Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34332e302f32342d3234203d3e203338313635.roa
File: 3131362e31322e34332e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: Vw4S8GZ49nKP8KpworGAeEiPWeAlDSylEWv054tin5U=
Subject key identifier: 29:F1:C5:54:1F:45:77:8F:D3:14:7D:46:B8:88:17:2B:45:72:B8:97
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 6E3E35F8D085560E03A1C83310F9279C92AA999E
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34332e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:01 +0000
ROA not before: Mon 27 Jan 2025 01:55:01 +0000
ROA not after: Mon 26 Jan 2026 02:00:01 +0000
asID: 38165
IP address blocks: 116.12.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:3e:35:f8:d0:85:56:0e:03:a1:c8:33:10:f9:27:9c:92:aa:99:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:01 2025 GMT
Not After : Jan 26 02:00:01 2026 GMT
Subject: CN=29F1C5541F45778FD3147D46B888172B4572B897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:64:3c:e6:50:69:7b:99:01:fd:32:15:b8:af:
f7:1b:4e:13:b5:b2:e7:aa:de:d3:82:9b:92:9b:20:
8b:e4:fb:19:af:ed:07:62:ca:ff:66:5c:dc:d1:f9:
53:e6:99:5f:6e:64:e1:85:56:51:1b:b0:07:29:6a:
49:c1:51:95:ee:ff:a6:c1:85:b2:2f:85:77:d4:3a:
d8:be:e0:bd:17:bc:01:05:f8:d5:ec:c1:4c:c5:f4:
63:29:c2:d3:fd:87:6d:78:63:62:28:25:5a:44:af:
5f:c6:86:71:03:5f:02:22:02:9d:e5:3e:9b:1e:5a:
f8:2a:71:84:27:9c:d2:06:ef:0d:94:82:4c:df:33:
51:78:95:f6:ea:07:c9:2a:2a:29:b6:ce:c9:af:80:
10:f6:12:3e:97:c6:5c:8b:f5:93:69:e4:5f:13:94:
5d:fd:3f:db:74:d1:37:9e:a4:95:e0:a1:4c:d5:66:
f0:4d:9c:f5:a2:ba:be:89:96:e8:2b:97:51:3a:41:
ba:61:2b:60:b6:ee:e1:66:30:b9:63:46:76:71:04:
c0:0b:8e:23:d5:4e:1f:52:82:3a:49:5f:0b:e7:6f:
53:3c:c8:b3:8e:db:70:76:13:3c:40:28:df:0e:ea:
05:67:b8:ca:8d:9e:83:8e:58:b0:69:5e:13:cd:8a:
f5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F1:C5:54:1F:45:77:8F:D3:14:7D:46:B8:88:17:2B:45:72:B8:97
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34332e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.12.43.0/24
Signature Algorithm: sha256WithRSAEncryption
23:9f:fe:3f:63:e2:0f:2c:fa:9b:2f:ed:00:09:bb:4a:5e:e5:
e6:83:df:8b:58:96:03:cb:03:5b:d0:9c:3a:e6:a4:7a:34:df:
03:83:62:52:90:eb:08:87:4e:fd:82:3f:8e:6c:fa:d3:e0:0c:
ff:b4:b1:72:8a:b3:19:66:2a:d5:33:2e:2d:01:ab:7f:d8:fb:
28:a4:d1:a3:80:1a:a9:05:f0:08:2f:ba:4e:d8:42:05:d8:17:
d9:2d:91:91:fb:6f:ff:e8:10:31:06:8b:16:52:f5:a1:78:16:
44:48:3a:1f:44:cb:44:80:6c:41:b2:c4:09:31:16:f0:c1:2e:
ad:8d:97:dc:bf:5f:ff:13:74:e0:f2:e4:d4:73:76:55:ac:11:
95:8b:b0:a9:35:06:88:10:41:f9:ac:24:45:f9:69:47:50:cb:
73:e9:12:d8:de:c3:9a:eb:4a:b3:2a:a2:99:f9:52:d2:2b:0c:
a3:07:27:3f:84:79:2c:e0:4d:59:e1:91:8e:5b:22:bb:d9:d2:
ad:4d:41:31:61:69:e2:05:71:68:55:d4:a1:7c:8d:e7:74:97:
80:c2:23:78:45:b6:a5:c7:f3:be:40:7c:df:04:91:70:7c:8d:
3e:ee:2f:7b:8c:21:54:8f:9a:60:2c:0f:05:0b:ca:59:40:6e:
e6:f5:13:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:40 2025 by rpki-client