Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa
File: 3130312e35302e31362e302f32302d3234203d3e2034373837.roa (raw, json)
Hash identifier: oK6bWG/k1xn/dNNfpI91O08/ULTaS7OfH55Mvmr7vx0=
Subject key identifier: A5:E2:74:F0:7C:C4:36:64:E4:9C:A5:64:DF:EA:5E:E2:63:BB:96:77
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 59B69945FF6B06514BAEC9A206AC00DA48187AEE
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa
Signing time: Mon 22 Jul 2024 16:39:00 +0000
ROA not before: Mon 22 Jul 2024 16:34:00 +0000
ROA not after: Mon 21 Jul 2025 16:39:00 +0000
asID: 4787
IP address blocks: 101.50.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:b6:99:45:ff:6b:06:51:4b:ae:c9:a2:06:ac:00:da:48:18:7a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 22 16:34:00 2024 GMT
Not After : Jul 21 16:39:00 2025 GMT
Subject: CN=A5E274F07CC43664E49CA564DFEA5EE263BB9677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:5d:96:e1:14:81:28:5b:be:29:64:3a:36:
bd:20:03:bd:3d:18:da:f8:9d:65:b8:f8:75:ee:87:
76:0c:aa:04:e3:87:f2:43:d1:93:69:e2:cb:ca:13:
7e:02:9d:35:42:33:e5:55:75:5a:8d:09:88:a4:fa:
6d:fb:b8:e5:54:ed:6a:3d:db:e4:52:bd:d6:22:4c:
1f:0a:98:be:a2:c7:9b:73:d5:8e:19:f4:20:b2:bd:
fe:9d:2b:d3:19:4b:e1:9b:99:b3:19:8b:1e:65:36:
c9:7a:4c:9d:a2:80:5e:d1:b4:55:82:b4:70:a5:b6:
3a:74:f1:d2:a0:8a:7b:01:df:64:2b:57:72:c3:ad:
51:b6:40:5c:95:2e:56:2a:d1:10:08:c2:32:02:8b:
8f:27:89:ff:3d:1e:05:8e:b4:41:71:a9:f0:be:67:
80:80:31:5a:18:59:7a:80:42:55:87:1c:64:4e:05:
b5:73:41:10:41:a2:d5:a6:f2:d8:62:13:02:0a:8e:
76:7f:a3:cd:02:fd:3a:a1:8e:c0:48:bc:8e:05:23:
b2:db:f4:3e:93:30:42:a6:17:1b:20:8a:b0:79:d3:
ee:ec:6a:6c:46:87:11:49:b4:bd:30:28:fe:01:f5:
ad:72:9b:f7:1d:1b:f0:87:71:59:c9:df:4c:c0:77:
17:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E2:74:F0:7C:C4:36:64:E4:9C:A5:64:DF:EA:5E:E2:63:BB:96:77
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3130312e35302e31362e302f32302d3234203d3e2034373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.50.16.0/20
Signature Algorithm: sha256WithRSAEncryption
53:40:e9:f1:76:b0:1c:84:28:c8:b9:80:37:0b:4d:aa:20:27:
07:2e:53:11:a7:69:f1:29:61:fb:2e:6c:c4:33:2a:81:ef:f8:
2d:bf:69:da:a5:58:49:8b:ef:e8:fe:1b:fa:6c:51:ca:9c:63:
7e:43:53:09:3d:48:b5:b4:1a:6a:e3:08:43:0f:d7:07:c4:7b:
86:82:00:21:cc:fd:0e:36:a9:69:ea:7c:d3:4b:30:4d:09:65:
bd:91:52:82:3c:51:d4:c9:bf:c1:c1:91:fb:9f:c1:5c:1a:94:
9d:42:8f:9a:f6:84:14:c7:98:89:a5:6e:f7:0e:72:88:d0:2b:
98:1e:71:7b:74:0d:d4:63:06:ab:63:a9:48:98:64:09:53:76:
fa:98:41:27:15:85:3b:ad:fd:ee:70:07:69:db:98:23:80:81:
06:f5:93:67:dd:8f:83:ad:fc:a7:3b:07:06:56:13:e7:f4:5b:
0f:11:4a:06:b4:a8:e1:ca:0a:eb:be:0a:71:f2:f2:24:d6:c6:
e8:f3:54:bc:e7:36:27:78:8a:e5:e5:91:56:68:24:22:fc:ed:
08:d9:d4:e4:ba:85:1a:09:99:c1:bc:eb:b4:f6:ef:80:e1:13:
20:a3:ae:df:d9:57:5b:19:ce:2f:ad:6d:1b:45:ac:8b:88:46:
2b:a6:2a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:44:10 2025 by rpki-client