Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa
File: 32372e3131322e36342e302f32342d3234203d3e203436303633.roa (raw, json)
Hash identifier: dbIV4xMO/kmp5beqpQZbhg9DwG+mNr8YalPBQGlisqE=
Subject key identifier: 0A:87:87:F0:D7:55:0F:1D:E2:FD:C2:7F:E5:26:A1:EE:CA:D1:C7:70
Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312
Certificate serial: 55342B07C2F1309E0529310F95C951F8595BB707
Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa
Signing time: Fri 04 Oct 2024 12:02:25 +0000
ROA not before: Fri 04 Oct 2024 11:57:25 +0000
ROA not after: Fri 03 Oct 2025 12:02:25 +0000
asID: 46063
IP address blocks: 27.112.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:34:2b:07:c2:f1:30:9e:05:29:31:0f:95:c9:51:f8:59:5b:b7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312
Validity
Not Before: Oct 4 11:57:25 2024 GMT
Not After : Oct 3 12:02:25 2025 GMT
Subject: CN=0A8787F0D7550F1DE2FDC27FE526A1EECAD1C770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a5:22:19:05:7d:0e:41:7e:85:eb:b4:2b:f3:
e3:fd:30:ce:6a:b5:26:81:e8:ce:5e:b4:1f:61:d9:
09:ee:0e:f3:7d:44:64:bb:03:2f:6e:36:e5:0b:65:
73:d4:61:1a:36:44:d0:5e:01:ee:1b:ba:c8:53:06:
e1:a7:fd:81:b5:58:5a:58:39:b3:68:f7:5d:ab:35:
52:e9:06:42:2b:4f:4a:3d:c5:c2:3c:ec:d7:d7:28:
43:62:82:d7:f1:80:b2:bc:6d:ea:1f:2b:6a:ec:a0:
5a:d1:25:9f:c2:41:a7:9c:6b:17:a8:cf:e9:1f:2e:
12:b7:7f:56:6d:77:4c:e2:50:ae:c2:e1:cd:ee:e8:
cc:95:eb:3b:13:54:5e:8a:06:08:98:26:bb:29:10:
45:d6:19:27:4c:54:e3:3e:4c:1a:a8:31:58:ab:8c:
66:39:49:35:72:46:d2:93:ac:e9:61:17:99:89:fb:
11:b9:4b:b0:99:92:46:6a:74:b2:9b:0f:68:91:8c:
e6:e8:05:ab:92:33:82:e7:5a:76:37:2a:40:20:e1:
32:f6:05:ef:2e:c9:a3:0a:12:4b:92:8d:f1:07:0d:
06:b1:01:86:00:7b:1c:1a:ed:a9:32:86:66:2c:35:
a9:2a:09:3a:e8:bf:91:3b:d0:01:f6:4c:9f:55:24:
6c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:87:87:F0:D7:55:0F:1D:E2:FD:C2:7F:E5:26:A1:EE:CA:D1:C7:70
X509v3 Authority Key Identifier:
keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36342e302f32342d3234203d3e203436303633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.112.64.0/24
Signature Algorithm: sha256WithRSAEncryption
82:a0:16:0d:8e:12:71:32:0a:8b:e1:cd:cd:68:1c:5e:30:19:
a0:9f:60:9f:5e:2c:1e:a2:88:47:e0:7a:88:79:07:18:e8:a3:
c3:49:87:04:77:4a:63:f2:fc:38:0f:9d:31:7b:bb:4a:82:1b:
9a:5c:73:16:e8:4c:8a:93:84:d5:b4:a0:da:79:4b:1a:16:4f:
d9:3b:14:5d:17:bb:0e:ca:12:3a:3b:1e:08:4b:36:98:88:54:
00:41:c2:da:94:8a:10:2f:96:80:30:d7:c2:62:e6:d1:7e:38:
f6:ce:cd:00:40:af:85:9d:98:fe:88:22:af:bd:a5:62:0b:54:
f7:39:8f:5a:65:f2:c7:07:81:6c:00:55:b9:ce:9f:39:ea:b1:
8d:6e:3e:56:d6:0b:5e:98:63:9a:b5:41:a9:e8:fd:03:bd:b7:
19:46:39:87:f7:82:c4:ba:46:39:1b:d6:08:6a:56:25:e1:69:
b1:2a:36:9a:55:77:22:bc:c3:07:b4:df:c0:f7:91:49:7d:a0:
10:ca:60:03:21:eb:1b:ab:d8:33:e4:d8:7a:d3:cd:ca:d7:ce:
e6:b1:e4:84:4b:0d:6d:44:a9:17:63:11:0d:c9:70:16:e2:60:
ef:54:5c:52:e4:7c:c5:f7:53:bc:92:7a:08:29:5e:cd:3e:fb:
2f:77:cd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:10:45 2025 by rpki-client