
Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa
File: 3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa (raw, json)
Hash identifier: Q0JPOTRHz7S3KCYgxrzfh7sPXe85gqUb+g55+vjlzmE=
Subject key identifier: A3:1A:24:21:A4:3F:B1:CD:30:3E:83:F0:B4:85:20:7C:99:A5:8B:73
Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial: 2F8740A04631201C350EA005DFF202B3E3CA6176
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa
Signing time: Wed 16 Oct 2024 14:00:01 +0000
ROA not before: Wed 16 Oct 2024 13:55:01 +0000
ROA not after: Wed 15 Oct 2025 14:00:01 +0000
asID: 38148
IP address blocks: 122.200.144.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:87:40:a0:46:31:20:1c:35:0e:a0:05:df:f2:02:b3:e3:ca:61:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Validity
Not Before: Oct 16 13:55:01 2024 GMT
Not After : Oct 15 14:00:01 2025 GMT
Subject: CN=A31A2421A43FB1CD303E83F0B485207C99A58B73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b6:53:d7:93:3b:e4:eb:08:cd:fc:45:02:cc:
02:96:11:c6:98:5d:50:74:51:22:fb:5f:32:9c:20:
9d:03:39:47:89:d2:da:5b:88:8f:2e:ed:87:0b:15:
0c:68:a8:7c:e5:b2:98:4b:84:43:0b:2a:d9:93:58:
58:46:39:25:9f:2c:0b:2c:f6:7c:6b:1e:f9:da:36:
28:b6:bb:72:0f:b2:1f:ea:a9:a7:5e:11:1c:13:92:
0b:be:01:cc:0c:23:35:2d:bd:86:3f:f0:9d:19:8c:
d0:09:3c:6c:4a:7e:1d:03:9a:91:27:28:af:c5:cf:
14:59:e3:ca:a7:83:b6:87:c1:30:58:b8:5a:b5:c2:
18:3d:c0:91:7c:e8:df:6f:b2:82:44:95:6b:da:5b:
92:43:75:c0:07:c8:ae:83:11:15:b1:57:62:0c:80:
b3:93:a9:20:b3:be:df:20:78:8a:29:a5:79:8b:d4:
c9:25:54:ea:e5:30:28:b7:0d:d3:a8:eb:9c:48:2a:
86:a4:c1:c0:04:fe:98:c1:03:d3:66:03:de:bb:bb:
36:ce:5a:5b:6c:3b:72:44:56:fd:4c:3c:73:bb:a5:
1a:2f:7c:8b:19:42:77:9d:ba:60:71:b6:43:1c:88:
cc:bb:2a:c5:66:01:f3:32:21:9a:a7:88:7a:95:d7:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1A:24:21:A4:3F:B1:CD:30:3E:83:F0:B4:85:20:7C:99:A5:8B:73
X509v3 Authority Key Identifier:
keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3132322e3230302e3134342e302f32312d3234203d3e203338313438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.200.144.0/21
Signature Algorithm: sha256WithRSAEncryption
74:a5:92:12:c2:4d:c4:0f:47:7f:18:c8:3e:0b:98:d6:64:f2:
49:7b:31:c4:9c:58:6c:d7:2d:a2:f6:99:fa:3c:3b:8d:a2:b6:
84:02:8b:3c:2a:ce:15:4d:af:df:cb:db:20:5b:7d:9f:ef:d4:
36:01:79:cf:1f:9c:ed:fe:8e:6a:d1:1d:70:67:8f:05:a0:c3:
bc:89:20:37:e2:ff:8b:8e:fa:35:5c:e2:75:6f:bd:ae:97:93:
d9:7e:02:ac:55:a4:3e:0b:55:d0:77:09:22:ec:f4:48:7a:a0:
03:58:ee:bc:bb:10:0e:7c:71:d2:d0:19:95:0e:73:da:b0:a7:
bb:fb:ab:30:4d:7b:f7:bf:ef:57:66:b1:80:d9:57:d8:e0:72:
be:40:1e:7b:2b:2a:8f:6b:9e:70:e2:ff:82:d2:5d:a7:82:71:
fd:69:72:86:01:f2:39:8e:e1:8a:04:cf:d5:09:92:d4:c1:f1:
af:be:39:fe:ae:0d:a4:f5:62:f7:ed:f6:4b:4e:8c:68:e5:f4:
a4:c4:2e:ec:47:eb:2d:66:45:38:d1:99:61:78:90:d8:df:88:
3e:19:a0:3d:ee:81:1f:ee:fd:eb:44:4b:6c:a7:e0:95:73:61:
0a:e5:80:b7:8b:e1:37:0e:38:75:8f:e6:79:a8:36:cf:bb:11:
56:3d:8e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:56 2025 by rpki-client