Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json)
Hash identifier: LJqj41DPIYT1XUxln+g9aR89Yjdsp3hvnQJB8ehV2Z0=
Subject key identifier: C9:5C:1E:08:69:B7:10:3F:C6:5B:CE:7F:C5:34:B9:94:61:13:41:15
Certificate issuer: /CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD
Certificate serial: 0944F18F4EB5530E081CA369341659641B7A5DF1
Authority key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
Signing time: Thu 12 Dec 2024 05:00:02 +0000
ROA not before: Thu 12 Dec 2024 04:55:02 +0000
ROA not after: Thu 11 Dec 2025 05:00:02 +0000
asID: 152082
IP address blocks: 157.10.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:44:f1:8f:4e:b5:53:0e:08:1c:a3:69:34:16:59:64:1b:7a:5d:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD
Validity
Not Before: Dec 12 04:55:02 2024 GMT
Not After : Dec 11 05:00:02 2025 GMT
Subject: CN=C95C1E0869B7103FC65BCE7FC534B99461134115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:cb:ff:de:1d:7c:8d:43:83:65:9c:58:5e:
f5:04:11:75:f9:2a:b5:13:c3:ab:b1:ff:bf:bb:de:
d8:09:9e:ed:4b:75:bf:ea:c7:0b:45:4d:7b:c4:d0:
7a:6e:f2:0b:76:75:d3:07:f1:04:b6:ec:ea:f4:d3:
5d:34:8e:d5:67:a0:a3:45:9c:6f:dc:b7:35:88:bd:
78:50:02:48:86:99:2e:99:bb:f6:1d:b5:0e:2f:74:
a9:a5:79:b1:76:db:c1:12:c6:06:c4:76:aa:8c:ec:
2c:24:b3:8d:38:b5:70:1a:f3:ae:9b:18:0b:97:c2:
f0:e7:f7:d9:ca:0a:a3:88:48:f8:fd:37:6b:b7:7d:
ae:c4:fc:86:c9:81:4c:63:0c:d3:a3:8c:25:82:32:
15:f2:19:ff:cf:14:dc:11:8a:ff:72:ec:7b:ee:28:
b2:97:c5:82:e9:b1:41:27:ef:2d:05:cc:76:e9:41:
0c:84:fd:7f:00:7a:3e:15:93:31:d2:90:e5:46:c4:
69:62:d3:35:1a:61:68:6e:70:f8:d4:71:2b:ae:5c:
2e:ac:5a:4c:04:d7:1f:b4:19:44:5c:e8:d2:37:d2:
e9:96:9b:f3:c3:59:a1:dc:be:6c:e1:6a:f2:9d:3a:
72:86:48:e9:a2:e4:a7:fe:36:08:13:1d:7f:87:ba:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5C:1E:08:69:B7:10:3F:C6:5B:CE:7F:C5:34:B9:94:61:13:41:15
X509v3 Authority Key Identifier:
keyid:C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.88.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:2f:01:86:87:37:50:5d:68:69:91:12:2f:52:9e:47:e5:78:
cc:e0:72:48:8d:a4:5b:dc:35:4c:60:e2:6f:e1:e3:97:23:0d:
2c:6b:47:64:ec:42:cd:a0:64:29:8f:51:ac:a1:51:ea:bc:64:
53:49:7c:cc:70:60:e5:1d:6e:24:54:47:84:c4:c6:7c:c5:3b:
e6:cd:59:f2:5f:7f:23:f5:b7:27:45:51:0c:3b:f3:f6:d6:ce:
40:74:20:25:73:d1:5c:3d:d9:9a:da:16:a5:4a:06:65:65:52:
1e:d5:62:9a:65:22:71:aa:09:1e:9d:38:00:b3:c1:4a:97:75:
36:3f:40:03:40:66:dd:9d:64:a3:de:b6:c9:19:34:c3:16:c4:
26:78:0e:9d:af:b4:c2:3e:b8:06:e7:a7:e5:f9:22:91:9b:24:
a3:16:b7:31:86:40:86:80:2f:28:ba:dd:56:68:cb:d7:49:76:
47:be:f3:c7:28:ab:db:c2:b3:eb:51:1a:cd:1b:a1:ad:39:75:
f1:50:70:28:31:eb:b8:f4:3a:eb:0a:2b:df:77:5a:be:50:a5:
09:31:c8:fa:e3:ee:a0:f5:d9:ba:56:a5:2e:bc:70:9a:5e:40:
4d:6b:fa:32:c3:7e:e5:c3:01:02:5b:7d:6c:21:09:6b:87:0a:
1b:b5:2c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:30:12 2025 by rpki-client