Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa
File: 3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa (raw, json)
Hash identifier: p0Sg/+UrPYihCirQVzRQgUIxMYl0DlY3HUZvwTzOqKY=
Subject key identifier: 0A:22:43:78:81:71:79:38:32:9F:50:B4:92:A0:AE:73:7E:3A:A1:D7
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 51956A49B875602829AF7CD8B1779C6CF99064CE
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa
Signing time: Thu 02 Jan 2025 08:00:00 +0000
ROA not before: Thu 02 Jan 2025 07:55:00 +0000
ROA not after: Thu 01 Jan 2026 08:00:00 +0000
asID: 9794
IP address blocks: 115.178.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:95:6a:49:b8:75:60:28:29:af:7c:d8:b1:77:9c:6c:f9:90:64:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jan 2 07:55:00 2025 GMT
Not After : Jan 1 08:00:00 2026 GMT
Subject: CN=0A22437881717938329F50B492A0AE737E3AA1D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5a:90:23:62:e5:cd:04:58:cd:3c:5e:b0:85:
dc:25:6c:c6:fe:10:2a:10:9d:b3:0f:90:f7:17:4e:
3c:2f:93:93:12:f0:58:ed:2b:56:21:c9:c4:3b:1d:
72:20:e6:fa:77:9d:db:72:f2:df:b4:51:99:38:7a:
80:a3:a8:b2:aa:a8:86:9c:bb:7e:52:df:b0:f5:44:
63:8b:a4:c6:38:34:fc:0e:15:8e:5a:07:b3:0f:f5:
fb:26:91:4f:75:28:e0:be:d5:3f:ec:2a:b2:d2:c9:
3d:71:ff:07:12:2f:0f:11:f9:9e:fd:10:0c:52:2a:
9e:c6:86:4e:ac:d7:5f:ac:68:0c:3b:85:48:b3:c0:
4a:d0:af:bd:b5:e3:9a:6d:7d:13:22:b4:e7:31:01:
05:62:b6:97:b8:00:35:95:7f:1e:21:94:b7:34:b1:
bb:31:61:4f:81:69:27:9e:f2:8d:96:e2:f0:4a:a1:
d3:78:c3:9d:ae:83:84:56:e3:ef:bb:93:b6:a5:4e:
8c:5d:1f:67:21:13:0c:06:d8:89:26:97:d5:f8:9b:
df:6c:07:43:95:cf:fb:f2:ad:e4:ae:6a:5f:07:25:
47:e4:b2:91:9e:8e:c5:0e:bf:78:35:a9:92:14:04:
e1:9b:89:9e:e3:7d:e2:13:9b:8d:3b:c3:a7:53:de:
b0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:22:43:78:81:71:79:38:32:9F:50:B4:92:A0:AE:73:7E:3A:A1:D7
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3131352e3137382e3135322e302f32322d3234203d3e2039373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
115.178.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:93:75:0d:ac:00:19:fd:3e:1f:9a:33:6f:c1:a2:a8:f7:52:
7f:a1:41:f8:b1:0e:f8:5b:cc:43:23:8c:6f:ca:83:ea:d3:47:
ed:68:ba:44:6f:73:6e:6e:bd:6a:ca:28:68:1e:dc:d6:54:1b:
b4:eb:40:1f:d4:d5:1b:71:33:8c:88:e6:9d:e1:d3:87:47:18:
80:46:cd:f0:7b:64:9c:37:cd:df:b2:27:cd:10:3f:fa:d9:6a:
92:ca:0b:19:2b:51:c7:db:d7:03:b5:23:bf:62:41:1b:fd:45:
fa:07:2e:e5:12:00:fe:33:1d:51:36:72:0c:3f:ee:d4:7b:e7:
d2:f1:d1:51:29:fd:f4:5b:1f:d8:5c:57:52:3e:5e:37:23:97:
7b:1e:7f:46:97:fb:f1:55:57:b5:a5:de:3a:73:2a:2f:19:14:
05:b5:9a:ab:18:08:82:2c:17:35:40:04:cf:71:3f:cd:de:ec:
74:ee:52:c2:8c:1a:40:31:5e:1b:a2:09:99:d1:86:c3:55:b9:
03:7a:b9:e7:80:51:e8:5a:d7:1e:a5:1b:e8:8d:36:6b:41:78:
0b:3a:58:bd:42:f4:03:be:28:21:35:43:27:f0:87:6c:fc:be:
41:91:f5:4c:6f:15:98:8a:37:29:2a:5c:a8:ea:e6:2f:60:77:
cb:0c:ea:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:23 2025 by rpki-client