Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa
File: 3132302e32392e3232362e302f32342d3234203d3e203338373634.roa (raw, json)
Hash identifier: mysGAJlaNM3q0YL8uE3Xz1GWVqbaXG+zqdMdDsNe4Gc=
Subject key identifier: DE:4B:E1:68:32:F6:61:2F:4F:6C:43:A2:68:D2:00:7A:A9:9F:1A:D5
Certificate issuer: /CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251
Certificate serial: 33DB94E3F72081D309052123EB9D84E1AEF59DB2
Authority key identifier: 3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa
Signing time: Wed 19 Feb 2025 11:00:01 +0000
ROA not before: Wed 19 Feb 2025 10:55:01 +0000
ROA not after: Wed 18 Feb 2026 11:00:01 +0000
asID: 38764
IP address blocks: 120.29.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:db:94:e3:f7:20:81:d3:09:05:21:23:eb:9d:84:e1:ae:f5:9d:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E66628C03CAB8C6D6FCDEDBE0700557A35B0251
Validity
Not Before: Feb 19 10:55:01 2025 GMT
Not After : Feb 18 11:00:01 2026 GMT
Subject: CN=DE4BE16832F6612F4F6C43A268D2007AA99F1AD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:de:d5:2e:b9:c0:f2:a8:03:28:44:90:cc:
bf:d4:2e:7f:ba:58:53:4e:2d:ab:5f:aa:15:9f:e2:
3b:6e:15:75:b7:2d:e3:8b:62:3b:8c:75:10:93:95:
e2:d5:fb:0c:7d:19:42:5d:d6:8a:29:b5:9f:1c:e3:
60:1b:af:f0:38:1c:9d:c7:66:eb:24:2f:83:0b:09:
7c:69:5b:5e:14:14:87:2c:6c:28:45:a6:87:5f:b9:
9d:86:91:06:25:0f:df:a0:df:03:6a:6c:80:a4:4e:
a1:32:17:df:41:7c:10:27:7a:94:76:9a:fc:fa:9b:
ba:9c:cc:ac:a8:ce:4f:d0:74:44:9f:47:f2:ac:d0:
2c:58:56:38:fc:4e:5b:eb:e1:a1:ae:85:91:b2:7f:
ca:f3:31:79:50:26:46:8b:8b:9a:92:a3:f4:0e:e9:
a2:50:4b:c8:c2:e0:1b:77:12:d1:c7:4f:fe:86:fb:
5b:c6:81:9f:8f:68:41:2c:b7:ea:94:fb:2a:b4:93:
e6:e6:dc:15:ea:ac:6c:99:f9:ad:7d:f3:12:88:2e:
7f:01:2a:9d:bd:07:9a:f7:88:6c:3e:d4:20:9e:a4:
c2:6a:53:45:49:48:2c:2e:51:fe:01:b5:4a:3e:76:
df:8c:02:03:21:ee:0c:2d:1e:e4:17:9b:14:45:ad:
45:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:4B:E1:68:32:F6:61:2F:4F:6C:43:A2:68:D2:00:7A:A9:9F:1A:D5
X509v3 Authority Key Identifier:
keyid:3E:66:62:8C:03:CA:B8:C6:D6:FC:DE:DB:E0:70:05:57:A3:5B:02:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E66628C03CAB8C6D6FCDEDBE0700557A35B0251.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/221c9cad-c3b9-45a0-beb6-bce48e2b2272/0/3132302e32392e3232362e302f32342d3234203d3e203338373634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
120.29.226.0/24
Signature Algorithm: sha256WithRSAEncryption
99:81:69:8b:d7:cf:66:05:53:d6:54:c0:8c:98:04:b7:5d:79:
19:67:5c:ef:7b:33:55:ea:fe:8f:fd:2b:10:6d:24:fc:24:e6:
cd:df:4f:b2:19:a9:2a:96:f8:be:21:75:72:83:18:fa:b0:4e:
d7:dc:de:34:0d:c7:c8:d7:c8:c5:eb:74:47:b7:88:5b:e2:e6:
a2:68:7a:d4:5a:a0:05:8c:c7:04:57:16:ab:39:3b:1a:ec:a1:
14:d4:70:03:71:9a:7c:1f:74:6e:e6:94:59:98:90:b4:67:31:
7a:a4:6e:3f:eb:39:2d:97:48:cc:67:8b:48:0a:12:37:64:e5:
5d:f6:81:44:f6:8e:a8:21:8a:91:86:b8:f6:2a:6d:9a:99:66:
3a:8d:0b:42:f9:d4:3e:70:54:c5:c4:f8:91:20:6e:1c:ce:a9:
cd:8b:89:ec:ce:ba:d2:ab:27:50:af:86:93:de:04:0f:c1:0b:
02:24:35:9d:06:b4:5e:23:1b:ec:5d:fb:ff:f4:85:42:0a:e9:
7c:fc:64:93:da:31:97:77:96:c2:b2:35:a7:3b:50:b3:84:ec:
78:9d:96:f4:0d:7d:43:07:fe:c7:80:4c:0f:56:59:53:8e:47:
55:e3:31:f9:fb:17:dc:31:1f:91:1c:18:09:6b:fd:ab:6f:11:
35:ba:78:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:37 2025 by rpki-client