Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34342e302f32342d3234203d3e203338313635.roa
File: 3131362e31322e34342e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: B4Hd5ZKJfte2hbn05do0q2nkUiUxxEkHKfok6A8XrGU=
Subject key identifier: 91:BD:E5:05:F9:26:22:9E:87:C6:D8:D5:B8:3C:A6:D7:E2:60:17:88
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 764743CD5ED3536AB4AF843E9677142BC1DDF7B6
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34342e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:02 +0000
ROA not before: Mon 27 Jan 2025 01:55:02 +0000
ROA not after: Mon 26 Jan 2026 02:00:02 +0000
asID: 38165
IP address blocks: 116.12.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:47:43:cd:5e:d3:53:6a:b4:af:84:3e:96:77:14:2b:c1:dd:f7:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:02 2025 GMT
Not After : Jan 26 02:00:02 2026 GMT
Subject: CN=91BDE505F926229E87C6D8D5B83CA6D7E2601788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:37:f8:4c:98:9c:12:7c:90:b4:1d:08:58:
2c:84:5d:1d:12:ab:03:69:15:93:4b:e4:95:71:8f:
4b:6d:e4:78:15:df:7b:17:40:fd:43:3c:c7:2d:62:
79:d4:dd:b7:42:65:e5:eb:7a:9e:ac:ea:1f:8d:0d:
ae:8a:7c:1f:03:48:09:8d:a6:6e:87:74:cb:f2:43:
b9:14:43:b6:3b:56:9f:cf:3e:84:b3:d0:13:df:33:
02:97:90:57:29:5b:23:b7:37:45:7c:92:47:cd:c3:
29:b6:33:18:33:65:ba:fc:18:96:ae:46:28:4a:ec:
45:f3:19:03:d4:2c:85:2b:6d:9c:cd:ec:52:84:92:
2a:87:60:c1:ca:28:c5:96:c5:e8:ad:7b:d0:78:64:
00:02:c4:22:e7:d5:bd:a2:9a:3a:0a:75:cb:0f:32:
65:a5:00:f6:17:8d:95:8d:98:35:9c:64:55:2a:7f:
6d:c0:05:f4:ad:b9:42:51:08:fa:97:0c:61:12:67:
90:07:42:d3:0e:9d:5b:01:7e:bc:18:6a:df:ca:b3:
ab:46:7d:a5:12:53:91:f6:a4:d1:c1:c6:2e:5b:7d:
cb:32:02:c9:0a:d5:54:0c:fc:56:4a:bc:67:f4:39:
41:41:e2:e1:af:33:71:45:67:0c:9f:79:49:04:cb:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BD:E5:05:F9:26:22:9E:87:C6:D8:D5:B8:3C:A6:D7:E2:60:17:88
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34342e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.12.44.0/24
Signature Algorithm: sha256WithRSAEncryption
52:59:b4:31:e5:9f:8e:e7:b6:3e:1d:69:cd:23:a9:77:fe:64:
be:f8:2c:80:97:e9:d0:22:89:0a:0b:8e:aa:d3:b8:63:d4:83:
90:c9:9f:9b:9a:f8:c4:88:2a:7f:0f:17:fa:78:06:37:14:51:
1f:de:1d:39:5c:f5:02:9c:03:ab:19:45:c2:87:c1:51:7c:bf:
9f:32:08:20:e0:73:e4:76:6f:2c:13:60:cb:e2:56:cb:6e:31:
f7:20:4e:e0:76:49:ba:85:9d:1e:d7:d6:c5:62:ce:5f:f0:dc:
61:dd:ee:a4:1f:66:00:88:d9:5f:2c:c3:f0:05:59:6e:e7:35:
b4:fa:e5:8e:90:04:52:e4:70:0f:12:6f:9c:a0:42:f4:da:76:
66:79:70:48:29:16:a8:0e:54:e4:e4:b5:80:39:2d:6c:9e:50:
9a:fc:95:07:86:3b:78:94:bd:dc:d8:bf:aa:09:2d:3f:d8:66:
f6:93:09:a2:fe:6d:86:89:c3:a4:10:59:47:e3:0b:53:89:fe:
0a:13:75:69:f7:1e:a4:b1:0e:bd:f3:06:8e:dd:ff:05:87:ed:
03:0b:de:7e:9b:5d:61:a0:50:ae:ad:c8:8b:80:84:31:16:80:
30:3e:f8:e9:82:e5:cb:b5:14:81:65:6e:d0:ca:00:d7:b5:88:
b6:c2:4b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:36:31 2025 by rpki-client