Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa
File: 3131372e35332e3135312e302f32342d3234203d3e203538333937.roa (raw, json)
Hash identifier: Si3tPvzTYMJNo6ziKI0r83ugddQoVhs+qZtKjviywZY=
Subject key identifier: 30:2F:7B:63:09:EE:D3:75:15:B7:5B:D4:B4:BC:0F:E3:68:A6:8E:E8
Certificate issuer: /CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE
Certificate serial: 08C1B31CCFD3801272C6BE4E534F38F7A74100D3
Authority key identifier: C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa
Signing time: Fri 08 Nov 2024 22:00:01 +0000
ROA not before: Fri 08 Nov 2024 21:55:01 +0000
ROA not after: Fri 07 Nov 2025 22:00:01 +0000
asID: 58397
IP address blocks: 117.53.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:c1:b3:1c:cf:d3:80:12:72:c6:be:4e:53:4f:38:f7:a7:41:00:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C69005BB7BA468A10A32CE44E9C4CE78538998AE
Validity
Not Before: Nov 8 21:55:01 2024 GMT
Not After : Nov 7 22:00:01 2025 GMT
Subject: CN=302F7B6309EED37515B75BD4B4BC0FE368A68EE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:54:d3:74:9f:1a:4a:54:9c:ee:31:fb:b4:61:
07:09:1f:09:61:c6:70:d1:45:b8:0b:b4:1f:f5:50:
32:26:e3:79:e4:cb:fa:e8:0f:91:c7:cc:58:50:b7:
44:21:1c:d8:5e:c5:87:5e:28:dd:c7:a8:26:f5:57:
04:fd:07:96:a7:5b:c6:4a:70:42:b4:86:5d:24:04:
f0:72:69:6c:b6:a7:41:46:00:32:a3:54:64:ef:36:
25:f6:98:24:6a:e8:3f:dc:f1:2e:a2:ae:5c:fc:36:
f4:6e:5c:54:99:f3:5e:e9:a8:24:6c:ba:7f:1b:d8:
eb:e5:96:b3:fc:8d:dd:1e:b5:07:27:83:eb:c5:68:
ba:30:0c:38:1d:a1:0a:c0:27:f8:f7:2b:91:56:9b:
5d:3d:da:0f:fc:e3:fc:2b:22:6e:60:09:c6:47:6c:
e2:6f:aa:aa:a1:3b:1e:39:2d:7c:d7:61:4f:e9:4e:
e1:fa:eb:59:6b:ad:2c:35:a8:57:a3:0b:5c:76:71:
5d:68:e0:4e:6f:57:28:ee:5b:a5:bd:36:a9:68:d6:
87:8d:1d:1e:d2:a0:3e:97:3f:52:e2:87:13:45:37:
a9:f9:ab:c4:2c:10:82:64:d2:c8:96:14:42:33:0f:
f9:02:d4:e3:35:a3:d2:0e:02:b4:84:a4:71:f4:52:
f8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2F:7B:63:09:EE:D3:75:15:B7:5B:D4:B4:BC:0F:E3:68:A6:8E:E8
X509v3 Authority Key Identifier:
keyid:C6:90:05:BB:7B:A4:68:A1:0A:32:CE:44:E9:C4:CE:78:53:89:98:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/C69005BB7BA468A10A32CE44E9C4CE78538998AE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C69005BB7BA468A10A32CE44E9C4CE78538998AE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/3131372e35332e3135312e302f32342d3234203d3e203538333937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.53.151.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:0c:6a:de:78:5a:06:7f:a2:bf:50:04:df:5e:0d:78:b6:ba:
4e:07:58:a7:d3:a8:f2:91:60:e6:f8:67:fd:2e:b2:7c:9a:01:
2e:19:e1:a1:1f:02:b1:9c:e8:fc:cb:ae:1f:3c:22:47:45:dd:
41:22:2b:c9:a4:b2:9d:2b:be:a0:0f:a8:68:ee:fb:3a:b1:7d:
e6:3e:ae:ab:57:cf:90:70:a6:34:87:d2:3e:5b:1e:7c:c5:87:
a3:c5:61:91:5b:07:ad:40:73:a3:79:73:2a:a5:fa:94:2e:7f:
d3:20:b6:79:20:8d:ae:f2:98:78:27:96:e0:8b:de:43:af:46:
80:d8:a4:6f:b7:79:c5:ba:32:b4:b2:59:46:56:29:cb:2b:92:
08:64:85:71:26:8c:99:c7:ac:46:9f:10:2e:13:89:d1:86:41:
fa:53:f0:e3:3a:3b:dc:45:44:46:72:68:83:af:b7:dc:af:9a:
16:a6:01:08:11:e2:db:9f:6a:83:6b:1d:87:d8:cd:c7:9b:09:
52:9d:fc:3d:7b:d6:6c:ba:db:ce:0f:88:88:3b:56:ab:ef:d5:
ee:2e:4c:0d:79:9f:92:1f:5c:1e:8b:e1:2c:a2:a9:fd:f2:28:
68:56:ea:ae:ed:4a:b7:ee:9d:55:1d:94:cd:d6:ac:44:44:2e:
94:d9:a7:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:13 2025 by rpki-client