Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa
File: 3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa (raw, json)
Hash identifier: 6VZzX0YiESZnq7W/qDaDzksalt2wCYKocwsLQFdZXQo=
Subject key identifier: B1:12:AC:29:1D:FE:4F:E6:86:37:8D:22:73:35:56:E6:1E:15:AC:41
Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E
Certificate serial: 3076506E82976621485367A0F8A1A750B393C4F8
Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa
Signing time: Mon 01 Jul 2024 01:03:52 +0000
ROA not before: Mon 01 Jul 2024 00:58:52 +0000
ROA not after: Mon 30 Jun 2025 01:03:52 +0000
asID: 24521
IP address blocks: 175.184.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:76:50:6e:82:97:66:21:48:53:67:a0:f8:a1:a7:50:b3:93:c4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E
Validity
Not Before: Jul 1 00:58:52 2024 GMT
Not After : Jun 30 01:03:52 2025 GMT
Subject: CN=B112AC291DFE4FE686378D22733556E61E15AC41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8f:5a:3f:23:a7:a2:f7:1f:d0:fc:5d:e5:ea:
6a:f2:2d:36:e3:d6:a3:33:61:88:b7:d2:5e:c3:47:
d5:53:9c:84:28:18:7c:89:6a:e6:ce:f7:8a:04:27:
26:c3:54:30:ef:ff:47:c4:fd:21:22:39:b8:1f:28:
8f:de:90:99:1e:31:da:07:1c:85:b1:dc:60:46:7c:
d1:8e:11:e0:6a:8f:dd:f7:a2:77:ed:42:45:05:99:
f4:83:19:ca:72:fe:35:5b:c4:3e:43:56:81:c7:b9:
97:53:b5:f5:77:ef:20:3d:a1:b9:74:15:6e:4a:b4:
10:93:ad:36:07:24:2c:a0:82:46:39:67:fb:18:5e:
5b:fa:0e:e5:45:6c:dd:67:a8:d7:76:38:e8:d6:92:
c8:b2:70:3e:ed:32:8a:a1:71:27:1d:2b:c3:c7:6b:
38:3c:15:7f:e5:b1:99:75:cd:0c:6a:4f:d6:81:5c:
3b:d3:c2:2f:ab:36:62:43:37:c8:8d:b2:1a:10:f3:
38:c2:a7:76:46:bf:19:72:ea:93:a0:6c:3e:64:7b:
cc:78:95:a1:da:9d:7b:d0:cc:0d:20:1d:95:32:98:
64:52:9a:5d:b0:93:3e:25:6e:45:5b:fc:4c:c9:b4:
ef:c0:f1:f1:a4:ad:fb:e7:97:24:ec:b7:92:cb:dc:
52:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:12:AC:29:1D:FE:4F:E6:86:37:8D:22:73:35:56:E6:1E:15:AC:41
X509v3 Authority Key Identifier:
keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/3137352e3138342e3232342e302f32312d3234203d3e203234353231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.184.224.0/21
Signature Algorithm: sha256WithRSAEncryption
20:11:33:93:cb:0f:2a:35:6f:f8:04:6f:4e:0e:d7:0c:c8:21:
d0:e0:bb:db:7a:7a:30:f2:f5:f2:7f:82:30:a7:f4:7d:45:14:
d3:5b:ba:8e:9a:91:66:0d:1d:51:eb:c2:b1:da:ec:bf:7e:94:
7c:33:2c:21:f8:4b:01:22:36:83:f2:13:22:a6:c5:2b:be:25:
2f:83:1e:fb:50:e7:05:49:db:7e:aa:9e:be:c3:bb:9f:75:0e:
f5:52:86:35:6f:0b:18:f7:e6:16:45:ce:b7:86:88:5b:b3:d0:
41:12:00:76:fe:c1:8f:08:fe:ac:99:8b:ae:39:56:91:7e:32:
11:87:0b:b3:2d:5d:d1:88:ee:32:40:d6:26:ae:83:e0:07:e1:
3e:82:22:c9:01:7a:9b:ac:33:79:ed:31:74:97:a6:ff:a2:e0:
6e:f2:23:f5:f2:5c:1b:95:db:93:e2:b9:d1:d5:18:5f:53:2e:
79:8b:30:e3:c5:e0:3e:4d:1d:44:20:d2:7d:78:c9:f7:ee:9f:
71:05:7b:43:4c:24:02:79:e2:f8:d1:76:50:c1:e5:66:b3:42:
50:a4:a0:0f:4b:91:d5:e4:c2:04:d0:d0:3b:3f:84:c7:04:97:
48:a6:17:af:ff:31:46:cc:e7:ab:fe:df:a2:8a:a6:9a:f4:28:
3f:0e:50:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:54:21 2025 by rpki-client