Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa
File: 3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa (raw, json)
Hash identifier: UFu8HMSGf8XDsGbPsoU1Eu+n+uIdk0W8r+YUHRms9EI=
Subject key identifier: 11:01:CD:14:E2:7A:20:37:5B:E9:6D:94:66:C8:52:07:A3:45:42:6E
Certificate issuer: /CN=6A755F0ECD114936B4C154BE153030E6BFE42025
Certificate serial: 3F14154720FFDC9777264243FFA5A3680EC5668D
Authority key identifier: 6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa
Signing time: Wed 30 Oct 2024 12:49:57 +0000
ROA not before: Wed 30 Oct 2024 12:44:57 +0000
ROA not after: Wed 29 Oct 2025 12:49:57 +0000
asID: 153111
IP address blocks: 160.25.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:14:15:47:20:ff:dc:97:77:26:42:43:ff:a5:a3:68:0e:c5:66:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A755F0ECD114936B4C154BE153030E6BFE42025
Validity
Not Before: Oct 30 12:44:57 2024 GMT
Not After : Oct 29 12:49:57 2025 GMT
Subject: CN=1101CD14E27A20375BE96D9466C85207A345426E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:11:9e:09:00:63:4d:56:a1:d5:c9:58:65:de:
b3:34:fa:fa:2f:bb:c8:f2:40:2e:b7:42:97:ad:4b:
ce:6e:48:df:9e:25:e7:d8:e4:aa:bb:ae:fb:f8:45:
34:01:38:1c:7e:30:21:86:9e:6a:a2:cd:22:96:33:
fc:da:db:53:1b:6b:2c:97:c9:3e:b0:86:93:fa:eb:
5a:a3:01:a7:27:73:e2:7a:3a:c6:46:b7:fc:79:24:
18:a7:1c:cb:8a:55:6d:71:67:af:b0:c5:cc:fa:45:
c9:ce:79:d2:5f:e6:60:a1:12:f1:b3:38:54:2e:85:
da:84:4e:3f:f3:cf:55:fb:aa:8b:40:b1:b5:ef:69:
62:f7:bb:19:a8:fd:cb:ff:e6:61:75:b6:69:a9:fe:
bb:82:56:8f:0b:c1:e2:1d:55:a3:6e:63:49:03:be:
2c:f5:f3:be:e0:29:61:df:2f:b2:36:fd:3f:56:1f:
8e:06:93:ff:70:83:ba:20:ab:b1:5e:67:0d:38:81:
b5:34:06:6d:23:b5:c1:aa:c0:da:90:27:af:0e:aa:
e3:06:9f:50:1e:ec:71:6d:75:ec:0b:9d:63:75:a3:
cf:a6:0e:8e:48:ac:e6:d9:49:8a:af:24:22:a6:14:
f9:b9:39:ce:c9:a8:97:6e:63:2b:13:d1:61:63:47:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:01:CD:14:E2:7A:20:37:5B:E9:6D:94:66:C8:52:07:A3:45:42:6E
X509v3 Authority Key Identifier:
keyid:6A:75:5F:0E:CD:11:49:36:B4:C1:54:BE:15:30:30:E6:BF:E4:20:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/6A755F0ECD114936B4C154BE153030E6BFE42025.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/6A755F0ECD114936B4C154BE153030E6BFE42025.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8cc1c7e-da74-4b11-b67a-d5f27d981757/0/3136302e32352e3234352e302f32342d3234203d3e20313533313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.245.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:31:8a:b4:ea:c9:f1:b4:46:d0:40:fb:33:6d:9e:68:4f:33:
f0:c6:8e:d3:68:15:a9:79:d9:04:65:dc:04:8f:8a:e8:3a:e5:
bd:da:fd:63:5b:9b:ca:d7:26:3b:a1:ee:d0:c3:e6:07:6f:4f:
58:7b:fc:8b:04:74:5f:98:ab:b0:e5:c0:3d:e6:b3:65:93:25:
c2:18:b1:ec:fd:d8:3b:af:51:54:f7:28:25:d4:9b:af:a5:f9:
95:b2:b5:11:e8:18:e4:19:77:6b:ef:04:e5:0d:fc:e0:57:05:
be:7c:d9:eb:91:95:53:a5:56:f7:c9:9a:70:3a:3c:4f:0c:c8:
4e:a8:be:9c:63:f0:ef:bf:77:f7:e1:04:fe:2d:a2:44:75:77:
07:bf:a6:2e:c4:93:44:24:d9:25:9c:e2:5a:44:74:bb:da:8d:
fc:a1:f8:c3:2f:96:5f:fc:4a:e1:83:cd:3f:36:53:9a:ac:24:
67:98:c7:62:ad:5a:54:14:c9:76:ee:d0:a5:83:9e:11:6a:b1:
bd:07:9a:e0:2e:53:ab:23:bc:83:95:12:34:ba:cf:6a:e1:75:
87:1a:6c:1f:9d:fe:c0:1a:72:61:cd:0a:3e:3d:dd:a2:69:4c:
44:26:a7:1b:e8:be:b2:a2:77:5e:f8:9d:34:74:73:f2:f8:45:
7e:12:35:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:27:06 2025 by rpki-client