Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa
File: 3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa (raw, json)
Hash identifier: NfXkvyJjdz3lMbP2RK80QjI1Az4nVDj8tmiqN24vkXc=
Subject key identifier: CF:C5:80:CD:7D:AE:3E:A2:3D:AA:39:27:5C:97:C1:3B:BE:E9:0E:98
Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Certificate serial: 194E5948C9B3ABF9834090D95002C0CD51262F77
Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa
Signing time: Mon 01 Jul 2024 01:03:31 +0000
ROA not before: Mon 01 Jul 2024 00:58:31 +0000
ROA not after: Mon 30 Jun 2025 01:03:31 +0000
asID: 38150
IP address blocks: 180.214.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:4e:59:48:c9:b3:ab:f9:83:40:90:d9:50:02:c0:cd:51:26:2f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Validity
Not Before: Jul 1 00:58:31 2024 GMT
Not After : Jun 30 01:03:31 2025 GMT
Subject: CN=CFC580CD7DAE3EA23DAA39275C97C13BBEE90E98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cd:40:f4:b4:32:bd:27:31:b1:f7:7f:ec:0f:
c5:50:02:24:d1:bf:bc:87:35:95:51:14:47:de:4c:
e0:97:c1:d3:ad:79:03:0e:b4:ec:69:97:36:33:83:
b7:88:13:d7:e1:64:b7:a6:7a:02:13:42:e8:0b:4f:
e8:6f:c8:34:6d:65:a3:21:bd:9c:60:fe:99:fc:a1:
d6:02:21:af:6f:f1:25:a0:80:9a:aa:44:d9:49:91:
ad:13:d7:9a:02:df:f1:87:e8:79:75:f6:97:ae:79:
18:cf:16:22:07:88:01:95:39:81:a6:9b:95:7a:7d:
e7:18:52:a2:61:d7:09:11:cd:35:99:cc:48:a1:21:
b5:5b:74:f6:8f:3b:10:d7:28:cf:fc:bf:98:a2:72:
d5:d3:9b:bf:66:06:d7:32:47:36:f5:75:f7:b5:ee:
5f:cf:01:cc:48:27:f8:7a:f5:ee:4f:16:78:40:c7:
00:09:09:f5:5c:a3:bd:1c:f2:ee:32:22:76:20:f6:
ea:5c:89:ee:76:25:c1:11:41:74:95:81:ba:7f:25:
6b:9d:1a:6f:47:5d:08:21:fb:86:c7:2a:98:30:1e:
a9:04:22:73:d6:c2:98:c0:1f:fb:b3:87:e4:4a:31:
94:fa:1c:98:5a:b4:12:b6:c9:05:44:59:58:45:9a:
e8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C5:80:CD:7D:AE:3E:A2:3D:AA:39:27:5C:97:C1:3B:BE:E9:0E:98
X509v3 Authority Key Identifier:
keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234332e302f32342d3234203d3e203338313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.214.243.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:90:be:86:2f:80:49:e9:61:b2:f1:fa:07:52:f5:fa:98:dd:
ce:09:6d:dd:8d:22:23:0d:e1:a9:7b:00:86:10:af:58:af:32:
49:a9:04:2c:42:de:2b:89:fa:60:f9:c7:83:e8:5e:7b:67:be:
10:2f:c7:df:57:24:3d:d1:1f:ac:3a:7b:21:e3:7e:f7:95:43:
55:13:45:93:df:c6:73:1d:a6:e9:f3:d0:31:6f:b4:a6:8d:28:
fe:b6:5b:d3:fb:9a:de:ca:82:7e:c9:91:9b:d0:b5:e6:d2:56:
a2:b8:c8:2b:d9:ba:64:0b:df:87:46:9e:d4:56:db:f7:69:80:
c4:38:0a:29:0b:b8:b9:23:20:88:21:7a:6f:dc:6c:62:89:09:
31:cc:72:32:83:63:8a:9d:f3:c6:d7:1b:e9:37:6e:46:65:a2:
54:f0:44:5d:13:44:ff:bc:df:ca:e1:3f:d7:1c:b4:aa:5b:02:
11:fe:9f:50:b8:3c:86:67:cf:2f:33:ff:d9:33:8e:cf:6a:8e:
be:2a:a2:01:e4:97:6b:84:0c:f3:f8:d5:11:6d:13:7c:f6:65:
c9:14:ce:63:3c:da:43:fd:e7:0d:8e:0b:2c:dd:ba:13:8f:c6:
08:61:0a:a4:5e:76:ee:ff:c8:63:87:e3:32:e4:69:ff:db:67:
bf:a3:ab:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:43 2025 by rpki-client