Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa
File: 3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa (raw, json)
Hash identifier: MPKCsRZDZNYsOLsUI2cCtDDIcaytMV4pMvYW85eFW6g=
Subject key identifier: CD:BB:4D:12:36:BC:3C:96:EF:E9:1B:DE:AC:F6:C8:C9:E5:B8:82:10
Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Certificate serial: 2C0EDFC94AD190ECD8632B3C44F7F9C11EF373A7
Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa
Signing time: Mon 01 Jul 2024 01:03:31 +0000
ROA not before: Mon 01 Jul 2024 00:58:31 +0000
ROA not after: Mon 30 Jun 2025 01:03:31 +0000
asID: 38150
IP address blocks: 180.214.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:0e:df:c9:4a:d1:90:ec:d8:63:2b:3c:44:f7:f9:c1:1e:f3:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Validity
Not Before: Jul 1 00:58:31 2024 GMT
Not After : Jun 30 01:03:31 2025 GMT
Subject: CN=CDBB4D1236BC3C96EFE91BDEACF6C8C9E5B88210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b1:46:70:9e:44:d6:96:d1:cd:1e:3f:d8:33:
f9:bc:d4:12:7b:ed:fa:1e:a6:1a:02:33:b1:0d:6c:
3e:31:fc:66:c8:79:d2:5e:fe:5e:8d:89:1e:c0:d7:
e8:74:b1:4b:e1:2b:ac:6a:43:f5:08:40:4e:bc:61:
3c:de:e1:e4:23:9b:c4:ff:05:3d:dc:47:80:63:8e:
14:b8:32:f4:f8:39:b7:21:ff:1a:b4:74:03:ea:78:
ba:a5:fb:03:ba:a6:47:54:bc:00:69:83:d4:4a:28:
45:bd:9e:74:1e:49:f5:8c:74:e4:cc:e5:62:01:c1:
74:0b:9a:f2:1e:91:c6:66:42:59:44:fd:63:14:92:
1b:29:d3:14:52:c8:b8:f7:9c:9c:c8:1a:95:23:c8:
21:59:3c:58:7f:a4:cd:2b:9c:b9:27:83:07:5d:ec:
bb:40:45:e9:90:f8:d3:19:80:e9:9f:1a:65:96:3e:
a5:8c:ca:c2:0f:59:0f:87:33:78:10:71:29:56:76:
6b:fa:a2:73:c9:d7:ff:06:36:35:dc:15:7c:62:85:
dc:8c:6e:64:9d:be:80:7a:82:13:46:ce:1c:68:6f:
aa:14:d5:f8:be:83:42:f7:68:40:0c:fb:a1:46:2f:
04:23:72:6f:0c:55:d1:63:8c:99:83:be:b1:aa:e0:
ee:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BB:4D:12:36:BC:3C:96:EF:E9:1B:DE:AC:F6:C8:C9:E5:B8:82:10
X509v3 Authority Key Identifier:
keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3234382e302f32342d3234203d3e203338313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.214.248.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:a2:86:bc:05:31:f9:fc:6a:52:1e:cf:6c:0f:a3:27:c2:62:
d4:16:3d:02:b4:a1:90:9e:7a:8a:e2:a4:92:84:50:08:7d:0e:
9c:bf:c3:20:cf:f2:5c:76:a7:d1:ad:45:44:a6:d2:82:9a:54:
20:d7:cb:25:68:db:f1:0e:5e:fa:9d:f9:0d:6f:7c:40:f8:59:
43:81:15:36:fc:e7:36:2a:ee:43:f1:97:88:7c:a4:c8:1f:80:
c0:d6:1f:59:ea:0c:5b:00:62:72:43:48:b1:d9:7d:6c:e4:42:
95:8e:c5:8c:a4:35:ec:dd:f7:98:8c:23:08:e5:a4:70:b0:c0:
f1:bb:65:21:85:09:40:ae:0e:0c:9e:c6:d7:ea:d9:ef:6b:c0:
36:0a:11:38:a6:ea:bc:63:58:ab:78:36:38:83:fc:2f:54:7d:
8d:75:f7:9b:5b:f3:a4:2a:c4:00:7c:75:aa:37:e8:63:d5:a2:
38:1a:e7:bc:ea:d7:e9:fc:22:db:8d:4e:e6:74:6c:28:c1:39:
2b:1d:8e:89:92:cb:8d:f1:2c:d2:79:a1:6e:f7:80:ba:88:e3:
3a:ed:80:5b:cf:cd:91:ba:05:a0:e7:ed:dd:0c:df:3c:aa:89:
dc:0a:cd:e9:5f:9a:b5:14:d9:25:19:b4:de:ac:c1:3b:18:9b:
86:6e:e6:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:35 2025 by rpki-client