Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa
File: 3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa (raw, json)
Hash identifier: XXyZU0sw40CNP1HOjsEdGjKu4hf5yySG8nf3sGIXj0Y=
Subject key identifier: 94:3F:80:17:43:96:12:C0:C3:22:3A:F5:87:A4:40:49:BC:AA:5D:CD
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 6E3EA6EB16E14894AA7382E634180F1E28739A94
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa
Signing time: Thu 08 Aug 2024 09:00:01 +0000
ROA not before: Thu 08 Aug 2024 08:55:01 +0000
ROA not after: Thu 07 Aug 2025 09:00:01 +0000
asID: 9794
IP address blocks: 115.178.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:3e:a6:eb:16:e1:48:94:aa:73:82:e6:34:18:0f:1e:28:73:9a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Aug 8 08:55:01 2024 GMT
Not After : Aug 7 09:00:01 2025 GMT
Subject: CN=943F8017439612C0C3223AF587A44049BCAA5DCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ff:d7:de:2c:37:e2:c9:82:f1:6c:6f:7e:b5:
fc:90:fd:b2:61:ee:9d:53:5c:11:c9:99:21:16:ca:
7a:3b:bf:61:62:c3:32:37:e6:01:40:3e:6e:38:69:
e0:17:15:84:4b:3b:06:40:08:6f:52:08:f4:47:42:
1e:25:a6:00:f1:86:62:90:af:bb:a4:74:3e:e5:07:
37:77:5a:7d:da:9e:b4:15:7c:10:97:a8:62:89:d6:
d0:ea:30:0d:bf:f3:27:72:3a:b3:8d:20:dc:24:5c:
9a:5f:64:cf:64:7b:b4:9b:76:58:6a:28:e0:5a:6d:
23:f2:6f:f3:b2:85:c5:1e:22:83:76:e8:8f:ce:e4:
b1:eb:70:98:1e:f0:95:66:8b:55:3c:a7:8b:a5:65:
e5:1b:aa:d4:65:b6:77:da:bc:de:39:44:e9:ad:a5:
79:a2:ff:98:cb:1e:a8:c0:f4:ff:10:6e:b0:f9:1e:
99:a6:a1:10:c0:2e:4f:6b:ea:8a:6b:84:65:6d:2e:
89:94:dc:1b:a1:91:73:59:ce:e5:c8:fa:60:3a:66:
53:a3:f4:e1:1e:28:e0:3a:03:8d:16:d6:57:29:ca:
1f:e4:55:52:0b:7b:67:cb:63:1c:68:0b:68:b7:a7:
e0:e1:0a:65:a9:54:16:d4:df:f8:96:14:1c:01:f8:
f3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3F:80:17:43:96:12:C0:C3:22:3A:F5:87:A4:40:49:BC:AA:5D:CD
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133322e302f32342d3234203d3e2039373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.178.132.0/24
Signature Algorithm: sha256WithRSAEncryption
16:bc:d5:35:e0:23:ec:50:ac:74:59:21:f6:b7:1e:8e:2b:74:
d0:88:df:4f:fc:fd:f5:d9:ab:04:80:bd:0a:8a:73:57:28:10:
7a:39:cf:37:1d:b5:85:97:26:3a:bc:a6:cd:46:8b:ce:c7:d8:
69:00:95:a3:29:66:ad:b0:d9:ad:86:76:13:61:93:62:cf:19:
71:b5:3f:15:9a:23:d1:10:36:c2:b5:06:f9:2b:89:b5:17:a3:
35:2c:c7:58:71:c7:f9:00:dc:d1:b1:50:3f:cf:e3:46:12:2d:
d8:07:46:41:f8:05:25:1d:7e:eb:85:cc:d1:86:8f:28:1c:aa:
31:b2:d1:0c:1b:1c:f1:be:93:44:65:9e:9e:f2:a4:b5:b4:e8:
86:83:3a:d8:ee:a7:22:64:cf:87:8d:90:0e:2f:b3:75:5f:4a:
ab:6f:ae:b1:7c:b1:95:7d:05:57:ec:1d:6c:3a:d8:42:01:b0:
b2:e0:a5:c4:de:d1:51:36:d5:e7:b4:e5:67:90:cb:7c:f1:62:
1e:6d:b5:92:69:01:f3:34:6d:d0:8f:6e:98:09:de:7d:44:03:
fe:8f:b8:86:cc:24:e0:43:c1:ae:33:33:57:2e:d1:bd:13:5e:
82:8b:fd:a3:5d:93:0a:a2:0b:cf:a5:69:7d:c9:67:93:e8:49:
95:7a:c3:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:37 2025 by rpki-client