Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa
File: 3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa (raw, json)
Hash identifier: dVyXyeitdxkWoIb0JFvBz6herhcN9vKQBLdnntu/3Os=
Subject key identifier: 1A:9E:F6:4A:3E:4C:21:8C:01:61:E7:B8:8A:5C:F8:F6:3A:43:CA:DC
Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Certificate serial: 6556E51068A5D38C60B59CFA311D6CA548CBEB3F
Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa
Signing time: Mon 01 Jul 2024 01:03:30 +0000
ROA not before: Mon 01 Jul 2024 00:58:30 +0000
ROA not after: Mon 30 Jun 2025 01:03:30 +0000
asID: 38150
IP address blocks: 180.214.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:56:e5:10:68:a5:d3:8c:60:b5:9c:fa:31:1d:6c:a5:48:cb:eb:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Validity
Not Before: Jul 1 00:58:30 2024 GMT
Not After : Jun 30 01:03:30 2025 GMT
Subject: CN=1A9EF64A3E4C218C0161E7B88A5CF8F63A43CADC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:07:02:f9:d2:a6:fe:1b:60:a4:3d:c2:29:42:
8f:62:f4:f6:23:4d:09:8b:97:ec:70:5d:61:2c:c7:
4f:9e:99:46:92:d8:a7:69:df:94:1c:0b:2b:6a:62:
6f:ca:28:57:a3:09:76:90:a9:1b:38:0f:5e:6c:14:
4a:dc:9f:30:66:5f:81:9b:cc:bc:3e:f3:dd:84:45:
2e:32:38:11:39:d5:bd:3c:08:86:17:15:ef:aa:30:
4e:73:32:d3:c3:6b:4e:4e:65:59:cb:f0:70:dd:4b:
20:71:7b:84:25:16:00:d4:47:f8:45:4b:8e:8e:7a:
89:34:2b:c8:8b:af:11:1e:d5:a8:24:a7:e8:50:2b:
70:a2:53:77:87:d7:f2:6e:88:4f:6b:20:01:9d:3d:
96:1d:47:40:75:b0:99:56:23:ac:79:db:ac:45:bf:
60:a8:e8:a4:db:79:7c:33:a4:59:79:5d:1a:0c:dd:
84:a8:30:4d:1a:7b:08:07:fe:b3:3a:b9:c7:a0:55:
04:09:55:b0:0a:d6:ec:09:b9:6a:5a:85:47:8d:c1:
e7:7f:01:04:bd:d7:04:97:f5:da:b4:33:bf:94:bd:
71:ea:dc:9c:5d:75:ab:ce:1f:93:ee:67:56:80:79:
fb:69:f8:13:e8:9a:e7:f2:68:3c:91:a6:b1:80:b9:
e0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:9E:F6:4A:3E:4C:21:8C:01:61:E7:B8:8A:5C:F8:F6:3A:43:CA:DC
X509v3 Authority Key Identifier:
keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3138302e3231342e3235332e302f32342d3234203d3e203338313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.214.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:7d:55:b8:49:71:1e:0c:03:5f:dd:3b:92:ea:e2:f5:9e:75:
33:7d:48:c9:1a:98:0b:5e:37:26:fe:ad:75:ba:7f:7c:91:eb:
20:d3:26:c6:3b:3c:6a:db:12:af:00:99:49:2a:72:f7:06:29:
58:b2:96:eb:82:df:f7:24:da:b6:dd:c2:b6:25:84:3f:5b:e2:
8e:a2:71:81:14:de:08:eb:23:0a:cb:5b:25:db:e7:05:06:29:
03:33:3e:8d:db:63:08:df:bb:34:03:65:ce:45:2a:52:62:c1:
cc:ca:71:17:a4:80:ae:02:04:75:42:09:1e:59:80:c1:fb:c9:
d5:bc:48:3a:6a:e3:09:d5:53:25:39:f3:30:4a:3f:62:be:da:
46:48:cb:d8:4d:cc:c7:51:c3:c7:6d:d0:14:a0:44:2c:62:d7:
01:54:6b:48:02:9a:16:32:11:b9:bb:a3:7b:d7:a9:ad:ea:c3:
06:1f:16:44:78:d5:83:4e:1f:4d:25:c9:5e:6f:28:3e:d5:5f:
b1:46:df:39:c5:a9:98:85:8c:b2:f6:35:f2:a0:46:f3:50:8c:
6c:28:ec:4e:7f:b6:7b:2f:97:2b:5e:3f:49:4d:b4:f3:b2:76:
12:11:26:ef:df:c7:aa:36:5a:da:ae:57:b7:d2:cc:51:66:2e:
a2:ac:a5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:43 2025 by rpki-client