Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa
File: 3131312e39322e3136372e302f32342d3234203d3e203233363731.roa (raw, json)
Hash identifier: NNeRy/WJ3Ty5aBcLDqCW9SXAtxAJm0+Sh/mAPgyC4x8=
Subject key identifier: F5:37:5C:68:34:0E:3E:64:E6:0D:E5:FC:CA:AC:89:60:4D:23:23:5C
Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F
Certificate serial: 03F78B00ECD417C2B043B357E6E984A7139C7E69
Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa
Signing time: Thu 26 Sep 2024 09:00:01 +0000
ROA not before: Thu 26 Sep 2024 08:55:01 +0000
ROA not after: Thu 25 Sep 2025 09:00:01 +0000
asID: 23671
IP address blocks: 111.92.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:f7:8b:00:ec:d4:17:c2:b0:43:b3:57:e6:e9:84:a7:13:9c:7e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F
Validity
Not Before: Sep 26 08:55:01 2024 GMT
Not After : Sep 25 09:00:01 2025 GMT
Subject: CN=F5375C68340E3E64E60DE5FCCAAC89604D23235C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:64:91:01:4b:d5:d5:83:a3:90:41:ba:4d:dd:
b0:c4:ce:aa:7b:32:b4:1a:99:72:1b:a7:35:b6:4d:
81:23:48:bd:9b:5e:87:13:bc:cb:4d:d9:a8:04:cc:
e3:32:8b:68:9f:69:45:e7:61:c6:1c:01:41:42:a2:
7b:af:3d:a7:8a:91:41:84:49:4f:28:3c:73:e3:98:
ed:34:11:93:0c:68:7f:48:28:f0:96:69:e0:57:44:
c0:1e:4d:bf:95:81:ff:32:be:8a:38:6b:79:52:02:
24:bf:f5:2d:e4:c3:de:7f:6b:52:3b:6c:0e:c6:2e:
58:fe:97:99:5b:76:77:eb:5a:ed:86:03:eb:0a:0f:
cb:68:fe:bf:b2:35:ad:0b:70:33:0d:6f:da:76:b3:
57:59:e9:cd:23:a8:b2:b4:b4:09:38:97:fb:92:8b:
cf:81:7f:22:ec:b4:82:39:d5:91:a3:fb:b0:c0:a9:
e9:17:d6:5b:fd:43:f0:bd:0c:6d:bb:47:a4:ac:5f:
28:cb:89:0d:1b:ea:4d:60:7b:65:a3:7c:c5:f1:ce:
93:03:18:a3:93:c3:b6:d3:fd:a1:71:2d:5a:0e:76:
b0:36:cb:93:70:51:6e:6f:03:22:94:4b:ed:ec:af:
e8:88:18:f9:7f:6f:45:05:e9:24:78:f6:4b:09:29:
1d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:37:5C:68:34:0E:3E:64:E6:0D:E5:FC:CA:AC:89:60:4D:23:23:5C
X509v3 Authority Key Identifier:
keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/3131312e39322e3136372e302f32342d3234203d3e203233363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
111.92.167.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d8:f5:c9:8a:f5:d1:8c:b7:3f:73:64:a2:55:e7:7d:42:39:
97:83:de:fa:6f:bd:cc:e8:87:04:d4:af:51:95:80:72:71:f0:
0d:7d:b9:33:bc:59:04:44:63:dc:64:52:64:03:f2:2d:dd:00:
d5:33:3d:bb:d9:64:2e:97:02:5e:09:c5:6e:bd:cd:9a:71:03:
43:eb:8b:ae:57:d1:66:bd:3a:cb:0a:6a:b7:2f:5b:a2:da:24:
6a:5a:0c:bd:1b:fb:bb:22:09:38:2c:d4:16:70:ba:6d:bf:e2:
13:99:83:fb:b2:e2:f5:69:40:f3:9a:10:a9:a1:86:6b:76:2d:
26:62:7f:4c:5e:fc:dd:c0:24:57:35:d8:6f:1f:04:73:cc:e3:
8a:03:6e:08:8a:b6:73:74:89:2d:ec:87:eb:11:45:37:5a:e4:
c8:9f:a1:1b:38:f9:71:61:00:fd:7f:e0:86:63:40:db:87:fc:
f0:78:f3:00:46:17:d3:27:3e:a8:44:a9:20:4a:e4:57:0b:5a:
39:f6:3c:d0:e5:16:13:2f:e1:28:3a:11:b0:91:3e:e8:d8:bd:
c0:f1:92:78:8f:c8:e8:e5:cc:36:bc:c6:0c:c7:fb:b1:54:e6:
02:3e:27:d2:e7:00:a4:a4:84:40:79:ad:0b:ef:a0:a7:7a:14:
af:f9:d5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:37 2025 by rpki-client