Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa
File: 34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa (raw, json)
Hash identifier: w3Ks91mwkS7NztUtNLKYf1Zt3ODkRQznfK1tF6ldT8k=
Subject key identifier: 96:A2:E4:6C:B6:59:DD:02:0E:DC:40:63:B5:4C:23:2C:8B:1D:00:04
Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087
Certificate serial: 2D53233A4D7E0F2E0B4D12C6B50CBDF864CF1C72
Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:02:45 +0000
ROA not before: Mon 01 Jul 2024 00:57:45 +0000
ROA not after: Mon 30 Jun 2025 01:02:45 +0000
asID: 131717
IP address blocks: 45.118.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:53:23:3a:4d:7e:0f:2e:0b:4d:12:c6:b5:0c:bd:f8:64:cf:1c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087
Validity
Not Before: Jul 1 00:57:45 2024 GMT
Not After : Jun 30 01:02:45 2025 GMT
Subject: CN=96A2E46CB659DD020EDC4063B54C232C8B1D0004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5c:61:66:57:76:ef:5a:47:5b:f4:4f:97:3a:
97:10:38:76:ee:fb:cf:3f:dd:10:a1:ea:7e:ca:13:
4b:04:52:1a:08:1e:5a:67:bb:4b:de:78:2f:4f:14:
6b:96:f8:20:84:66:20:7b:cf:04:53:fa:dc:0f:33:
31:56:d7:03:a1:25:0a:dd:38:3d:23:1d:3e:4c:96:
de:2b:49:03:91:38:89:97:f2:5b:3d:78:20:41:7f:
28:b9:43:87:ab:3e:c8:9d:35:e7:d3:e6:6b:ba:de:
56:da:ca:68:f4:44:9d:85:4b:1a:81:9c:a9:2c:83:
41:cd:bb:43:36:9b:36:05:fd:da:58:f8:bb:e7:05:
65:e7:7d:07:a8:37:8f:9a:1b:e0:39:7a:35:f9:4e:
1d:89:8b:b0:59:56:0f:71:b6:3d:ea:fa:e1:67:78:
18:a0:e4:43:91:24:fb:71:9d:97:45:19:92:1f:df:
57:f5:2e:54:6c:fc:50:48:fc:cf:30:fc:ca:28:40:
db:f8:d9:a0:58:ba:80:94:2d:19:d5:7a:c4:dd:76:
f2:b6:ae:4b:e3:3b:1a:58:8a:1f:ad:e4:82:00:1c:
cd:e9:52:d3:4c:cf:71:dc:fd:c1:7f:31:87:a3:b5:
b7:96:2e:07:47:35:cc:75:54:06:5d:b1:08:3c:f4:
93:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A2:E4:6C:B6:59:DD:02:0E:DC:40:63:B5:4C:23:2C:8B:1D:00:04
X509v3 Authority Key Identifier:
keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131352e302f32342d3234203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.118.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b7:1a:af:60:de:3d:b2:df:ee:dc:61:cc:5c:83:05:c0:41:
d6:bc:9c:e6:d7:ea:07:94:c5:a1:dd:5f:9e:d8:05:18:e3:20:
35:8f:7f:da:20:4e:3e:60:82:c0:ca:23:d9:e0:31:fa:3e:45:
e1:ac:20:f2:99:5a:7f:fd:97:80:a4:a6:61:36:b4:17:c3:df:
11:e4:5a:c9:ff:b1:82:ac:96:52:1d:ed:39:fe:61:af:f1:ef:
0d:fa:01:68:b0:36:b1:16:35:7e:77:1d:2c:c9:7b:e6:b0:b5:
0f:8f:cf:5c:8f:53:1c:c6:bd:85:37:40:6b:99:93:55:7b:4e:
c9:04:cb:de:b4:ec:aa:c9:7b:00:53:59:72:16:05:a3:ec:e0:
1c:55:51:2d:1b:c7:f7:f2:23:f1:4c:bf:64:0e:72:3b:65:f0:
b8:85:b6:66:77:b7:42:7b:76:1d:c7:f1:ab:1f:b9:b8:b7:5b:
f7:c8:3f:9f:ca:b0:80:8b:1d:6d:38:aa:88:4c:41:e8:bc:6d:
c7:06:f6:62:69:af:90:aa:13:74:eb:17:c2:66:54:9f:3d:2a:
b5:c6:64:47:83:8d:64:af:c4:cb:d1:e8:31:70:77:cb:f7:e3:
8b:36:36:cf:7e:e8:94:0b:19:b0:0f:31:be:c8:65:dc:c8:f1:
b8:ae:02:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:57 2025 by rpki-client