Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa
File: 3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa (raw, json)
Hash identifier: Maowy9ZefjHDMfvujJn0ro1tBo40XSiT/nD665jrUOE=
Subject key identifier: 7B:3C:F2:33:A6:49:09:5A:A1:C0:C0:5E:F5:03:13:64:C7:50:4D:18
Certificate issuer: /CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE
Certificate serial: 1E4F3814D121383D5C78DB743C96FEC61B52CDCE
Authority key identifier: 3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa
Signing time: Mon 01 Jul 2024 01:05:30 +0000
ROA not before: Mon 01 Jul 2024 01:00:30 +0000
ROA not after: Mon 30 Jun 2025 01:05:30 +0000
asID: 17995
IP address blocks: 124.158.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:4f:38:14:d1:21:38:3d:5c:78:db:74:3c:96:fe:c6:1b:52:cd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE
Validity
Not Before: Jul 1 01:00:30 2024 GMT
Not After : Jun 30 01:05:30 2025 GMT
Subject: CN=7B3CF233A649095AA1C0C05EF5031364C7504D18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:97:18:71:9a:28:74:0e:61:57:1a:b9:ff:fe:
4b:1b:59:28:39:b6:5f:9a:37:0b:e5:40:5d:3a:1e:
2e:35:1e:c4:bd:cc:d2:43:08:ed:cd:f5:5d:dd:9e:
34:61:e7:18:bd:cd:b9:ad:54:dd:cf:a7:c8:31:36:
7a:1d:2b:22:bb:70:a7:93:03:2c:fb:ce:d1:26:3d:
d6:29:6e:ae:88:40:1b:a8:98:97:8c:f2:8d:60:9a:
1e:69:c6:79:2a:bd:5c:b5:89:c8:ff:d7:ea:31:5d:
a3:42:1a:2e:2f:fe:fb:cb:00:02:6c:88:c7:52:26:
d8:01:9c:78:86:05:85:39:91:61:7d:e7:0d:75:cc:
8b:2d:14:b2:0d:cf:a3:19:8a:21:df:62:4e:19:d8:
8f:71:ee:be:cb:41:12:97:65:b7:a7:8a:2f:db:45:
8d:0a:82:85:02:4f:8c:42:3b:67:ea:64:88:33:ac:
74:ec:23:2a:03:b2:98:02:cb:72:84:98:a8:85:b1:
3d:aa:81:72:97:2b:7d:a1:0d:f0:bb:82:ca:ec:5f:
e9:0d:c2:60:e4:66:82:7a:9c:7c:b6:49:a7:58:8d:
9f:29:dd:46:e3:13:a8:b9:97:e5:bd:12:05:2e:a5:
e2:be:6d:44:10:6e:4b:49:84:2f:fe:02:32:cf:43:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3C:F2:33:A6:49:09:5A:A1:C0:C0:5E:F5:03:13:64:C7:50:4D:18
X509v3 Authority Key Identifier:
keyid:3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3132342e3135382e3134342e302f32302d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.158.144.0/20
Signature Algorithm: sha256WithRSAEncryption
99:a5:81:10:f5:cf:e8:71:d3:15:77:b8:0c:05:25:3d:52:a6:
9f:22:63:50:91:d4:16:61:c7:a4:7b:9d:3f:07:f1:19:14:b4:
a6:69:4c:aa:7e:49:ae:5a:43:88:b8:1b:fe:ea:2d:ab:8a:04:
5f:5e:cc:26:b9:18:ba:b7:67:2a:7c:cb:a1:a5:ac:3e:7c:e2:
7b:2a:f1:c2:fa:4c:26:da:fb:e9:56:50:a2:67:8b:af:2c:a8:
d7:20:7e:6b:32:1f:d5:4c:9b:71:d3:11:7e:00:78:cc:ed:b5:
b6:f4:9d:f8:55:22:da:6f:97:20:3c:30:e6:be:db:93:2e:c5:
dd:f5:5d:e8:68:7f:46:e7:cb:81:23:bd:11:4b:93:4e:06:35:
42:5d:ea:df:9d:c4:b6:27:2d:09:2f:56:00:99:c2:a6:ef:9b:
80:fb:3b:2b:ae:f4:1a:c1:6e:99:c6:24:43:98:19:0f:49:36:
5c:b4:aa:01:d2:f7:1c:d3:41:6a:16:47:a0:73:8b:2d:0b:96:
b7:a4:54:d1:73:7e:15:2e:14:71:05:bc:9d:56:ba:fd:0f:73:
c3:45:68:ec:58:29:c8:ee:88:c1:ec:d1:87:78:96:67:49:af:
e8:34:ed:09:7d:16:51:58:5b:35:67:22:85:6a:e8:7b:93:07:
66:96:cf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:12:55 2025 by rpki-client