Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32332d3233203d3e20313533303634.roa
File: 3136302e32352e34382e302f32332d3233203d3e20313533303634.roa (raw, json)
Hash identifier: /rUcJeyUd1b6fJu3vZNYQIJ9uleZbXipEYIybBuU1gs=
Subject key identifier: 97:F6:1E:9A:47:9E:F9:75:F2:08:D8:2C:3F:10:49:A6:9C:E4:A6:B8
Certificate issuer: /CN=B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E
Certificate serial: 1DD16D29ED47B7B361A12B67C1ADBA21C67D1A84
Authority key identifier: B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32332d3233203d3e20313533303634.roa
Signing time: Mon 22 Jul 2024 14:07:46 +0000
ROA not before: Mon 22 Jul 2024 14:02:46 +0000
ROA not after: Mon 21 Jul 2025 14:07:46 +0000
asID: 153064
IP address blocks: 160.25.48.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:d1:6d:29:ed:47:b7:b3:61:a1:2b:67:c1:ad:ba:21:c6:7d:1a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E
Validity
Not Before: Jul 22 14:02:46 2024 GMT
Not After : Jul 21 14:07:46 2025 GMT
Subject: CN=97F61E9A479EF975F208D82C3F1049A69CE4A6B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:79:bf:cd:52:ac:5c:67:77:81:69:15:c8:
18:f2:17:21:df:1b:a6:dc:4c:46:3e:dd:fb:58:b7:
43:0a:0b:58:d4:68:90:11:1d:ee:bf:bb:d0:27:ff:
55:b6:b5:5b:eb:1a:44:19:9c:2e:0d:e2:8a:0e:0f:
00:3d:e0:d5:d8:8c:66:bb:24:9c:aa:bd:37:0e:71:
7c:68:39:fc:49:dc:bb:4b:4d:05:d0:f3:84:37:e1:
bd:b3:9b:64:fe:73:8d:92:22:b5:0b:b2:58:3c:56:
a0:42:4e:7a:d9:77:da:a3:1e:ba:9c:99:59:f0:83:
c4:16:12:1c:4d:6e:b0:cc:17:fd:61:a1:2e:fc:31:
fe:be:ee:d8:a6:2d:ab:35:5d:4c:0f:5c:1c:fd:0b:
fd:0f:4b:b0:c8:38:a4:52:06:f5:53:74:0e:3d:3a:
3f:69:53:42:6a:e5:06:7a:3b:d3:1f:03:56:20:f1:
a4:bc:d9:a1:51:7d:b6:9e:9c:e9:ad:53:55:7f:68:
a8:74:fb:2b:45:8d:19:1c:cd:d8:19:81:f5:8c:fe:
d5:54:e8:f3:e2:5f:60:5f:94:79:ec:17:60:ba:b3:
ea:a4:55:63:df:bc:d3:01:0a:49:41:a9:a4:3f:f7:
f4:1e:f1:03:59:de:10:ba:b9:83:36:41:a7:f9:a4:
47:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F6:1E:9A:47:9E:F9:75:F2:08:D8:2C:3F:10:49:A6:9C:E4:A6:B8
X509v3 Authority Key Identifier:
keyid:B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32332d3233203d3e20313533303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.48.0/23
Signature Algorithm: sha256WithRSAEncryption
40:0b:aa:d9:5a:4c:f4:c5:93:14:a3:db:60:bc:4e:12:21:e6:
15:52:f1:88:50:0f:54:22:4e:03:eb:52:90:82:5e:a5:f1:98:
35:93:19:b9:49:2e:69:31:de:51:af:a0:0d:f0:82:38:34:58:
01:cf:ba:99:43:72:1a:c9:ba:b7:17:b0:b7:04:24:47:4a:43:
be:99:90:c9:97:af:ca:39:c3:c4:d4:5b:4b:b9:a1:a8:69:0a:
b3:f9:a6:03:4b:5d:33:5b:eb:4c:7e:b9:5e:1e:f1:7e:d6:db:
92:52:86:c6:62:dd:96:b7:0e:e7:f4:d5:f1:13:30:e7:7c:f1:
bf:f4:a1:8c:25:ac:95:4b:f4:d2:70:a3:a8:44:1f:bf:fc:4b:
36:40:00:2c:39:ae:b5:47:e5:22:c4:18:37:c3:38:9f:cc:1a:
4b:5f:37:b7:23:60:e7:d6:1c:bc:ef:25:9d:c9:23:40:c3:21:
28:13:41:f2:52:af:12:8f:8c:14:e0:ee:79:27:72:11:75:b0:
df:bb:14:72:74:d0:71:44:d1:b2:94:9c:fc:9c:b9:19:fc:40:
f8:11:4f:00:07:79:2c:c8:45:d7:59:57:87:5e:a3:09:ae:6b:
f7:bc:92:be:cf:6e:fb:84:b8:d3:89:59:f5:2a:62:9d:5f:31:
86:fc:41:c8
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUHdFtKe1Ht7NhoStnwa26IcZ9GoQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjU3NjZFRjk2OUY1QkIwQTdDNzZGQUE5RTUzQkRFODI3
NEU1NjQzRTAeFw0yNDA3MjIxNDAyNDZaFw0yNTA3MjExNDA3NDZaMDMxMTAvBgNV
BAMTKDk3RjYxRTlBNDc5RUY5NzVGMjA4RDgyQzNGMTA0OUE2OUNFNEE2QjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp6Hm/zVKsXGd3gWkVyBjyFyHf
G6bcTEY+3ftYt0MKC1jUaJARHe6/u9An/1W2tVvrGkQZnC4N4ooODwA94NXYjGa7
JJyqvTcOcXxoOfxJ3LtLTQXQ84Q34b2zm2T+c42SIrULslg8VqBCTnrZd9qjHrqc
mVnwg8QWEhxNbrDMF/1hoS78Mf6+7timLas1XUwPXBz9C/0PS7DIOKRSBvVTdA49
Oj9pU0Jq5QZ6O9MfA1Yg8aS82aFRfbaenOmtU1V/aKh0+ytFjRkczdgZgfWM/tVU
6PPiX2BflHnsF2C6s+qkVWPfvNMBCklBqaQ/9/Qe8QNZ3hC6uYM2Qaf5pEe/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUl/Yemkee+XXyCNgsPxBJppzkprgwHwYDVR0j
BBgwFoAUtXZu+Wn1uwp8dvqp5TvegnTlZD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
NTY4MmJmMi0wNjM0LTQ3ODItYTVhZi1lZWI5MTlmMTkxNDMvMC9CNTc2NkVGOTY5
RjVCQjBBN0M3NkZBQTlFNTNCREU4Mjc0RTU2NDNFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvQjU3NjZFRjk2OUY1QkIwQTdDNzZGQUE5RTUzQkRFODI3NEU1
NjQzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NjgyYmYyLTA2MzQtNDc4Mi1h
NWFmLWVlYjkxOWYxOTE0My8wLzMxMzYzMDJlMzIzNTJlMzQzODJlMzAyZjMyMzMy
ZDMyMzMyMDNkM2UyMDMxMzUzMzMwMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAZMDANBgkqhkiG
9w0BAQsFAAOCAQEAQAuq2VpM9MWTFKPbYLxOEiHmFVLxiFAPVCJOA+tSkIJepfGY
NZMZuUkuaTHeUa+gDfCCODRYAc+6mUNyGsm6txewtwQkR0pDvpmQyZevyjnDxNRb
S7mhqGkKs/mmA0tdM1vrTH65Xh7xftbbklKGxmLdlrcO5/TV8RMw53zxv/ShjCWs
lUv00nCjqEQfv/xLNkAALDmutUflIsQYN8M4n8waS183tyNg59YcvO8lnckjQMMh
KBNB8lKvEo+MFODueSdyEXWw37sUcnTQcUTRspSc/Jy5GfxA+BFPAAd5LMhF11lX
h16jCa5r97ySvs9u+4S404lZ9SpinV8xhvxByA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 19:58:09 2025 by rpki-client