Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa
File: 34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa (raw, json)
Hash identifier: XT+BpWNDktvWNwFTQkLNNS/w5oWhizouaSiWM8/abUU=
Subject key identifier: 7B:8D:93:63:87:02:44:3F:64:21:A7:17:45:CE:9E:AB:E9:75:90:F1
Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087
Certificate serial: 4CD8FA150867050D06C2FA5F68ECE31D69F88BCB
Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:02:43 +0000
ROA not before: Mon 01 Jul 2024 00:57:43 +0000
ROA not after: Mon 30 Jun 2025 01:02:43 +0000
asID: 131717
IP address blocks: 45.118.112.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:d8:fa:15:08:67:05:0d:06:c2:fa:5f:68:ec:e3:1d:69:f8:8b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087
Validity
Not Before: Jul 1 00:57:43 2024 GMT
Not After : Jun 30 01:02:43 2025 GMT
Subject: CN=7B8D93638702443F6421A71745CE9EABE97590F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:b7:b7:78:d7:c2:24:a2:23:70:cf:5f:ec:
24:04:b3:ca:f0:7e:1c:f0:dc:f2:5f:c6:f6:9d:5b:
6a:cd:5e:d9:dd:bb:e2:91:72:26:7c:5d:be:9f:04:
03:d2:31:ca:89:8e:6b:a8:a6:18:4d:c5:19:a0:b6:
89:57:2d:69:78:aa:77:90:4f:3b:6b:fd:0d:31:3b:
5e:e0:d1:0b:a1:33:27:eb:31:cc:3c:67:41:48:b9:
db:20:aa:c0:c6:86:8f:02:50:de:8e:44:58:97:43:
b1:05:e3:69:ba:e4:32:3c:eb:91:40:b7:f2:ef:52:
3e:3c:0c:23:8d:c6:98:af:28:36:33:0c:80:ad:94:
47:78:c3:7f:50:1a:8e:75:7a:bf:1c:db:fe:45:b1:
4e:de:e1:d2:64:26:2f:2b:72:58:1d:94:61:b7:71:
23:d1:e5:20:c6:4e:c2:6e:49:ee:26:1c:e1:80:b0:
de:86:b1:61:24:ce:86:cb:46:90:0a:2c:65:af:82:
55:52:b2:a1:0e:f4:79:56:db:29:3e:a9:a3:b2:41:
d2:fb:e5:10:f2:ca:0a:12:aa:84:af:42:97:46:dc:
6a:5c:44:27:d0:45:00:42:f7:97:31:e8:9e:bb:54:
96:11:85:54:38:7a:d4:df:ed:1d:7c:ff:ae:87:bf:
a0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8D:93:63:87:02:44:3F:64:21:A7:17:45:CE:9E:AB:E9:75:90:F1
X509v3 Authority Key Identifier:
keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32332d3233203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.118.112.0/23
Signature Algorithm: sha256WithRSAEncryption
82:33:83:a0:5d:40:fe:b1:7c:c8:84:c2:6d:c4:16:5d:46:15:
b7:4d:99:e1:49:d0:6f:8d:7c:aa:4d:62:44:f1:49:bf:f5:09:
6e:06:f9:33:fd:d7:26:8c:55:69:8a:04:4e:60:cf:42:07:6a:
82:87:22:b9:21:71:70:43:33:f4:d3:b3:49:6d:ce:54:7d:5b:
67:9f:76:92:a3:80:32:1b:0e:e2:96:17:22:bd:1b:49:43:cc:
50:c7:53:b4:9b:6f:6b:41:c2:43:c9:d1:d1:0f:65:44:db:4a:
95:e4:a3:6a:fc:a1:e0:78:fd:0f:f4:bc:28:e4:ff:41:06:73:
88:aa:50:d8:b3:f4:50:8c:2d:ba:71:76:c3:e6:48:fa:6b:14:
3e:7f:69:fc:37:77:99:01:ea:50:08:68:a0:81:e4:21:95:94:
fa:5a:5b:14:86:cb:85:b1:11:40:7f:55:55:50:61:3b:c7:de:
1e:bb:6e:4a:a1:64:17:f8:6d:57:c1:8b:cc:6e:cf:24:f5:7d:
35:c3:71:13:99:29:95:93:83:87:f3:7a:c4:18:17:25:04:61:
62:d6:f7:79:b2:f5:92:41:a7:36:35:8c:23:dd:95:24:2a:97:
80:a1:bd:37:b4:73:d8:dc:cd:8b:de:71:2a:c7:02:07:9e:2b:
e5:cc:9f:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:53 2025 by rpki-client