObpcy5J4eW4G+C3crGWWgEHWB4UlcScZwVZFTAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUQw+MpqDUjtwQ43G2wX9Zz4thML0wHwYDVR0j
BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1
MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB
MUQ4RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyODM2NzYzLTEyYjYtNGQ4Zi1h
ZDBiLTRjZDViNjE5NTllZi8wLzMxMzUzMDJlMzEzMDM3MmUzMTMxMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlmtvMA0GCSqG
SIb3DQEBCwUAA4IBAQBIrFihoYE7ThVorgjqkSOqSdXLEORYBwuFdsRzsSEKJI9e
YxOnqvLrXbgBc6bW2P9i46Nti4RWfndV53Ewiw4DYHsqP9G+vybuAYI2h/ZVPvC2
XUiqKW7p0d8GbZky2HA0kROMrc4bKc/n6yoblHLoLYK4ZtVt26cpQY7CxGSRvewn
R7YvIMp1zn7Or1B5oF9DKjjLAlYqi52Bptk5+3lq0ovjCrX3EepME/YNtIxu5u9J
G/cHaHZqo1AndGksDJ7DPr+biiJ4Uz5x4RvIOMcEL2Dq82lneeatkYE1HT40Ynls
5ECeAzoSlztv83Zi/qXo3mugQ4tgE3i8qJ/RDb27
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:17 2025 by rpki-client