Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa
File: 3131362e31322e34352e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: y4tUgxNJBovQ76Wk3La82wHesUOn7wMVx+GSmA56eYs=
Subject key identifier: 08:0C:D1:92:BC:09:F9:A0:83:D8:CC:22:6E:BC:31:1D:BB:B3:9F:14
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 1518FA4E68F4B364AD8E5F50659D027109D2644A
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 02:00:01 +0000
ROA not before: Mon 27 Jan 2025 01:55:01 +0000
ROA not after: Mon 26 Jan 2026 02:00:01 +0000
asID: 38165
IP address blocks: 116.12.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:18:fa:4e:68:f4:b3:64:ad:8e:5f:50:65:9d:02:71:09:d2:64:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 01:55:01 2025 GMT
Not After : Jan 26 02:00:01 2026 GMT
Subject: CN=080CD192BC09F9A083D8CC226EBC311DBBB39F14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ff:85:11:47:1d:64:20:c0:1a:a6:af:11:94:
48:cb:34:82:37:22:44:09:61:6a:6d:1c:eb:66:3d:
78:b3:ef:44:4f:e0:b9:d1:26:05:d4:3b:77:02:07:
7e:fa:07:c7:8c:f3:7d:e9:9b:74:b6:76:92:f9:7e:
70:67:92:cc:e5:bf:2f:72:66:13:af:6c:8a:b2:a6:
8a:8e:43:93:15:27:fb:bf:85:6f:36:2b:d4:9e:e7:
54:f0:24:ce:f1:a1:36:c7:ee:b3:c0:3b:97:59:16:
af:66:02:67:60:ae:bb:bb:d2:9a:6f:b6:3a:be:5d:
39:e4:9f:0b:1a:cf:16:62:a2:db:b6:96:b4:6d:86:
e8:7d:0b:b1:40:20:60:e5:30:53:db:a9:4a:c9:82:
5c:f4:75:c7:5d:f8:36:2f:06:d6:7a:b4:6c:c9:2a:
cc:39:00:d8:0b:6c:0b:8b:1b:09:f3:9b:c5:a5:4c:
24:18:05:6c:55:78:8e:db:ca:b2:e2:a8:34:a2:e9:
eb:3d:e0:f8:0e:82:a1:85:c7:22:53:46:2e:1c:fe:
41:09:3f:a4:7d:ae:dd:fb:6e:d7:72:a1:8a:9e:f1:
f2:0d:9b:71:5f:2c:61:d8:2d:d0:ca:62:0b:a7:86:
4a:57:9a:ad:65:c3:92:28:8d:f9:f5:66:55:8a:5c:
20:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0C:D1:92:BC:09:F9:A0:83:D8:CC:22:6E:BC:31:1D:BB:B3:9F:14
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3131362e31322e34352e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.12.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:3d:b2:00:51:79:c2:e9:fb:62:40:5b:0b:11:d8:87:07:9e:
a0:f2:3d:77:13:c6:82:49:62:72:eb:97:4c:f6:58:73:b1:7b:
72:85:86:bb:a2:c0:6a:5f:5e:b9:26:1e:29:fc:96:3a:9b:9c:
48:04:71:c4:2a:07:c9:dd:2b:63:bd:0f:56:c0:fa:fe:51:2f:
e3:94:ac:1f:a1:04:9a:f7:62:0a:22:0a:f5:dc:69:09:92:7e:
29:1e:ff:36:aa:98:ca:a4:a8:bd:c5:ff:b0:de:a8:d7:b7:9c:
68:96:d8:74:3f:0a:37:40:44:e7:db:86:fd:0e:af:f4:67:d7:
82:62:80:2c:26:f4:ae:e2:b3:ea:80:d0:7c:aa:9c:cd:0d:66:
c0:ff:30:ee:40:82:0e:07:36:9b:37:8a:8b:b1:db:98:f9:b6:
e7:d2:49:ea:32:26:45:3b:57:e0:f6:55:57:c4:cf:5f:e6:7b:
ca:b7:88:3f:9a:50:c3:3d:46:f7:38:b4:cf:e5:d9:46:c1:af:
9a:45:33:8a:73:51:75:84:de:48:78:f5:9a:15:09:23:df:80:
77:fe:f1:c0:0f:30:9b:f0:7b:1c:3a:86:70:4d:a1:84:fc:2d:
94:20:ae:69:26:38:d0:e8:b4:c1:b8:e0:e2:99:72:00:b0:d7:
60:87:1e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 18:06:36 2025 by rpki-client