Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa
File: 3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa (raw, json)
Hash identifier: sbrsfjLLhqpKDojV+x0rC88PYw1ETAXgO9yziSiF7yw=
Subject key identifier: C7:31:7F:52:23:7E:16:08:DA:D5:5D:9E:90:E0:52:7C:84:25:D5:19
Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Certificate serial: 70F0C1B8BC7BB3CEFDF3F795AC66DDE3170947B1
Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa
Signing time: Wed 02 Oct 2024 08:26:19 +0000
ROA not before: Wed 02 Oct 2024 08:21:19 +0000
ROA not after: Wed 01 Oct 2025 08:26:19 +0000
asID: 152780
IP address blocks: 110.232.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:f0:c1:b8:bc:7b:b3:ce:fd:f3:f7:95:ac:66:dd:e3:17:09:47:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Validity
Not Before: Oct 2 08:21:19 2024 GMT
Not After : Oct 1 08:26:19 2025 GMT
Subject: CN=C7317F52237E1608DAD55D9E90E0527C8425D519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1c:ec:92:66:f3:f8:bc:ee:a7:88:af:a9:5e:
34:da:9e:78:22:d7:8a:2b:89:c0:ec:2d:5c:f4:c9:
00:f8:6d:50:28:78:c5:11:74:39:8d:a7:19:25:67:
ae:db:4c:44:30:f4:35:06:c9:9b:a1:42:d4:fa:91:
3e:b8:23:99:47:29:4e:3f:b1:e5:99:21:0e:8a:46:
86:d2:1c:d2:61:55:b4:29:cf:57:57:83:f6:a1:dc:
c3:58:b2:b7:22:78:c8:a6:95:be:be:d9:ee:e8:88:
a3:4e:a9:88:5d:ba:f0:05:09:c0:07:92:c1:61:ac:
0e:21:35:3c:58:7b:a4:25:0c:58:cf:e1:74:23:ec:
6d:5b:9f:94:05:c9:83:f5:3f:36:e4:1c:bc:90:b2:
cb:35:b0:ac:08:c3:96:ce:97:92:8d:cf:ae:83:70:
01:af:63:12:64:52:68:59:32:41:07:c2:21:57:42:
cd:b9:c9:91:fc:2a:2f:67:14:fd:00:59:08:05:ec:
d5:3d:2e:a3:d3:2c:e8:29:37:3d:a1:60:ef:a3:f2:
c6:b9:ef:da:e5:d3:41:95:86:00:6d:5b:d0:f8:21:
65:a4:23:c1:78:26:e2:d0:24:a4:1b:fa:f5:9f:69:
fe:9a:75:72:14:bb:c7:67:99:97:cd:9d:01:aa:03:
d3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:31:7F:52:23:7E:16:08:DA:D5:5D:9E:90:E0:52:7C:84:25:D5:19
X509v3 Authority Key Identifier:
keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39322e302f32322d3234203d3e20313532373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.232.92.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:55:69:8e:e2:b2:b0:13:2e:57:fd:0a:17:75:07:28:2b:5f:
a1:f3:ae:43:3d:d4:d8:97:e5:df:e3:83:3b:c3:73:50:37:be:
3c:6d:17:5a:d8:c2:e7:16:2a:fc:dc:33:43:1f:53:85:06:6d:
bf:97:95:cd:b3:5f:d6:23:4f:68:d2:f0:82:84:1e:cc:bf:80:
5f:3a:b5:c6:88:7c:93:a8:32:a2:9a:5b:21:cd:41:01:26:9f:
42:4a:82:88:92:3f:cb:b9:c1:2e:0b:e3:41:26:1b:5a:c2:37:
01:9f:f4:ca:4b:fc:91:db:ce:6e:5c:db:07:f0:87:de:5f:2a:
5f:41:7d:7e:ab:ad:e0:e6:36:a9:a9:e8:46:d2:48:9f:e6:06:
71:05:a3:0f:4b:fc:de:b8:de:38:3a:40:ec:96:4f:b0:6b:0e:
65:f3:f1:fe:60:d1:61:27:7a:8c:e7:49:7b:59:59:8c:d9:f5:
54:74:b4:64:72:eb:9b:98:19:6a:29:84:68:42:38:8c:08:83:
4e:c1:7b:fd:96:06:07:77:ff:c9:50:4d:24:c4:78:ab:70:11:
cc:e6:ac:fd:e9:0d:e7:65:ac:e4:ca:02:5f:d8:7d:fd:f6:f2:
ed:8c:0e:67:5b:f9:7f:da:58:46:3f:b7:63:59:0b:82:28:80:
88:8a:e7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:09:44 2025 by rpki-client