Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa
File: 3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa (raw, json)
Hash identifier: m3lpcVSwyiPYzMCTKZvGqV8oSPYCAydjYrFlLUbq924=
Subject key identifier: E3:81:E6:7D:34:78:99:B6:0A:CE:93:88:64:34:46:65:28:CA:A2:2B
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 40FBE6362FE59A35A8CC036C6E29D13C6925AD40
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa
Signing time: Thu 12 Dec 2024 08:00:00 +0000
ROA not before: Thu 12 Dec 2024 07:55:00 +0000
ROA not after: Thu 11 Dec 2025 08:00:00 +0000
asID: 9794
IP address blocks: 115.178.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fb:e6:36:2f:e5:9a:35:a8:cc:03:6c:6e:29:d1:3c:69:25:ad:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Dec 12 07:55:00 2024 GMT
Not After : Dec 11 08:00:00 2025 GMT
Subject: CN=E381E67D347899B60ACE93886434466528CAA22B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ee:ff:da:25:76:c5:fe:e5:b9:31:34:92:68:
10:40:59:42:26:95:91:d9:d7:b3:bf:2f:cf:3c:94:
32:96:e9:b9:66:04:d4:63:30:0b:ee:01:dd:ee:5b:
d2:d0:d4:92:17:ce:84:1b:0f:b1:31:41:04:81:94:
7b:3e:e6:d7:a8:79:22:6e:fa:bd:7e:5e:90:80:35:
7e:a7:7b:9b:dc:a7:dc:84:ed:16:4f:8e:91:d4:22:
30:1d:85:a8:16:d2:68:c6:ba:89:ad:fe:d0:98:50:
07:79:7c:d1:f9:aa:08:5c:f9:b5:7e:70:b0:43:75:
59:cd:70:44:31:fe:d6:5a:33:22:4f:f9:ba:25:f6:
b9:59:86:d5:a2:46:0f:f9:21:b5:f2:c7:e8:54:8c:
8d:8b:dd:57:9e:9f:d5:38:98:7e:c8:f6:8d:2d:cf:
c3:ef:c2:db:89:89:00:1c:58:8e:15:aa:c9:ab:1b:
bf:1a:82:66:05:45:d3:05:93:b3:d4:1e:59:74:2b:
49:3b:ad:0d:ae:6a:3c:3d:13:09:8c:61:54:23:06:
ad:63:8f:02:ac:5f:8b:51:79:27:70:4c:17:35:c4:
c5:0c:0a:68:ef:d3:27:01:01:f2:ca:13:d7:6f:76:
c7:b5:fe:f2:9a:a9:e9:f4:e5:5e:9a:65:f8:a4:4a:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:81:E6:7D:34:78:99:B6:0A:CE:93:88:64:34:46:65:28:CA:A2:2B
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3133332e302f32342d3234203d3e2039373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.178.133.0/24
Signature Algorithm: sha256WithRSAEncryption
31:17:ed:d8:f3:21:ab:50:7a:e2:62:80:83:bc:5d:a6:c2:20:
a9:63:97:ab:33:3d:b1:e0:6a:b0:42:be:9c:46:79:da:ca:b1:
d7:de:8f:c9:8f:27:f9:52:6f:62:92:14:36:fe:11:8f:d5:8c:
8d:c6:db:5b:56:a1:9a:92:3a:c6:29:d5:39:24:4e:fd:e0:4c:
6a:b9:60:7d:05:87:b0:5c:7f:62:e0:35:0c:b7:fe:02:7d:06:
50:99:b0:76:0e:98:dd:a4:ef:4b:17:e9:4f:fa:6f:2a:64:a9:
9b:87:63:8c:18:10:1d:0a:a1:f3:ab:2b:9b:bc:67:93:5a:49:
4d:7e:c2:c3:94:ef:e1:23:81:d6:53:74:e6:e3:33:44:b0:af:
10:5e:f7:40:f5:32:85:06:d7:84:15:2a:3d:14:f7:66:d7:bc:
55:95:e8:54:49:96:57:2b:bb:79:02:36:a0:fa:03:ac:fa:30:
7b:b6:89:55:b6:b3:03:9f:f2:04:2e:cd:ce:0d:5a:1c:c0:e9:
c9:b3:d7:84:6a:5d:75:f4:d8:40:59:c0:1d:a8:6b:10:d9:4b:
1c:f4:ef:fc:3a:88:8e:23:00:f8:d6:13:fd:24:fd:0a:bd:33:
61:d0:ce:18:4a:c1:be:a6:88:a9:be:a5:90:80:d2:0e:11:3d:
40:fd:d2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:28:01 2025 by rpki-client