Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa
File: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (raw, json)
Hash identifier: QN3Se42fDrnzH/Sn6RV3bdT6iaS+SIN59XlBOIPV4Lw=
Subject key identifier: A8:48:C2:F1:6B:E0:1C:21:12:B5:7F:85:03:28:48:3A:69:E2:BF:9F
Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859
Certificate serial: 032C6E5FECB5E8B2605B4FB03A245D43A97D6C4A
Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa
Signing time: Mon 08 Jul 2024 11:00:01 +0000
ROA not before: Mon 08 Jul 2024 10:55:01 +0000
ROA not after: Mon 07 Jul 2025 11:00:01 +0000
asID: 56233
IP address blocks: 192.140.224.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:2c:6e:5f:ec:b5:e8:b2:60:5b:4f:b0:3a:24:5d:43:a9:7d:6c:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859
Validity
Not Before: Jul 8 10:55:01 2024 GMT
Not After : Jul 7 11:00:01 2025 GMT
Subject: CN=A848C2F16BE01C2112B57F850328483A69E2BF9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:54:2f:35:a0:77:b6:8d:c6:3d:5b:80:81:e2:
c6:c2:43:86:7d:d2:22:e8:54:40:d2:6a:6e:5c:09:
f0:2e:91:46:6e:a5:d1:52:ec:91:3d:83:da:07:b5:
1b:fd:ec:1c:62:6e:97:11:7f:b7:b3:bc:83:70:3e:
7b:6a:a3:f4:7f:7b:57:0d:98:48:cc:bf:ed:2f:b4:
b4:5d:d9:40:18:a8:85:5b:12:bf:51:f1:54:25:4b:
18:85:e9:ff:fb:93:f6:23:d6:28:2b:b9:79:80:e8:
9c:9e:a1:ed:ea:6e:36:11:ed:e6:e2:9a:8b:e9:de:
6d:bf:65:17:8e:f3:2b:6d:d8:d1:ec:f4:45:1f:3f:
0d:77:56:2b:90:6a:89:47:9c:ad:82:f8:ba:e7:73:
bb:af:1f:d2:17:f7:9f:57:cd:57:2b:f3:b4:24:84:
81:9e:da:ab:7c:5b:1a:8f:8a:1a:ec:af:4e:76:04:
95:29:41:77:3c:21:13:36:a4:7b:aa:2d:22:5e:06:
5d:74:fa:c6:cf:13:97:3e:58:f1:d4:6a:fe:3a:34:
ef:65:aa:9f:d0:5f:57:a4:f7:ee:93:d9:c6:e5:1c:
b5:a5:44:cf:8b:15:07:99:02:57:4b:c6:7c:80:2e:
e2:97:1b:07:64:c5:67:7e:f6:82:4b:56:f1:90:66:
70:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:48:C2:F1:6B:E0:1C:21:12:B5:7F:85:03:28:48:3A:69:E2:BF:9F
X509v3 Authority Key Identifier:
keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.140.224.0/23
Signature Algorithm: sha256WithRSAEncryption
71:9d:7a:c7:0d:7b:8b:21:47:73:5f:47:2c:c9:aa:04:b6:d5:
80:ab:5d:2b:2e:39:81:79:0c:75:c4:ae:5c:1a:43:e5:fa:bf:
99:62:b6:e0:ef:84:e3:14:f1:74:11:e7:c9:97:88:01:1d:e0:
1f:98:46:6f:1a:8b:08:d1:6f:5e:c3:84:13:47:c4:dd:12:a0:
88:7e:df:7e:38:72:46:f8:1c:b0:f0:21:4f:84:f3:f7:66:af:
13:65:21:10:27:ef:dd:82:72:5a:2e:df:15:23:e9:20:b9:2f:
4b:ea:98:36:08:06:bc:02:5f:34:36:29:60:ef:f9:a8:0c:03:
6e:43:b4:ef:07:55:25:69:ed:07:dc:57:4e:36:a9:f0:78:83:
dc:37:c0:0a:e5:b9:03:f7:d4:e1:51:92:02:56:da:e4:b4:ac:
da:f6:ad:26:2e:39:ef:a5:74:8f:89:74:85:2e:3f:4c:ee:83:
da:df:87:de:34:4d:e2:4a:13:e2:c6:c1:7b:42:ca:7f:b6:69:
dd:b9:f6:e8:e7:60:4a:de:cd:90:42:93:45:9d:b0:bf:d1:6c:
84:de:b0:4b:cb:ef:d8:57:ca:a4:c6:99:7f:27:a2:53:83:3d:
4d:ae:41:6a:9f:51:18:69:78:34:25:af:47:d1:3b:54:b9:77:
a2:0b:b6:1f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUAyxuX+y16LJgW0+wOiRdQ6l9bEowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF
NTRDQTg1OTAeFw0yNDA3MDgxMDU1MDFaFw0yNTA3MDcxMTAwMDFaMDMxMTAvBgNV
BAMTKEE4NDhDMkYxNkJFMDFDMjExMkI1N0Y4NTAzMjg0ODNBNjlFMkJGOUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVC81oHe2jcY9W4CB4sbCQ4Z9
0iLoVEDSam5cCfAukUZupdFS7JE9g9oHtRv97BxibpcRf7ezvINwPntqo/R/e1cN
mEjMv+0vtLRd2UAYqIVbEr9R8VQlSxiF6f/7k/Yj1igruXmA6Jyeoe3qbjYR7ebi
movp3m2/ZReO8ytt2NHs9EUfPw13ViuQaolHnK2C+Lrnc7uvH9IX959XzVcr87Qk
hIGe2qt8WxqPihrsr052BJUpQXc8IRM2pHuqLSJeBl10+sbPE5c+WPHUav46NO9l
qp/QX1ek9+6T2cblHLWlRM+LFQeZAldLxnyALuKXGwdkxWd+9oJLVvGQZnCpAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUqEjC8WvgHCEStX+FAyhIOmniv58wHwYDVR0j
BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz
REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD
QTg1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZmQ0YmMyLTQxZDQtNDJlNi1h
N2ZmLTU5NDkzODg1MTI2YS8wLzMxMzkzMjJlMzEzNDMwMmUzMjMyMzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzNTM2MzIzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwIzgMA0GCSqG
SIb3DQEBCwUAA4IBAQBxnXrHDXuLIUdzX0csyaoEttWAq10rLjmBeQx1xK5cGkPl
+r+ZYrbg74TjFPF0EefJl4gBHeAfmEZvGosI0W9ew4QTR8TdEqCIft9+OHJG+Byw
8CFPhPP3Zq8TZSEQJ+/dgnJaLt8VI+kguS9L6pg2CAa8Al80Nilg7/moDANuQ7Tv
B1Ulae0H3FdONqnweIPcN8AK5bkD99ThUZICVtrktKza9q0mLjnvpXSPiXSFLj9M
7oPa34feNE3iShPixsF7Qsp/tmndufbo52BK3s2QQpNFnbC/0WyE3rBLy+/YV8qk
xpl/J6JTgz1NrkFqn1EYaXg0Ja9H0TtUuXeiC7Yf
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:22 2025 by rpki-client