Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa
File: 3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa (raw, json)
Hash identifier: a6ogt++qr3XR5h4TdakSxSyVqHshz7QvXXssfEGVsFo=
Subject key identifier: BA:CD:BF:C8:62:6A:DA:3D:AF:66:20:7E:9A:4E:80:53:93:8A:78:C1
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 58F936341589A3CD49873669DE7E041156FF0FE2
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa
Signing time: Mon 22 Jul 2024 17:15:16 +0000
ROA not before: Mon 22 Jul 2024 17:10:16 +0000
ROA not after: Mon 21 Jul 2025 17:15:16 +0000
asID: 4787
IP address blocks: 116.206.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f9:36:34:15:89:a3:cd:49:87:36:69:de:7e:04:11:56:ff:0f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 22 17:10:16 2024 GMT
Not After : Jul 21 17:15:16 2025 GMT
Subject: CN=BACDBFC8626ADA3DAF66207E9A4E8053938A78C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e4:a7:4e:3d:cc:88:1f:2b:f6:8b:d2:be:b4:
bb:c0:b3:18:64:1b:c0:43:90:ff:68:a4:c8:f6:d1:
45:d1:43:ab:10:8f:3d:cf:b7:5c:b6:18:b2:77:b4:
6f:48:62:8d:e9:07:09:21:f6:dc:93:2e:80:9e:c6:
be:ad:56:3a:99:6b:ec:4c:eb:e0:69:76:08:1b:e0:
11:26:9e:a5:02:29:b6:80:ab:48:03:bc:43:3e:ba:
1f:b0:de:ec:90:9f:27:2d:1e:96:82:80:33:3f:e0:
fd:4c:29:44:2a:32:28:08:3e:32:fa:47:f9:8a:77:
ab:e0:e6:c7:57:6d:58:89:58:63:e6:47:bb:9c:0b:
78:ff:f6:c3:75:9a:e9:65:94:84:75:62:cb:cc:65:
11:e1:d1:6d:91:f8:d5:8d:69:47:5a:96:da:50:ee:
37:f4:2f:33:f2:7e:16:bf:38:43:5e:cb:d5:86:73:
09:81:8e:65:2b:36:28:52:c4:2d:39:0d:a5:72:bf:
2f:54:5a:79:37:a3:1c:c0:ab:b7:14:33:e9:52:80:
7d:94:f8:7c:56:63:2e:d1:8f:9c:41:d6:31:e0:2d:
83:ae:e3:7a:32:82:f4:ed:67:31:9f:84:3d:78:08:
0c:73:a8:94:1d:b8:8c:e9:dc:27:7c:15:d4:32:c7:
07:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CD:BF:C8:62:6A:DA:3D:AF:66:20:7E:9A:4E:80:53:93:8A:78:C1
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3131362e3230362e3234302e302f32322d3234203d3e2034373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.206.240.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:e3:52:04:6c:2a:71:01:28:9c:14:ac:0f:9e:e1:a3:82:3f:
56:c5:14:9e:41:27:1e:e6:c2:22:ab:d3:ca:ea:d0:48:09:70:
61:2e:93:ec:40:89:29:ba:9b:27:44:98:ff:09:b4:47:01:f5:
19:6b:61:38:5e:f8:e0:2a:fe:3d:f4:58:69:a5:4b:23:6c:5d:
2d:f4:31:61:55:c2:29:53:ec:9c:3a:1e:b2:cb:43:d5:19:16:
86:8a:6f:56:50:e3:af:6f:f4:c8:4d:d5:88:09:dc:ee:2e:15:
bb:98:9b:c0:0f:16:2c:ca:7e:4e:71:d7:47:04:55:ac:ac:e3:
c7:42:ca:e7:56:76:a3:f2:66:9a:58:9c:2e:29:59:5a:fe:a8:
e1:fc:4a:f4:7f:b1:bd:41:48:dd:b1:cf:59:85:1c:04:2c:83:
7d:17:00:95:a2:5b:4d:8a:06:8a:6a:6d:70:38:08:9c:58:ec:
ea:5e:0c:6e:4f:d7:24:52:2b:95:50:5d:17:0b:f9:58:d9:ce:
63:d7:3b:42:09:f0:3e:00:d4:75:cd:5e:a9:62:c0:9a:8e:fb:
68:97:73:cd:1b:f5:ff:3e:00:36:a5:2a:37:db:89:45:3b:be:
c1:ad:ca:eb:a1:1c:16:19:20:fe:c9:c2:cc:0f:78:ef:31:8d:
32:d2:14:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:30 2025 by rpki-client