Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa
File: 3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa (raw, json)
Hash identifier: +nLhKhZA3S8RIYOg9V7BkwCqgm5Ro2JjkUro3zt7BVo=
Subject key identifier: AC:9D:BD:DF:E9:F4:16:55:ED:2A:0D:D7:A8:51:23:A6:07:68:02:14
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 167172AD12494BBE4F5FCAE5BF3CA26BF03DAA2A
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa
Signing time: Tue 14 May 2024 05:00:00 +0000
ROA not before: Tue 14 May 2024 04:55:00 +0000
ROA not after: Tue 13 May 2025 05:00:00 +0000
asID: 140443
IP address blocks: 202.125.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:71:72:ad:12:49:4b:be:4f:5f:ca:e5:bf:3c:a2:6b:f0:3d:aa:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: May 14 04:55:00 2024 GMT
Not After : May 13 05:00:00 2025 GMT
Subject: CN=AC9DBDDFE9F41655ED2A0DD7A85123A607680214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:11:d2:45:eb:f2:a7:98:c1:2b:b0:ba:01:1a:
f7:a0:12:5f:8e:f3:63:16:6c:d1:30:f7:87:a8:a5:
c1:30:1b:e8:64:6a:35:bc:3d:c3:e0:56:9c:d1:cb:
e7:e0:97:80:48:ea:58:cf:bc:ea:9b:6b:10:9b:04:
7b:65:fd:ee:01:4b:a1:dc:69:d8:06:6d:ac:5a:60:
2c:6a:7b:41:9e:db:fe:28:80:04:f7:f9:1d:e2:e2:
90:ad:74:a6:6a:93:07:62:31:45:eb:59:97:b9:aa:
c9:f0:07:a4:98:84:ee:fd:bd:a2:4a:af:68:26:4b:
d1:fb:76:99:69:b6:99:2c:90:f7:d6:7e:0b:b0:14:
a9:10:5f:7a:e0:fb:aa:b8:dd:e5:9e:aa:4a:80:5b:
eb:af:c4:6f:ba:7d:e5:f1:ed:54:94:a2:c0:53:69:
b4:52:b6:eb:ca:10:44:f0:db:f2:cf:54:88:49:51:
6d:75:43:e5:91:d5:12:3f:0b:23:5b:bd:7e:fa:a0:
81:65:e9:bb:7c:85:6b:ef:40:e8:eb:8b:81:5e:6e:
7d:3d:52:de:88:e8:a5:a4:fe:29:0d:c0:64:c4:6f:
93:2e:e4:af:e1:7c:52:fd:39:51:8b:69:73:89:c4:
e2:ae:f2:1a:2e:cf:73:fe:04:2d:21:32:ca:1f:5a:
ca:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9D:BD:DF:E9:F4:16:55:ED:2A:0D:D7:A8:51:23:A6:07:68:02:14
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e3132352e38322e302f32342d3234203d3e20313430343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.125.82.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d6:de:4d:be:29:ba:c5:1c:7c:dc:b6:13:da:14:0e:7e:b4:
cb:de:e8:e6:86:20:08:bc:53:99:09:55:a7:15:4f:e9:5c:ec:
c0:64:49:ed:37:d5:00:84:0e:7d:74:5e:58:a1:8f:24:ed:83:
1f:bb:bf:60:c7:80:1f:1d:53:08:8b:3a:df:ca:38:f7:51:ff:
f5:5a:af:0d:a3:62:f5:93:15:4e:77:c6:86:3d:f9:4b:47:ea:
0d:a8:e8:d4:3f:74:80:54:a1:b2:16:3d:df:0d:d4:7b:59:7a:
cb:23:ac:a4:b7:5f:c3:28:17:5b:32:74:c8:8a:9c:a9:58:3d:
91:29:25:c8:7f:3f:8f:68:3f:fb:46:fe:94:2b:f3:95:6a:e2:
85:ce:12:6c:7e:b2:5d:b4:51:f0:6f:9d:d1:95:06:c9:d3:e9:
fa:2a:1e:0e:dd:9b:f7:0a:e7:8a:88:0b:0a:23:88:27:22:94:
c5:57:94:bd:df:15:12:16:94:df:4e:4e:53:33:07:e5:af:b4:
04:65:df:df:aa:89:89:4b:ea:e8:60:97:08:73:47:c3:cf:c0:
8d:19:bd:37:03:cc:17:4e:d5:8f:74:f1:6b:b0:4f:ea:14:ab:
56:f0:a3:80:84:dc:15:a3:ab:5d:6a:aa:c4:18:84:1d:22:6d:
39:30:74:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:10:09 2025 by rpki-client