Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3234203d3e2039343232.roa
File: 3232332e3133302e32322e302f32332d3234203d3e2039343232.roa (raw, json)
Hash identifier: T0qy24Jw4nMkx0vavFP/FymLrM7UIs0+axCAYFq5t24=
Subject key identifier: 22:78:49:8B:87:6C:1E:9F:9B:64:16:87:AE:17:45:6A:0B:93:D8:0F
Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33
Certificate serial: 096F397AEBA87D8DAD0024E08A58053594B4B61A
Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3234203d3e2039343232.roa
Signing time: Mon 01 Jul 2024 01:05:17 +0000
ROA not before: Mon 01 Jul 2024 01:00:17 +0000
ROA not after: Mon 30 Jun 2025 01:05:17 +0000
asID: 9422
IP address blocks: 223.130.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:6f:39:7a:eb:a8:7d:8d:ad:00:24:e0:8a:58:05:35:94:b4:b6:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33
Validity
Not Before: Jul 1 01:00:17 2024 GMT
Not After : Jun 30 01:05:17 2025 GMT
Subject: CN=2278498B876C1E9F9B641687AE17456A0B93D80F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3c:f3:97:a9:e5:4b:59:a4:13:13:9f:2c:c0:
84:af:bf:2d:04:17:57:38:db:95:b4:94:4c:b7:ab:
39:5e:d9:83:41:31:7a:61:99:56:46:ec:c3:d5:33:
ed:62:0a:78:7e:49:35:62:8c:ac:de:68:18:bb:f4:
b7:73:f0:39:07:64:36:34:3c:a9:38:ad:76:eb:49:
1b:cb:84:17:fc:85:4f:24:4b:b2:8a:26:8a:3d:90:
09:ad:1f:f2:dd:b9:ea:01:8f:ef:f2:5d:02:84:25:
b7:5a:63:22:f6:4b:b7:89:91:80:c2:32:99:6c:19:
e2:17:48:d7:d5:1c:86:a4:d0:f2:f7:8e:b3:4a:51:
7f:a2:d6:8b:d0:b1:8a:6f:f7:74:8f:e3:fb:21:dc:
6c:bc:94:87:12:ff:25:58:fe:b5:00:0a:86:6d:8b:
43:95:e9:94:79:33:75:c8:4e:2f:40:39:ed:71:b5:
b5:12:b5:8a:1f:3e:ca:85:3b:0f:d3:c7:e9:f4:70:
29:1f:e9:c0:ec:5f:94:20:33:79:05:b6:48:c2:62:
c3:f7:e5:a6:ab:c4:2f:51:0f:72:16:98:20:ca:c7:
6c:89:e1:56:c3:12:b7:ef:4f:0d:fa:a1:af:d3:62:
0c:19:54:1f:25:51:87:a6:27:51:38:90:dd:16:58:
ea:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:78:49:8B:87:6C:1E:9F:9B:64:16:87:AE:17:45:6A:0B:93:D8:0F
X509v3 Authority Key Identifier:
keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32322e302f32332d3234203d3e2039343232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.130.22.0/23
Signature Algorithm: sha256WithRSAEncryption
39:86:27:98:2a:3a:a8:bc:78:f6:34:5b:04:b8:b8:74:5d:43:
7b:77:95:bb:56:23:e6:6b:e9:d9:ea:af:09:d3:54:6c:09:9b:
40:02:74:4f:80:d2:44:42:96:ae:e0:0c:6a:61:09:a4:e1:a0:
ff:09:4b:4b:d3:81:7e:25:4b:55:e6:20:e4:81:8b:73:ba:e3:
b4:dc:17:ef:34:cb:d5:2b:f2:5f:4e:f9:ad:b3:6e:c6:a7:4b:
c4:0a:00:21:18:89:36:c0:11:f9:5d:82:16:17:61:06:ab:eb:
8e:91:6b:a3:3a:47:48:8a:a0:1f:d0:5a:87:41:cd:30:5d:5d:
7b:ff:99:d6:10:bc:c7:1a:76:03:ce:7e:32:ce:92:2d:b3:55:
93:69:fe:16:58:91:59:13:dc:a7:97:8e:95:37:2e:3e:c1:71:
c2:6a:ed:4a:c7:02:17:bf:fd:13:de:3c:e0:d8:d6:5c:91:40:
d8:c8:dc:7f:c8:c7:cc:33:26:20:a7:32:10:8e:ff:f6:e5:ce:
e0:6c:66:2e:c1:74:04:29:9f:f2:0e:c1:26:b9:ac:df:38:8a:
c1:c9:8e:22:d5:53:39:70:5c:73:40:0b:59:0e:d5:f2:95:e8:
03:3a:ef:75:1b:d0:5f:c2:4f:36:7a:14:19:f1:f1:27:c5:d8:
c1:23:70:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:44:59 2025 by rpki-client