Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa
File: 35392e3135332e32342e302f32332d3233203d3e203539323835.roa (raw, json)
Hash identifier: Xz6SlFll/6iO1NEW4d3L0Zbxfk3HKgTbGTZOaZmaxK0=
Subject key identifier: D3:A1:F9:4D:FE:6E:77:81:2D:3E:8D:D3:C2:60:8E:73:EE:BD:15:22
Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Certificate serial: 724C4DBA0F5AB4BF808518E7D1B6C7146CCAF698
Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa
Signing time: Mon 01 Jul 2024 01:05:10 +0000
ROA not before: Mon 01 Jul 2024 01:00:10 +0000
ROA not after: Mon 30 Jun 2025 01:05:10 +0000
asID: 59285
IP address blocks: 59.153.24.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:4c:4d:ba:0f:5a:b4:bf:80:85:18:e7:d1:b6:c7:14:6c:ca:f6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42
Validity
Not Before: Jul 1 01:00:10 2024 GMT
Not After : Jun 30 01:05:10 2025 GMT
Subject: CN=D3A1F94DFE6E77812D3E8DD3C2608E73EEBD1522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:45:4a:b5:05:28:03:1f:cd:cb:7d:e5:76:
d1:b8:41:51:73:0f:0c:da:bd:65:c3:38:32:2d:5e:
7f:e2:56:d7:ae:7e:6a:12:23:f8:8f:e3:a0:de:b8:
45:9b:93:03:1a:f5:60:ed:43:9b:12:df:24:57:65:
3b:4d:a5:cc:15:6e:37:bf:8f:1a:26:31:87:f1:27:
36:14:c3:6c:9f:fb:6c:d2:0f:db:c2:23:e7:7b:8f:
ca:38:67:63:74:ba:f0:66:ad:d5:0a:c3:6b:d4:e9:
e2:0e:0f:56:42:93:76:88:32:6c:d8:ea:3c:31:0f:
84:f6:d6:69:9e:f4:42:54:1b:57:ec:b4:6e:17:00:
1f:5a:cb:c2:8a:86:5a:26:29:42:14:89:83:72:5d:
9f:5a:f3:19:10:47:16:7c:e1:d4:dc:4c:f7:82:d9:
6f:fa:3e:f0:74:76:ab:eb:fb:09:7e:bb:f3:68:f4:
91:27:f1:e7:61:f1:e2:cc:3a:36:d5:7a:ee:79:88:
75:f0:f0:65:35:08:ef:51:cc:13:0b:dd:38:b4:ad:
76:f8:01:0c:20:f8:80:8a:2a:8b:5c:90:1a:76:ea:
00:e2:a7:da:00:8b:08:49:e8:78:a2:1b:04:e3:f1:
10:26:76:4c:93:15:ac:3d:b4:5b:f9:9a:4d:c6:7b:
17:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A1:F9:4D:FE:6E:77:81:2D:3E:8D:D3:C2:60:8E:73:EE:BD:15:22
X509v3 Authority Key Identifier:
keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/35392e3135332e32342e302f32332d3233203d3e203539323835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
59.153.24.0/23
Signature Algorithm: sha256WithRSAEncryption
35:45:35:df:e1:f0:35:46:7a:ba:fb:87:ed:6c:cb:0b:b6:85:
e9:af:b0:f7:35:45:39:0f:01:d3:c4:e2:d8:f3:23:d3:36:e3:
29:af:1c:4c:8e:7c:2c:27:e6:fa:24:f9:26:da:1a:9e:ea:ee:
8e:b4:19:ad:a6:56:f9:4f:27:24:25:4e:09:50:13:85:39:20:
68:23:d1:f4:03:e0:35:58:8f:89:e4:26:16:a8:7a:05:7c:2b:
00:62:83:9b:88:d0:68:73:31:0b:1e:f1:82:b1:15:60:b0:82:
dc:28:ec:66:c7:61:ae:52:8f:46:ad:97:5d:ac:b4:eb:38:37:
72:97:2d:1c:3a:c5:4f:71:20:49:a5:d6:c3:47:da:ea:43:bf:
8c:ff:4c:38:ee:8b:00:a7:bd:ea:b7:a8:65:2b:4a:f2:ba:80:
d3:88:c4:cc:c5:31:d9:8d:23:84:ff:50:95:08:f6:b7:68:e2:
6c:d3:e5:7f:92:0c:aa:62:16:a8:56:cd:77:60:b0:38:85:4a:
11:94:85:12:e6:cd:f6:ec:28:04:88:0b:9c:97:d6:f7:de:1f:
50:08:d9:38:66:33:b4:9d:37:d1:de:eb:e6:bb:01:75:0e:93:
07:ee:b0:fc:ee:6c:ac:0c:64:85:b1:46:38:c5:2f:61:5e:d8:
09:ea:f2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:24:18 2025 by rpki-client