Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34302e302f32342d3234203d3e203338313635.roa
File: 3131362e31322e34302e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: wwgeddR/VEuubXJt/I0qOVhVCWXc/EoWU195gDaoRYU=
Subject key identifier: DE:CB:E4:EA:6C:4E:75:CF:50:ED:6B:53:C0:5F:61:E5:BB:F7:7B:A2
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 1230BBAE65FF4E6F85423F61506F5B361628F219
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34302e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:03 +0000
ROA not before: Mon 27 Jan 2025 01:55:03 +0000
ROA not after: Mon 26 Jan 2026 02:00:03 +0000
asID: 38165
IP address blocks: 116.12.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:30:bb:ae:65:ff:4e:6f:85:42:3f:61:50:6f:5b:36:16:28:f2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:03 2025 GMT
Not After : Jan 26 02:00:03 2026 GMT
Subject: CN=DECBE4EA6C4E75CF50ED6B53C05F61E5BBF77BA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:27:dc:62:6d:f0:f6:f6:b2:0f:6c:9a:68:
77:49:df:ac:fb:10:79:86:fe:fa:6f:ea:d8:dc:21:
ce:6f:f3:29:a1:b0:b6:21:1f:fa:08:b6:5c:a8:6e:
cf:dd:e6:34:58:41:64:d5:63:7f:6b:0e:46:18:64:
cd:b2:2d:91:db:09:65:16:89:80:2a:8e:29:d8:9a:
7b:0b:35:3b:75:f7:16:23:12:4a:7c:74:68:45:d9:
b6:87:71:a5:05:a4:9b:d6:3b:96:66:3f:2f:d0:be:
f5:cd:cc:d3:25:75:e4:b5:d8:20:31:86:16:25:73:
c8:50:3b:e4:2b:f9:03:e3:20:a2:6a:a0:1d:04:00:
d2:4f:a4:ab:ad:26:93:f0:51:28:08:95:7e:36:ff:
de:24:29:65:64:17:2f:de:f0:1a:0d:b6:e3:a4:21:
51:d1:21:99:f1:f8:25:7f:72:a5:0b:37:d9:39:ce:
89:9b:a6:47:5b:88:4f:8e:6c:9c:23:0a:ac:7c:40:
b9:02:ac:77:3e:84:16:ff:78:57:f4:ea:60:3f:1b:
a7:e1:b2:39:d0:a7:b9:1a:81:2e:39:1d:bc:82:a8:
03:e6:3f:31:4a:1d:71:41:7b:ab:43:70:f3:98:e5:
8d:21:72:fc:b2:9c:43:db:9c:f6:02:a0:99:69:51:
83:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CB:E4:EA:6C:4E:75:CF:50:ED:6B:53:C0:5F:61:E5:BB:F7:7B:A2
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34302e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.12.40.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:7e:71:d3:68:5a:f9:9d:2f:2e:53:44:2c:95:ef:d2:b7:d3:
e2:14:41:b8:dc:af:e6:1c:02:c8:c5:ff:b7:bc:a4:a9:ff:6f:
0c:05:bc:03:e9:66:f9:1d:b5:ca:b0:e6:a0:9c:dc:a8:f1:de:
a6:82:25:71:2e:21:b2:fd:fe:7f:45:11:97:a4:2d:ae:b1:47:
38:5b:1f:e4:09:68:98:86:00:89:a2:72:88:a3:64:b1:90:c5:
14:36:86:a2:37:5a:4b:8c:ba:54:ac:6f:04:89:a7:77:a9:16:
f4:26:13:77:75:32:78:55:2d:1f:7a:7a:bd:21:72:78:15:f6:
60:73:1a:3b:8c:98:fa:72:00:4c:c6:49:97:57:cc:0c:b0:b1:
b2:d9:08:36:ef:60:44:b5:9d:e1:fd:37:4b:34:f1:20:18:23:
7a:5a:e4:bc:aa:fe:b1:62:5b:7d:d2:36:03:4d:1f:13:02:37:
03:e2:74:0e:f4:0e:99:f8:ae:12:62:d2:13:5d:2f:b4:69:f8:
2b:90:b4:41:db:dd:68:78:5f:5d:d2:7d:ce:a2:bc:3d:77:0c:
f7:d7:d5:bd:7b:1f:92:c3:82:6c:35:08:ab:97:f4:e1:5d:86:
81:b8:ed:4a:8e:4a:f7:1b:33:9d:2f:64:24:68:06:3b:d5:cf:
40:7f:b6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:35 2025 by rpki-client