Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa
File: 3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa (raw, json)
Hash identifier: WFmbb45OsdQGYdiCaJz96N1Zz/BAAt0EgzBxqgChylM=
Subject key identifier: 5B:62:8D:96:87:43:01:AE:E2:C9:99:25:7B:A0:4F:6E:D2:F9:04:98
Certificate issuer: /CN=69FEA3D523BC4635AE385A6D91412834159FF34B
Certificate serial: 4F7CC57CD6374968A65F3DEFBE74178960E1722D
Authority key identifier: 69:FE:A3:D5:23:BC:46:35:AE:38:5A:6D:91:41:28:34:15:9F:F3:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/69FEA3D523BC4635AE385A6D91412834159FF34B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa
Signing time: Wed 24 Jul 2024 00:34:43 +0000
ROA not before: Wed 24 Jul 2024 00:29:43 +0000
ROA not after: Wed 23 Jul 2025 00:34:43 +0000
asID: 152841
IP address blocks: 160.22.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:7c:c5:7c:d6:37:49:68:a6:5f:3d:ef:be:74:17:89:60:e1:72:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69FEA3D523BC4635AE385A6D91412834159FF34B
Validity
Not Before: Jul 24 00:29:43 2024 GMT
Not After : Jul 23 00:34:43 2025 GMT
Subject: CN=5B628D96874301AEE2C999257BA04F6ED2F90498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3c:b3:c4:7c:ef:a7:e6:64:76:73:40:43:dd:
59:6e:7a:60:56:25:46:39:c0:43:24:d9:77:c6:da:
bb:35:45:0d:55:b9:5e:7d:41:c7:77:1c:a6:2c:42:
16:b3:e2:95:24:e8:02:9d:89:c0:7f:6c:e3:df:4f:
ee:b8:c7:fe:e2:b5:eb:26:ef:e7:f5:a5:72:42:72:
7e:5e:ef:fa:e2:25:07:44:31:f2:79:59:3f:31:e6:
e4:01:15:cf:9c:21:43:cc:23:fa:a1:39:b8:f4:14:
fd:f6:21:7e:dc:ab:d7:a9:ef:36:44:d9:bf:03:a2:
80:ae:02:5e:df:df:a5:02:f2:ed:57:f0:2f:67:37:
b2:d4:7e:2e:3d:37:aa:c8:0f:48:dc:24:5f:63:e6:
e6:de:07:91:85:b5:71:eb:e9:84:89:9f:82:e4:eb:
ae:ab:25:7b:2d:c7:8e:a1:9a:78:f3:b6:18:97:cb:
24:42:8e:0f:62:4a:0f:07:5f:aa:85:1d:12:d9:fe:
0c:14:67:63:1b:eb:14:43:66:19:03:9b:c5:44:71:
a6:e8:67:7a:10:1a:bb:55:6c:2e:64:bc:bf:63:fc:
3f:35:5b:94:d9:3e:8d:ee:39:ab:7a:2a:13:70:52:
74:6a:05:a4:5e:0c:87:57:ce:25:f2:53:87:ae:e0:
4b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:62:8D:96:87:43:01:AE:E2:C9:99:25:7B:A0:4F:6E:D2:F9:04:98
X509v3 Authority Key Identifier:
keyid:69:FE:A3:D5:23:BC:46:35:AE:38:5A:6D:91:41:28:34:15:9F:F3:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/69FEA3D523BC4635AE385A6D91412834159FF34B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/69FEA3D523BC4635AE385A6D91412834159FF34B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/0/3136302e32322e3231372e302f32342d3234203d3e20313532383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.217.0/24
Signature Algorithm: sha256WithRSAEncryption
78:8b:d5:28:c2:86:d3:77:a2:92:30:38:e7:56:76:bb:1e:5d:
06:22:34:c3:b4:94:81:50:68:67:e0:58:dd:fe:d6:aa:be:01:
78:4a:48:92:66:5e:35:d3:01:c8:f8:dd:bf:16:0d:57:e9:bd:
b1:8a:b5:ab:0a:fc:42:b4:39:74:fb:db:e6:6d:ca:b0:c2:4c:
a8:8a:4d:f2:c7:30:e9:46:a2:64:e2:cc:d8:da:b9:a1:96:9c:
79:b9:bd:5a:ff:49:8b:f5:2e:2c:be:9c:44:85:bf:89:5f:96:
e7:e6:4e:1e:99:63:da:03:c3:37:ff:9a:1b:d6:cf:29:b3:83:
93:9a:a0:94:37:ba:bf:17:b7:6c:fd:2d:a6:82:07:c8:96:99:
3c:d8:5d:15:ad:af:37:ae:22:2a:67:31:66:70:a1:c6:22:e1:
b3:c8:4d:6f:a7:87:3a:98:85:86:52:c6:3c:5c:de:57:14:92:
d8:08:95:8a:96:84:53:31:6a:50:a6:48:0f:5b:52:2a:78:3e:
d4:99:e3:0e:a6:db:10:69:27:d6:04:78:63:3c:71:8a:82:99:
3c:cc:77:e2:24:a9:9f:af:a2:1a:cc:40:07:65:fc:27:c8:69:
18:ee:61:f2:63:74:15:d5:3a:76:93:b7:6e:b4:e8:a1:da:a8:
aa:82:d5:9f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUT3zFfNY3SWimXz3vvnQXiWDhci0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjlGRUEzRDUyM0JDNDYzNUFFMzg1QTZEOTE0MTI4MzQx
NTlGRjM0QjAeFw0yNDA3MjQwMDI5NDNaFw0yNTA3MjMwMDM0NDNaMDMxMTAvBgNV
BAMTKDVCNjI4RDk2ODc0MzAxQUVFMkM5OTkyNTdCQTA0RjZFRDJGOTA0OTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaPLPEfO+n5mR2c0BD3VluemBW
JUY5wEMk2XfG2rs1RQ1VuV59Qcd3HKYsQhaz4pUk6AKdicB/bOPfT+64x/7itesm
7+f1pXJCcn5e7/riJQdEMfJ5WT8x5uQBFc+cIUPMI/qhObj0FP32IX7cq9ep7zZE
2b8DooCuAl7f36UC8u1X8C9nN7LUfi49N6rID0jcJF9j5ubeB5GFtXHr6YSJn4Lk
666rJXstx46hmnjzthiXyyRCjg9iSg8HX6qFHRLZ/gwUZ2Mb6xRDZhkDm8VEcabo
Z3oQGrtVbC5kvL9j/D81W5TZPo3uOat6KhNwUnRqBaReDIdXziXyU4eu4Ev7AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUW2KNlodDAa7iyZkle6BPbtL5BJgwHwYDVR0j
BBgwFoAUaf6j1SO8RjWuOFptkUEoNBWf80swDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
ZTdkNzM4ZS0yY2M3LTRiZDItYmIyOC05MTQyZTFiYWEwYmEvMC82OUZFQTNENTIz
QkM0NjM1QUUzODVBNkQ5MTQxMjgzNDE1OUZGMzRCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvNjlGRUEzRDUyM0JDNDYzNUFFMzg1QTZEOTE0MTI4MzQxNTlG
RjM0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlN2Q3MzhlLTJjYzctNGJkMi1i
YjI4LTkxNDJlMWJhYTBiYS8wLzMxMzYzMDJlMzIzMjJlMzIzMTM3MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBbZMA0GCSqG
SIb3DQEBCwUAA4IBAQB4i9UowobTd6KSMDjnVna7Hl0GIjTDtJSBUGhn4Fjd/taq
vgF4SkiSZl410wHI+N2/Fg1X6b2xirWrCvxCtDl0+9vmbcqwwkyoik3yxzDpRqJk
4szY2rmhlpx5ub1a/0mL9S4svpxEhb+JX5bn5k4emWPaA8M3/5ob1s8ps4OTmqCU
N7q/F7ds/S2mggfIlpk82F0Vra83riIqZzFmcKHGIuGzyE1vp4c6mIWGUsY8XN5X
FJLYCJWKloRTMWpQpkgPW1IqeD7UmeMOptsQaSfWBHhjPHGKgpk8zHfiJKmfr6Ia
zEAHZfwnyGkY7mHyY3QV1Tp2k7dutOih2qiqgtWf
-----END CERTIFICATE-----
Generated at Mon Apr 7 14:09:10 2025 by rpki-client