Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234352e302f32342d3234203d3e203338313530.roa
File: 3138302e3231342e3234352e302f32342d3234203d3e203338313530.roa (raw, json)
Hash identifier: /l1tDvX0eINixyD193hNPS/nyzynVbnxaZxIsWWnUIs=
Subject key identifier: 87:81:72:63:5F:6F:E6:F6:0C:7A:8E:23:A5:8F:97:8A:F2:CE:40:D2
Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Certificate serial: 29291C4EAE08F7DF97A7ED9AABD669875E8A6D14
Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234352e302f32342d3234203d3e203338313530.roa
Signing time: Mon 01 Jul 2024 01:03:30 +0000
ROA not before: Mon 01 Jul 2024 00:58:30 +0000
ROA not after: Mon 30 Jun 2025 01:03:30 +0000
asID: 38150
IP address blocks: 180.214.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:29:1c:4e:ae:08:f7:df:97:a7:ed:9a:ab:d6:69:87:5e:8a:6d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Validity
Not Before: Jul 1 00:58:30 2024 GMT
Not After : Jun 30 01:03:30 2025 GMT
Subject: CN=878172635F6FE6F60C7A8E23A58F978AF2CE40D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c1:a5:7b:e4:f4:0e:23:34:e1:ae:1a:f5:76:
97:2b:33:82:da:21:d2:c1:0c:0c:55:65:08:a9:15:
a6:3a:1e:cb:75:43:8a:0f:fa:0e:aa:a7:e6:eb:5f:
15:f9:83:e8:57:21:95:72:80:43:c0:5c:4f:b6:f8:
a4:ad:1c:3c:f9:9d:b9:2c:72:c7:c0:8f:2b:8f:d7:
67:3d:48:a0:93:2a:59:29:a6:66:03:49:c2:2b:c2:
77:05:da:14:7b:24:dc:36:aa:f2:d2:59:67:bf:3d:
2b:93:46:c7:3c:df:b1:6a:d6:2a:8d:f4:07:42:cc:
e0:e6:14:c1:83:6f:a8:2f:bc:04:e3:77:97:63:d1:
ff:89:96:ec:af:fd:6d:63:7c:df:3b:89:95:fa:32:
93:7e:e9:85:89:cc:af:ac:15:49:93:3d:91:db:8d:
03:61:f4:4f:a4:66:62:73:60:41:95:05:9f:f7:1f:
d5:74:c3:4b:aa:8a:1b:61:0b:18:15:25:81:4b:19:
8a:54:9c:2e:9b:38:35:52:25:06:dd:41:fb:95:2d:
be:4f:76:bf:af:7e:94:15:b3:3d:08:e2:89:5f:f8:
12:de:fa:0f:ba:50:6b:47:be:91:24:09:57:fb:b8:
ad:f5:a8:f8:ab:be:bb:5a:cb:1f:79:20:5c:90:da:
65:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:81:72:63:5F:6F:E6:F6:0C:7A:8E:23:A5:8F:97:8A:F2:CE:40:D2
X509v3 Authority Key Identifier:
keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234352e302f32342d3234203d3e203338313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.214.245.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:43:8c:34:f0:e5:3f:a9:35:14:36:ac:36:1b:91:44:aa:cd:
97:97:fb:56:21:cd:0f:e9:12:61:9d:cf:a6:7f:ad:11:76:fd:
89:60:8f:36:7a:1e:f5:01:3d:98:3c:b9:09:b6:29:69:c8:e5:
6a:15:78:22:6a:c3:60:6b:f9:58:30:f5:c7:34:53:79:16:42:
32:8b:08:1e:da:b1:aa:10:6d:52:97:9e:e6:14:03:ab:d8:62:
70:06:99:a2:63:cd:b6:30:fd:8a:db:49:0b:3f:f6:ba:75:86:
80:2d:36:02:77:75:fc:a7:06:b7:58:18:51:f8:78:68:0d:a7:
1e:10:6a:87:7f:9a:92:53:c5:95:01:55:5d:a2:f7:10:66:2a:
a1:40:5b:40:7a:38:e7:73:fe:71:5f:89:38:89:13:41:b8:df:
02:02:98:d2:4e:29:b1:c8:fd:5d:4f:7a:1d:a8:4a:6c:92:a3:
f2:41:9b:9d:ed:88:b7:8b:82:2a:12:fa:ac:63:32:80:ab:f3:
58:aa:8b:b6:c7:dc:f1:26:2d:0c:e0:03:ce:ce:c3:a1:62:f7:
ba:17:f9:e5:93:4d:b3:f2:28:c2:79:e0:95:52:a7:17:4e:3d:
a5:0f:8a:4b:89:b4:df:cc:2f:52:13:1e:76:dc:81:3c:d5:f7:
5c:68:6d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:45 2025 by rpki-client