Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa
File: 32372e3131322e36392e302f32342d3234203d3e203436303633.roa (raw, json)
Hash identifier: K7v4mVMrOGRH9uwLIAKHJnQcmHP3SMpJcQP3rkEuNE0=
Subject key identifier: 25:2D:46:7C:35:BA:AF:BE:D1:2B:46:59:21:3D:36:73:A4:A1:89:8B
Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312
Certificate serial: 3EC0F7FA20EB7CA8DE900FEA5A69670D5518C141
Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa
Signing time: Fri 04 Oct 2024 12:02:25 +0000
ROA not before: Fri 04 Oct 2024 11:57:25 +0000
ROA not after: Fri 03 Oct 2025 12:02:25 +0000
asID: 46063
IP address blocks: 27.112.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:c0:f7:fa:20:eb:7c:a8:de:90:0f:ea:5a:69:67:0d:55:18:c1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312
Validity
Not Before: Oct 4 11:57:25 2024 GMT
Not After : Oct 3 12:02:25 2025 GMT
Subject: CN=252D467C35BAAFBED12B4659213D3673A4A1898B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2e:cf:34:b1:73:e7:81:3e:45:23:aa:4c:eb:
68:97:41:dd:61:21:32:6b:6d:16:ca:10:ef:2c:8d:
14:d6:f6:f6:7c:9e:d5:78:88:f7:9c:85:9c:60:e8:
dd:2f:eb:f0:ad:c8:cf:93:97:c8:1b:a9:fd:e9:b2:
9e:31:e4:fe:8f:9c:25:48:14:d2:36:34:97:d6:03:
28:dc:e4:6b:68:05:24:e9:d6:1f:a5:9a:3d:12:75:
69:36:8d:2b:2d:74:43:c0:01:4b:cb:81:e9:eb:39:
0d:7b:60:7d:64:f2:c8:e2:7a:20:68:6d:ae:7b:1a:
31:c6:f4:96:df:9c:1e:f4:d3:35:89:2e:7d:37:69:
4a:ab:76:c1:a6:ae:62:90:b2:5b:c6:a6:46:56:19:
c0:09:6e:21:a0:4a:9b:54:19:92:20:59:66:7d:b2:
9c:53:9b:11:7c:d0:ca:9e:d6:b8:23:6d:a9:5f:49:
bc:db:14:c5:dc:df:e6:9c:ba:6e:57:77:df:81:17:
4c:e0:87:6b:cf:ab:f8:cb:c0:11:30:b1:95:ef:3b:
92:b4:00:20:70:19:76:9d:77:60:0f:79:bd:bb:c5:
0f:e8:83:6a:79:e4:53:50:ef:d3:2d:31:0c:22:67:
38:3d:61:b9:97:f7:1c:e0:d6:5b:44:7f:67:84:08:
58:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:2D:46:7C:35:BA:AF:BE:D1:2B:46:59:21:3D:36:73:A4:A1:89:8B
X509v3 Authority Key Identifier:
keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36392e302f32342d3234203d3e203436303633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.112.69.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d3:49:6a:b0:85:a2:1b:1b:8b:55:d7:54:68:5f:d0:c1:9a:
0e:43:ee:89:f6:5b:1c:dc:c3:9c:6b:d6:6b:0e:70:f6:3e:c6:
06:8c:94:04:98:47:57:79:7d:7a:4d:56:73:4b:ee:4e:55:a8:
eb:2f:36:0f:35:27:27:85:2b:ef:57:4d:0c:3d:98:d9:e6:a3:
81:ec:b6:fc:17:e1:01:ea:b8:ad:ce:9b:0a:5e:97:93:cb:a5:
36:fa:3d:5d:73:d5:8b:cd:1b:77:01:f3:f3:ff:62:cf:76:f6:
a4:f3:6a:d8:2f:69:71:f3:aa:9c:3c:e5:c9:22:22:e7:9d:27:
6c:23:14:12:97:1c:13:f3:91:78:f2:50:b9:f3:99:1c:9e:01:
69:97:69:6f:a3:31:42:c8:b8:f0:65:7c:ad:14:3a:3d:05:9d:
d4:85:0e:3e:07:53:2b:50:dd:f6:05:ea:6e:a2:35:13:11:90:
40:9c:7d:f8:c1:80:9e:e9:c3:46:e5:a2:5f:35:7b:c1:e7:64:
67:71:7e:81:7e:c4:01:43:7f:61:4a:e2:9f:dd:aa:e3:d2:72:
45:9d:fd:57:17:7c:ec:8f:f8:f7:d5:45:78:62:d8:dd:54:be:
b3:28:d0:65:f5:6e:d8:23:bb:fc:ca:d4:65:c8:75:98:2b:a2:
ee:6e:de:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:40:15 2025 by rpki-client