Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32342d3234203d3e20313533303634.roa
File: 3136302e32352e34382e302f32342d3234203d3e20313533303634.roa (raw, json)
Hash identifier: dVHu44pKcvz5U1omvV2/zPeIxZKwNKUUdjHfrjYDpmg=
Subject key identifier: 32:10:0D:CC:1B:9E:5C:70:71:C0:36:59:E2:87:42:97:9E:0F:49:D3
Certificate issuer: /CN=B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E
Certificate serial: 399F9374374A918D665C702429DC29ACA3926144
Authority key identifier: B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32342d3234203d3e20313533303634.roa
Signing time: Mon 22 Jul 2024 14:00:16 +0000
ROA not before: Mon 22 Jul 2024 13:55:16 +0000
ROA not after: Mon 21 Jul 2025 14:00:16 +0000
asID: 153064
IP address blocks: 160.25.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:9f:93:74:37:4a:91:8d:66:5c:70:24:29:dc:29:ac:a3:92:61:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E
Validity
Not Before: Jul 22 13:55:16 2024 GMT
Not After : Jul 21 14:00:16 2025 GMT
Subject: CN=32100DCC1B9E5C7071C03659E28742979E0F49D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d8:c6:cc:6e:e9:eb:58:f9:43:ac:94:b6:1b:
b3:1a:6d:aa:74:8b:37:3d:85:37:82:38:59:20:f8:
1a:a0:e8:50:59:04:1d:30:ee:d3:2c:7b:61:5c:19:
6b:bb:63:94:30:1e:9e:0d:a5:f6:fd:56:df:a0:c0:
1e:19:01:2f:21:a7:ee:2d:13:e2:40:2c:db:5d:3f:
69:5f:3a:0d:0f:41:a9:b9:45:34:00:88:bc:04:c3:
b1:8a:50:c1:d0:06:3f:a3:b7:be:ca:70:b9:40:5b:
38:20:09:86:25:00:22:b9:b4:05:ea:92:05:cd:bf:
67:9c:bd:25:9f:ee:88:54:42:5f:c1:9f:8e:6f:5c:
ab:a5:32:f0:ec:e7:7d:ce:db:ce:d1:5d:2f:89:43:
b8:38:b4:c5:3e:a8:8a:df:e6:c3:7f:17:01:90:2b:
b8:35:98:d1:7e:bc:ce:a2:23:f4:46:51:41:99:81:
5d:f7:8f:6d:e6:a8:35:23:ae:bb:7e:99:a5:db:dd:
86:25:df:b0:23:f3:52:e5:e1:12:e1:c7:d8:ae:fa:
90:61:84:b7:4c:f0:2e:e2:92:64:f9:39:bf:c7:d6:
71:3e:df:ef:d2:b7:36:44:21:d4:43:78:b3:0c:ca:
54:d1:a3:41:55:24:41:b4:0c:80:b2:b6:eb:2e:a8:
36:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:10:0D:CC:1B:9E:5C:70:71:C0:36:59:E2:87:42:97:9E:0F:49:D3
X509v3 Authority Key Identifier:
keyid:B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/3136302e32352e34382e302f32342d3234203d3e20313533303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.48.0/24
Signature Algorithm: sha256WithRSAEncryption
90:3a:c5:26:08:20:e8:1f:85:a4:bc:8c:44:b2:a5:bd:a7:c9:
1e:65:f0:89:f0:db:23:f7:1d:e2:cf:02:99:d9:a8:1c:15:fd:
6b:c1:fa:f2:ae:b5:23:09:b3:45:3f:d9:c2:a1:ed:36:b2:74:
b4:d5:8f:c3:93:b8:46:50:c8:63:71:b7:58:f9:e4:d8:f6:0e:
84:ce:c5:6e:be:5e:65:d6:15:2c:4d:cb:3d:21:e4:33:2f:4c:
9d:d4:df:0c:01:06:45:ce:47:dd:ce:d5:ee:09:51:94:4e:86:
0a:a7:6b:b8:2c:1b:37:0f:6f:03:27:25:cd:56:f8:c7:b3:01:
a0:0e:a6:1c:ff:07:9b:6a:40:98:87:c6:a2:78:ad:2d:75:ef:
cd:fa:41:5f:7f:cf:25:40:5e:ca:70:92:db:77:a9:d5:ef:2b:
2c:58:58:03:21:d2:71:c1:ff:4a:49:a6:0a:3a:1c:5f:d8:2a:
21:73:2c:67:85:ef:93:77:98:c9:9b:f7:60:f7:43:c8:23:e7:
4a:37:51:ce:51:fe:3c:37:80:c8:58:56:c4:0a:6d:5c:89:f9:
b9:30:68:be:02:60:dc:42:38:e4:70:e2:97:00:e5:50:7f:9d:
65:42:15:49:53:35:13:9e:65:ef:d8:c9:26:97:ef:72:4c:5b:
11:12:47:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:03:06 2025 by rpki-client